Open mcrommert opened 1 year ago
@mcrommert Thanks for your request! And sorry for the delay...
Password change was not kept as a scenario because it is an event that likely break the email flow for the user. In other terms, if the user changes the password, or if there if a password reset is performed on the account, it is likely that the notification would arrive after the access to the mailbox is broken. There are still some cases with token cache and if the application doesn't do continuous access evaluation where the notification will be received, but that's a really a timing condition. What do you think?
Would there be a way to create a module for password changes in AzureAD
We have been looking at adopting SEEN at our company, but beyond the MFA notifications we would also like to notify on password changes