Last Updated: Nov 12, 2024
Overview
This article clarifies whether it is possible to implement the scenario where an automatic email is sent to the admins after a user’s login from a new device or different location is detected.
Email example for the described scenario:
“We noticed that account ******* was accessed from a new device or location:
< app name > | < OS > | < country > | < IP >
If it was you and you recently logged in from a new device or a new location, all is well, and you can ignore this notification.”
Applies To
- Custom Notifications
- Login from a New Device
- Login from a New Location
- User Login
Solution
Unfortunately, there’s no out-of-the-box Dashboard feature to do this.
As a workaround, use the extensibility code + Adaptive MFA.
It is possible to check if a new device was used for login with a post-login action and trigger an API call to the email provider.
If adaptive MFA is enabled and the policy is set to never require MFA, this object can still be used:
event.authentication.riskAssessment.assessments.NewDevice