Microsoft Secure Tech Accelerator
Apr 03 2024, 07:00 AM - 11:00 AM (PDT)
Microsoft Tech Community

(non-) interactive user sign-ins are missing from Enterprise applications

Steel Contributor

 

Since one or two weeks the Enterprise Applications isn't showing the user sign-ins anymore. According to the support ticket we opened, this was removed "by design". There used to be four tabs, but the interactive and non-interactive user sign-ins are now gone. 

 

This doesn't make a lot of sense to me, while investing in additional tools (like app governance) to better monitor the security of the applications, info on who is using the application has to be found somewhere else (eg filtering all users sign-ins).

 

bartvermeersch_0-1640188707778.png

 

3 Replies
You can get to them via the Usage & Insights tab, then click on the graphics. Not really intuitive. Or a direct link like this I suppose: https://portal.azure.com/#blade/Microsoft_AAD_IAM/SignInEventsV3Blade/appId/de8bc8b5-d9f9-48b1-a8ad-...

I've never clicked the chart before, could become useful, thank you @Vasil Michev 

 

But I still hope it is a bug ;)

Hi, you can also check whether sign-ins that are risky and malicious to your office 365 using 3 key reports - risky users, risky sign-ins, risk detections through Azure Identity Protection in Azure Active Directory. Also, you can create a risk-based access policies in Azure AD to block those sign-ins and take necessary actions immediately. You can make use of below blog to more about risky sign-ins and risk detections.

 

https://blog.admindroid.com/monitoring-azure-ad-sign-in-logs-and-risky-sign-in-activities/