使用逻辑报告风险登录 [英] Using logic to report on risky sign ins

问题描述

您好 - 我公司在新西兰境内工作，因此没有员工试图从其他任何国家/地区登录。我想报告新西兰境外发生的任何"成功"签到，所以使用国家/地区字段，
我想放入"不是新西兰"字母。或者什么。

Hi - my company works within New Zealand, so there are no employees who would be attempting to sign in from any other country. I would like to report on any 'successful' sign in that has happened from outside New Zealand, so using the Country / Region field, I'd like to put in "not NZ" or something.

目前，我只是在寻找成功的登录和每次更改国家（CN，NG等），但这不是一个非常好的方法。据我所知，不应该有非新西兰标志，搜索除新西兰以外的所有内容会更容易。

At the moment, I'm just looking for successful sign ins and changing the country each time (CN, NG etc.) but this isn't a very good approach. As I know there should be no non-NZ sign ins, it would be much easier to search everything except NZ.

我该怎么做？

干杯，

Tim

推荐答案

嗨Tim - WelshKiwi，

Hi Tim - WelshKiwi,

风险登录是可能由非用户帐户的合法所有者执行的登录尝试的指示符。为此，您需要配置用户风险策略。请查看以下链接以配置用户风险政策

Risky sign-in is an indicator for a sign-in attempt that might have been performed by someone who is not the legitimate owner of a user account. For that you need to configure user risk policy. Please check the below link for configuring user risk policy

https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-user-risk-policy

https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-user-risk-policy

请查看以下文档中的风险登录。

Please check the below document for Risky Sign in.

https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-risky-登录 

我希望这会有所帮助。

谢谢。

这篇关于使用逻辑报告风险登录的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！