Forum Discussion

Brass Contributor

Sep 22, 2020

Failed Logins with Cloud App Security - Locked account

I have created a policy that alerts when Activity Type equals "Failed log on" AND App equals "Active Directory". What I would like to be able to also find is a policy/report in CASB to show when an ...

Cloud App Security

Caroline_Lee

Microsoft

Sep 24, 2020

SergioT1228 Hi, one way you'd be able to see this is under the investigate blade > users and accounts > filter on the status=Suspended. Does that help?