Identify user logged in method
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-22-2020 04:45 PM
Hi All,
Is there any specific parameter in system which could help us understand whether user logged in using SSO or user name and password
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-22-2020 04:53 PM
kindly have a look on below thread. hope it will help you.
Every single sign-on integration creates events for login activities.
You can use these events to monitor for login failures and determine if there are any security concerns to address.
| Event Name | Description | Record | Parameter 1 | Parameter 2 |
|---|---|---|---|---|
| external.authentication.succeeded | External authentication succeeded and the user accessed the instance URL. | Session ID | User ID of user who successfully logged in | The URL the user accessed (which may be a deep link) |
| external.authentication.failed | The single sign-on requirements are not present or are missing. | Session ID | The missing authentication requirements | |
| external.authentication.failed | The user does not exist in the User [sys_user] table | User ID | The string, "User does not exist" | |
| external.authentication.failed | The user is locked out. | User ID | The string, "User locked out." |
If my answer helped you, kindly mark it as correct and helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-22-2020 04:57 PM
Hi, if a user authenticates directly with the instance there is no authorization log record in 'ldap log',
and there is an auth log record created for an LDAP authenticated user; but you would need to test\confirm if the log had an auth record for SSO user.
I would also assume that any ldap or SSO authenticated user would nee to have an LDAP server and source record configured against their user name, whereas a direct authentication user record does not have either configured.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-28-2021 06:33 AM
Hi,
Have you received any information on user logging in without SSO method. I could just see login and session established when a user logs in via instance_name.com/login.do
Is there any way to identify users logged in via non-sso means?
Regards,
Imran
