On the Microsoft Office 365/Azure Active Directory/Office 365 - Active Directory - Login Locations I want to only show the logins that do not match my known locations, and then also use that to generate an alert, which would also include the UserID that triggered the alert.
I was looking at the code for that dashboard, but I have been unable to get the logic working where on the "count by ClientIP" I can have that line compare against a list of IP addresses, and only include it if they do NOT match. That way I can mark the known good locations as not ones to watch for, but if it is outside of those locations, generate an email alert.
Can anyone point me in the right direction of what type of code would do that?
Thank you in advance!
Please sign in to leave a comment.