Follow

Enabling Force Identify

When enabled within a domain's JavaScript (JS) Injection Configuration settings, Force Identification requires all site visitors to pass JS tests that help build the hi-def fingerprint associated with each request. To accomplish this, Distil injects a script into HTML pages served from your site. In turn, it forces each client to execute Distil’s JS on the first request. Normal users will not notice a delay in the page load while their fingerprint is collected. If the visitor cannot load JS or is otherwise unable to create the fingerprint, Distil throws the automated threat response configured in the domain’s Content Protection settings.

NOTE: When Distil forces a client to identify themself, the client momentarily receives a blank page that replaces the initial referrer. To preserve the initial referrer, refer to our support article.

Additionally, you can set the number of page requests allowed after forcing a visitor to re-identify themself using the JavaScript Threshold field. By default, the JS threshold is set to five requests before it forces the visitor to revalidate their identity with a fingerprint.

For example, set Force Identification to Enabled to require a visitor to identify themself on the first request. Then, set the JavaScript Threshold to 10 to ensure the visitor must revalidate their identify at least once every 10 requests. If the visitor turns off their browser’s JS functionality after the JS load on the initial request, they are allowed only 10 unverified attempts before receiving the automated threat response configured in the domain’s Content Protection settings.

NOTE: Distil does not recommend setting the JavaScript Threshold below 3 requests. Setting the JS Threshold below 3 generally leads to a high number of false positives.  

Enabling Force Identification

To enable Force Identification, access the JavaScript Injection Configuration tab of the Content Protection Settings page:

NOTE: This feature is available to domains that have been migrated to the latest version of Distil.

  1. Log in to the Distil Portal.

  2. Select a domain from your Domains dashboard.
    2017-03-30_09-51-30.png
  3. Click Settings on the banner menu.
    2017-03-30_09-51-40.png
  4. Select either Edit Default Settings or Edit Settings by Path.

    NOTE: Do not recommend enable Force JavaScript on a path that involves POST requests.

    2017-03-30_09-51-47.png

  5. Select the JavaScript Injection Configuration tab.
    2017-03-30_09-51-57.png
  6. Set Force Identify to Enabled in its drop-down box.

  7. Optionally, enter a numerical value in the JavaScript Threshold field to set the number of requests a visitor can make before identifying themself again. This helps deter visitors who load JS and identify themself on the first request (when Force Identify is Enabled) and turn off JS for further identification.

    NOTE: Distil does not recommend setting the JavaScript Threshold below 3 requests. Setting the JS Threshold below 3 generally leads to a high number of false positives.  

  8. Click Save.
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments