Product: Huntress Managed Identity Threat Detection and Response (ITDR, formerly MDR for Microsoft 365)
Environment: Unwanted Access Dashboard
Summary: The Unwanted access dashboard allows you to set access rules for your account, organization, or individual identities.
Unwanted Access Rules provide Huntress partners with the ability to configure rules for Expected and Unauthorized logins from specific countries and VPNs/proxies. A rule can be created via the UI or as a result of resolving an escalation. Below are steps showing how to create a rule from the UI.
Step 1: Click the blue “Manage VPN Rules” or “Manage Country Rules” button (both buttons link to the same page)
Step 2: Click on the green “Add Rule” button. Select whether you’d like to create a rule at the Account, Organization, or Identity level.
Step 3: Choose the rule type, country or VPN, and add an optional expiration date or note.
Step 4: Verify that the rule has been created in the dashboard