Sign-on notifications for end users

When enabled, this email notification notifies end usersEnd users are people in your org without administrative control. They can authenticate into apps from the icons on their My Applications home page, but they are provisioned, deprovisioned, assigned, and managed by admins. of any sign-in activity. The email contains user sign-on details such as the web browser, operating system used to sign in, and time and location of authentication.


Important note

New sign-on notification emails complement other security features such as multifactor authentication and should not act as a replacement. In most scenarios, clients are easily and accurately identified but there are some limitations.


HealthInsight: Why is this task recommended?

This feature is a HealthInsight security task. For more security recommendations from Okta, see HealthInsight.

Enable sign-on notifications to inform end users by email of any unrecognized activity from a new or unknown device or browser.

Security impact: High

End-user impact: Low

Okta recommends: Enable this email notification so end users are informed about new sign-on activity, which can inform them if a different user has signed in to their account.



End-user experience and impact

End users receive an email notification if they sign in from a new or unrecognized clientEssentially, a client is anything that talks to the Okta service. Within the traditional client-server model, Okta is the server. The client might be an agent, an Okta mobile app, or a browser plugin. .



To enable sign-on notification emails for end users:

  1. From the adminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page. console, navigate to Security > General.
  2. Under Security Notification Emails, click Edit.
  3. Set New sign-on notification email to Enabled.

    Enabling notifications so that end users receive an email for each sign-in to their org.

  4. Click Save to continue.


Related topics