To activate suspicious activity alerts, access the Security tab in Administration -> Settings -> Security, then look for Security Alerts, as in the screens below:
After checking the boxes responsible for turning on the suspicious activity alerts every time any action that is considered suspicious happens in your VaultOne platform, every administrator will receive alerts based on that action.
The following warnings (alerts) will be sent by default:
Excessive credential research:
5 credentials in 5 minutes : Severity 4
5 credentials in 3 minutes : Severity 3
5 credentials in 2 minutes : Severity 2
5 credentials in 1 minute : Severity 1
Excessive login attempts:
2 logins in different web browsers using the same IP address : Severity 5
2 logins in different IPs addresses : Severity 4
Login outside main access country : Severity 2
Login outside commercial window (8h - 18h changes based on the timezone) : Severity 3
Severities: (RFC 5424)
1 Alert: action must be taken immediately
2 Critical: critical conditions
3 Error: error conditions
4 Warning: warning conditions
5 Notice: normal but significant condition
Found what you need? If you still have any questions, you can contact us! [email protected]