Investigate and remediate multiple denied MFA push requests in Okta

Investigate multiple denied MFA requests from a user in Okta and take appropriate actions on the account. If there are more than five denied MFA push requests for the same user within ten minutes, analyze the alert details and the affected user account. Notify the Teams security channel with an adaptive card containing alert details and a case link for remediation. Update the Teams message with the latest status after taking actions.

Tools

IPQualityScore, Microsoft Teams, Okta, Tines, VirusTotal

Created by

Claudia Kinsella

How it works

Import this story to your tenant, from where you can adapt it to meet your unique needs.

Import

Was this story helpful?

Get to know Tines

Meet the product

Features & capabilities

Cases

Workbench

AI in Tines

Build apps

What’s new?

Solutions

By product

Professional services

By team

Tines for

Partners

Blog

Tines Blog →

Discover & Learn

Case studies

Library

University

Tines Explained ^↗

Customer center

Company

About

Careers

Stay in touch

Contact

Slack Community ^↗

Newsroom