{"body":{"time": "2022-07-11T15:06:24.8742455Z", "resourceId": "/tenants/9fa2a4b6-a4df-4a4c-8380-1314afa4186d/providers/Microsoft.aadiam", "operationName": "Sign-in activity", "operationVersion": "1.0", "category": "SignInLogs", "tenantId": "9fa2a4b6-a4df-4a4c-8380-1314afa4186d", "resultType": "0", "resultSignature": "None", "durationMs": 0, "callerIpAddress": "64.213.217.117", "correlationId": "66dff879-a926-4d18-b3eb-73749b97f8af", "identity": "User20", "Level": 4, "location": "US", "properties": {"id": "04a15585-cfe9-4a5e-9545-329ce23f3501", "createdDateTime": "2022-07-11T15:06:24.8742455+00:00", "userDisplayName": "User20", "userPrincipalName": "user20@contoso.onmicrosoft.com", "userId": "1a7c6030-669b-47b5-a642-21e219c05e93", "appId": "1b730954-1685-4b74-9bfd-dac224a7b894", "appDisplayName": "Azure Active Directory PowerShell", "ipAddress": "64.213.217.117", "status": {"errorCode": 0}, "clientAppUsed": "Mobile Apps and Desktop clients", "userAgent": "Mozilla/5.0 (Windows NT; Windows NT 10.0; en-US) WindowsPowerShell/5.1.14393.4402", "deviceDetail": {"deviceId": "", "operatingSystem": "Windows 10"}, "location": {"city": "Boardman", "state": "Oregon", "countryOrRegion": "US", "geoCoordinates": {"latitude": 45.83599853515625, "longitude": -119.6989974975586}}, "correlationId": "66dff879-a926-4d18-b3eb-73749b97f8af", "conditionalAccessStatus": "notApplied", "appliedConditionalAccessPolicies": [{"id": "SecurityDefaults", "displayName": "Security Defaults", "enforcedGrantControls": [], "enforcedSessionControls": [], "result": "success", "conditionsSatisfied": 3, "conditionsNotSatisfied": 0}], "authenticationContextClassReferences": [], "originalRequestId": "04a15585-cfe9-4a5e-9545-329ce23f3501", "isInteractive": true, "tokenIssuerName": "", "tokenIssuerType": "AzureAD", "authenticationProcessingDetails": [{"key": "Legacy TLS (TLS 1.0, 1.1, 3DES)", "value": "True"}, {"key": "Oauth Scope Info", "value": "[\"user_impersonation\"]"}, {"key": "Is CAE Token", "value": "False"}], "networkLocationDetails": [], "clientCredentialType": "none", "processingTimeInMilliseconds": 67, "riskDetail": "none", "riskLevelAggregated": "none", "riskLevelDuringSignIn": "none", "riskState": "none", "riskEventTypes": [], "riskEventTypes_v2": [], "resourceDisplayName": "Windows Azure Active Directory", "resourceId": "00000002-0000-0000-c000-000000000000", "resourceTenantId": "9fa2a4b6-a4df-4a4c-8380-1314afa4186d", "homeTenantId": "9fa2a4b6-a4df-4a4c-8380-1314afa4186d", "authenticationDetails": [{"authenticationStepDateTime": "2022-07-11T15:06:24.8742455+00:00", "authenticationMethod": "Password", "authenticationMethodDetail": "Password in the cloud", "succeeded": true, "authenticationStepRequirement": "Primary authentication", "StatusSequence": 0, "RequestSequence": 1}], "authenticationRequirementPolicies": [], "authenticationRequirement": "singleFactorAuthentication", "alternateSignInName": "User20@contoso.onmicrosoft.com", "signInIdentifier": "User20@contoso.onmicrosoft.com", "servicePrincipalId": "", "userType": "Member", "flaggedForReview": false, "isTenantRestricted": false, "autonomousSystemNumber": 16509, "crossTenantAccessType": "none", "privateLinkDetails": {}, "ssoExtensionVersion": "", "uniqueTokenIdentifier": "MDRhMTU1ODUtY2ZlOS00YTVlLTk1NDUtMzI5Y2UyM2YzNTAx", "incomingTokenType": "none", "authenticationProtocol": "ropc", "appServicePrincipalId": null, "resourceServicePrincipalId": "3ccb8bf8-196f-4ba1-8832-75a9f1ff6577", "rngcStatus": 