Oort Knowledge Base
Search
⌃K
Home
Glossary
Best Practices
How-to Guides
Oort Insights
Identity Threat Detection Insights
A Bypass Code Was Used To Successfully Sign In
Accounts With Unusually High Activity
Active Account Under Heavy Attack
Activity From Untrustworthy ISP
Admin Impersonation in Okta
Admin Role Assigned to User
Allow/Block Email Logins
Azure Admin Activity Anomaly
Code Exfiltration By Guest Account
Compromised Session
Impossible Travel
Inactive Account Probing
IP Threat Detected
Login to Admin Console in Okta
MFA Flood
New Country for Tenant
New IDP Created
Okta Admin Activity Anomaly
Rare Browser Activity
Risky Parallel Sessions
Service Account Successful Sign In
Sign-in from Recently Created IDP
Sign In Threat Detected
Successful Access from a Previously Only Failing IP
Super Admin Login to Google
Suspicious Activity Reported by End User
Users With Defined Email Forward Rules
Users With New Email Forward Rules
Identity Posture Management Insights
Integrations
Troubleshooting & Support
Release Notes
Powered By GitBook
Comment on page

Successful Access from a Previously Only Failing IP

Detects successful logins with an IP address that was used to probe other accounts in the organization.
Recommended Actions
Contact the end user to verify the origin of the actions.
Compatibility
​Microsoft Entra ID​
​Okta​
​Duo​
​Google Workspace​
​
Previous
Sign In Threat Detected
Next
Super Admin Login to Google
Last modified 3mo ago