locked
Security e-mail alerts for users logging on from a new device RRS feed

  • Question

  • Hello, Sorry if this is the wrong forum so please advise.

    I would like to be able to send a SMS or e-mail message to users when they logon from a new device. May systems use this feature including Facebooks, ICloud etc. I am looking for a way to make AD, ADFS logons or any logon to a Windows server environment send an alert to the end user if their account has been used to logon to a new device (tablet, laptop, phone etc).

    This would act as an additional security measure to inform users if their account had been compromised.

    Any ideas please.

    Rob

    Monday, May 23, 2016 7:42 AM

Answers

  • Hi Rob,

    This isn't something Windows has the capacity to do natively, from AD FS or otherwise.

    You'd need to find (or write) a third party application to provide this kind of functionality.

    Cheers,
    Lain

    Monday, May 23, 2016 7:47 AM
  • Indeed, nothing out of the box. You could create a custom attribute store and do some coding there. What would you use for reference to identify the device? IP address? HTTP Headers? It's kinda limited... You could could enable device authentication and make it a requirement to access app. In that case only registered devices will be able to authenticate.

    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Thursday, May 26, 2016 2:28 PM

All replies

  • Hi Rob,

    This isn't something Windows has the capacity to do natively, from AD FS or otherwise.

    You'd need to find (or write) a third party application to provide this kind of functionality.

    Cheers,
    Lain

    Monday, May 23, 2016 7:47 AM
  • Indeed, nothing out of the box. You could create a custom attribute store and do some coding there. What would you use for reference to identify the device? IP address? HTTP Headers? It's kinda limited... You could could enable device authentication and make it a requirement to access app. In that case only registered devices will be able to authenticate.

    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Thursday, May 26, 2016 2:28 PM