Managed Sentinel – Alert 193

Alert IDMS-A193
Alert NameAttempt to bypass conditional access rule in Azure AD
DescriptionThis alert identifies an attempt to Bypass conditional access rule(s) in Azure Active Directory. The ConditionalAccessStatus column value details if there was an attempt to bypass Conditional Access or if the Conditional access rule was not satisfied.
Severity LevelLow
Threat Indicator
MITRE ATT&CK TacticsCredentialAccess
Log sourcesSigninLogs
False Positives
Recommendations