Ive been setting up alerts in our Office 365 Cloud App Security portal, alerts such as alert me when a user successfully log into any O365 service outside the United States, Canada and Mexico.
We continuously see a random few users that Ive confirmed are in the US in the office, yet are supposedly signing into mail from the Netherlands or Austria.
We change their passwords immediately, but is there any way to force a logout accross all/any devices they use remotely via powershell or the portal? So they are forced to reauthenticate with their new passwords?