Additional Info for Risky Users in AIP
We would like to see the reason for the Risky sign-ins. This would help us identify why AIP flagged our users. Is it because of impossible travel or anonymous IP etc in Risky Users blade under AAD.
Ralph Walker commented
It seems counter intuitive to call users risky, and not give them the means to discover why, or resolve their status without having to pay an additional amount. This reminds me of unmanned police speed cameras issuing tickets to speeders without the ability to face their accuser. Poor form.
Ryan Sinnwell commented
We also have this issue. We have employees who have been requested to login to one of Microsoft's own Dynamics instances but they cannot because they are on this Risky User list. Our company is not the one using the fact that they are on this list to treat them differently, so I don't believe we should have to pay for the license to get information about why they are on the list. Even if Microsoft went back to providing the IP address, Location and Sign-in time at the free tier would be great. Ideally there would be a simple reason listed so we could investigate, mark as a false positive, force password changes or block the user.