I'm facing a confusing issue with the Microsoft Entra ID Protection integrated into Office 365. Despite receiving the *Microsoft Entra ID Protection Weekly Digest* every week that indicates potential risky sign-ins and locations, when I click on the link in that email, it leads me to the Identity Protection Dashboard which surprisingly shows no issues at all. I've gone into specific sections like **'Risky activity by location'** and adjusted the filters to **'Medium'**, which indicates some risky sign-ins and locations, but when I attempt to view the details, the pages end up being empty. It seems like there are flags on certain activities, yet I can't find the actual users or sign-ins related to these alerts. I'm wondering if there's a hidden filter or setting I'm overlooking that might provide more insight into these detections?
2 Answers
Definitely check your licensing! Only users with a P2 license can access the full capabilities of Entra ID Protection. If you’re not licensed properly, you'll just get limited information like you’re experiencing.
It sounds like you might be running into a licensing issue. If the users flagged don’t have a P2 license, they likely won't show up in the dashboard. Make sure all the relevant users have the necessary permissions to be visible in those reports!
That's a good point! I know some of our users aren’t on P2, so that could definitely be the problem.
I’ve got P2 for myself, but not sure about all users—maybe that’s what's causing the gaps!