Sign-on notifications for end users

When enabled, this email notification notifies end usersIn Okta literature, we generally refer to "end users" as the people who have their own Okta home page (My Applications), using apps to authenticate into all of their apps. End users do not have any administrative control. When we refer to "users" we are generally referring to the individual(s) who have administrative control. of any sign-in activity. The email contains user sign-on details such as the web browser, operating system used to sign in, and time and location of authentication.

 

Important note

New sign-on notification emails complement other security features such as multifactor authentication and should not act as a replacement. In most scenarios, clients are easily and accurately identified but there are some limitations.

 

HealthInsight: Why is this task recommended?


This a HealthInsight security task. For more security recommendations from Okta, see HealthInsight.

Enable sign-on notifications to inform end users by email of any unrecognized activity from a new or unknown device or browser.

Security impact: High

End-user impact: Low

Okta recommends: Enable this email notification so end users are informed about new sign-on activity, which can inform them if a different user has signed in to their account.

 

 

End-user experience and impact


End users receive an email notification if they sign in from a new or unrecognized clientEssentially, a client is anything that talks to the Okta service. Within the traditional client-server model, Okta is the server. The client might be an agent, an Okta mobile app, or a browser plugin. .

 

Procedure


To enable sign-on notification emails for end users:

  1. From the adminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page. console, navigate to Security > General.
  2. Under Security Notification Emails, click Edit.
  3. Set New sign-on notification email to Enabled.

    Enabling notifications so that end users receive an email for each sign-in to their org.

  4. Click Save to continue.

 

Related topics


 

 

 

Top