Security notification emails – best practices
Okta General Security settings includes a number of Security notification emails you can enable. When enabled, Okta sends an email notification to the affected user when specified security-related activities like password changes, new sign-ons, or authenticator resets occur. All of the following settings are disabled by default.
Security notification emails
We recommend you enable all notification emails because it means users can contact you if they notice suspicious activity.
Setting
Description
New sign-on notification email
Password changed
Notify users via email when they log in from a new or unrecognized device. The email includes details about the user login like the web browser and operating system used, and time and location of authentication. See Sign-on notifcations for end users (Okta documentation) for more details.
notification email
Authenticator
See Password changed notification for end users (Okta documentation) for more details.
enrolled notification email
Authenticator reset
See Authenticator enrolled notification email for end users (Okta documentation) for more details.
notification email
See Authenticator reset notifications for end users (Okta documentation) for more details.
Report suspicious activity via email
Lets users report activities they do not recognize from email notifications about account activity. Users with the Okta Super Admin role receive these reports by email. If following our best practices, your MSP-Okta integration account (which is an Okta
Super Admin) is tied to a support mailbox, making it easy to open a ticket when a user
reports suspicious activity.
See Suspicious Activity Reporting (Okta documentation) for more details.