Configure Google reCAPTCHA Enterprise for Payment Pages 2.0
Learn how to configure tenant-level and page-level Risk Score Threshold settings for Google reCAPTCHA Enterprise on Payment Pages 2.0 to manage user interaction risks.
For both AI Assessment and Interactive Test versions of Google reCAPTCHA Enterprise, you can configure the tenant-level and page-level Risk Score Threshold settings to set up thresholds for the level of risk the user interaction poses. Details about the allowed value are available in the UI tooltip. The Risk Score Threshold value configured in Zuora HPM settings is used to evaluate whether the attempt is a bot attack, but not used to determine whether to show the CAPTCHA challenge.
For the recommended value, refer to the recommendations by Google. For more information about the risk score recommendation and interpretation, see Google Cloud Docs.
- To configure the tenant-level Risk Score Threshold setting:
- Navigate to Settings > Payments > Setup Payment Page and Payment Link.
- On the Payment Pages tab page, click Edit in the Google reCAPTCHA Enterprise Configuration section.
- Enter a value in the Risk Score Threshold field, and click Save.
- To configure the page-level Risk Score Threshold setting:
- Navigate to the Security Information > Google reCAPTCHA section when creating or editing a Payment Page 2.0.
- Click the Interactive Test (Checkbox) or AI Assessment (Score-Based) option according to your needs. The Risk Score Threshold field is displayed under the option.
- Enter a value in the Risk Score Threshold field. If no value is set for this setting, the tenant-level Risk Score Threshold value will be used for your hosted payment page. This page-level value takes precedence over the tenant-level Risk Score Threshold value.
Disable Google reCAPTCHA
When you create or edit a Payment Page 2.0, navigate to the Security Information > Google reCAPTCHA section and click Disable reCAPTCHA to disable the Google reCAPTCHA service on your Payment Page 2.0.