0}},"x-opt-sequence-number":429,"x-opt-offset":"4295246344","x-opt-enqueued-time":1657552199069} {"body":{"time": "2022-07-12T17:58:40.2538739Z", "resourceId": "/tenants/9fa2a4b6-a4df-4a4c-8380-1314afa4186d/providers/Microsoft.aadiam", "operationName": "Sign-in activity", "operationVersion": "1.0", "category": "SignInLogs", "tenantId": "9fa2a4b6-a4df-4a4c-8380-1314afa4186d", "resultType": "0", "resultSignature": "None", "durationMs": 0, "callerIpAddress": "64.213.217.117", "correlationId": "4a2e5ba7-ba63-49da-a419-6a09b0d084c3", "identity": "User20", "Level": 4, "location": "US", "properties": {"id": "bad03617-ecd8-48a5-849e-de94b0778b01", "createdDateTime": "2022-07-12T17:58:40.2538739+00:00", "userDisplayName": "User20", "userPrincipalName": "user20@contoso.onmicrosoft.com", "userId": "1a7c6030-669b-47b5-a642-21e219c05e93", "appId": "1b730954-1685-4b74-9bfd-dac224a7b894", "appDisplayName": "Azure Active Directory PowerShell", "ipAddress": "64.213.217.117", "status": {"errorCode": 0}, "clientAppUsed": "Mobile Apps and Desktop clients", "userAgent": "Mozilla/5.0 (Windows NT; Windows NT 10.0; en-US) WindowsPowerShell/5.1.14393.4402", "deviceDetail": {"deviceId": "", "operatingSystem": "Windows 10"}, "location": {"city": "Boardman", "state": "Oregon", "countryOrRegion": "US", "geoCoordinates": {"latitude": 45.83599853515625, "longitude": -119.6989974975586}}, "correlationId": "4a2e5ba7-ba63-49da-a419-6a09b0d084c3", "conditionalAccessStatus": "notApplied", "appliedConditionalAccessPolicies": [{"id": "SecurityDefaults", "displayName": "Security Defaults", "enforcedGrantControls": [], "enforcedSessionControls": [], "result": "success", "conditionsSatisfied": 3, "conditionsNotSatisfied": 0}], "authenticationContextClassReferences": [], "originalRequestId": "bad03617-ecd8-48a5-849e-de94b0778b01", "isInteractive": true, "tokenIssuerName": "", "tokenIssuerType": "AzureAD", "authenticationProcessingDetails": [{"key": "Legacy TLS (TLS 1.0, 1.1, 3DES)", "value": "True"}, {"key": "Oauth Scope Info", "value": "[\"user_impersonation\"]"}, {"key": "Is CAE Token", "value": "False"}], "networkLocationDetails": [], "clientCredentialType": "none", "processingTimeInMilliseconds": 60, "riskDetail": "none", "riskLevelAggregated": "none", "riskLevelDuringSignIn": "none", "riskState": "none", "riskEventTypes": [], "riskEventTypes_v2": [], "resourceDisplayName": "Windows Azure Active Directory", "resourceId": "00000002-0000-0000-c000-000000000000", "resourceTenantId": "9fa2a4b6-a4df-4a4c-8380-1314afa4186d", "homeTenantId": "9fa2a4b6-a4df-4a4c-8380-1314afa4186d", "authenticationDetails": [{"authenticationStepDateTime": "2022-07-12T17:58:40.2538739+00:00", "authenticationMethod": "Password", "authenticationMethodDetail": "Password in the cloud", "succeeded": true, "authenticationStepRequirement": "Primary authentication", "StatusSequence": 0, "RequestSequence": 1}], "authenticationRequirementPolicies": [], "authenticationRequirement": "singleFactorAuthentication", "alternateSignInName": "User20@contoso.onmicrosoft.com", "signInIdentifier": "User20@contoso.onmicrosoft.com", "servicePrincipalId": "", "userType": "Member", "flaggedForReview": false, "isTenantRestricted": false, "autonomousSystemNumber": 16509, "crossTenantAccessType": "none", "privateLinkDetails": {}, "ssoExtensionVersion": "", "uniqueTokenIdentifier": "YmFkMDM2MTctZWNkOC00OGE1LTg0OWUtZGU5NGIwNzc4YjAx", "incomingTokenType": "none", "authenticationProtocol": "ropc", "appServicePrincipalId": null, "resourceServicePrincipalId": "3ccb8bf8-196f-4ba1-8832-75a9f1ff6577", "rngcStatus": 0}},"x-opt-sequence-number":490,"x-opt-offset":"4295497536","x-opt-enqueued-time":1657648948329}