Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,473 questions
How do I configure alert for consecutive failed logins to MS services and consecutive login attempts blocked by conditional access policies configured in AAD?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 38%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERL%3C/text%3E%3C/svg%3E)
Rodney Lai
0
Reputation points
Example for MS services referred in the question: azure portal, email, M365 portal
I do not wish to set up alert for failed login attempts for specific users/ IP.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Ash G 340 Reputation points2023-03-07T09:23:37.9133333+00:00 Hi,
You should consider assigning a license that includes Identity Protection to any person who logs on to an administrative console/portal. https://learn.microsoft.com/en-us/azure/active-directory/identity-protection/overview-identity-protection
Smart lockout is also available to reduce the risk for the identity scenarios you mention. https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-password-smart-lockout.
What kind of alert were you proposing? Email notification?
Sign in to comment