- Threat Detection, Investigation, and Response (TDIR) Use Case Categories
- Threat Detection, Investigation, and Response (TDIR) Use Case Categories Hierarchy
- Compromised Insiders Use Case Category
- External Threats Use Case Category
- Malicious Insiders Use Case Category
Abnormal Authentication and Access Use Case
Learn about the Abnormal Authentication and Access use case and what Exabeam functionalities protect against it.
The Abnormal Authentication and Access use case describes when someone in your organization anomalously does things that aren't typical of them, like accessing or authenticating into unusual applications, critical servers, or browsers.
In the Threat Detection, Investigation, and Response (TDIR) Use Case Categories hierarchy, the Abnormal Authentication and Access use case falls under the Malicious Insiders use case category. It contains the Abnormal User Activity scenario.
In Case Manager, use the out-of-the-box Abnormal Authentication and Access incident type to standardize incident fields, phases, and tasks for abnormal authentication and access incidents.