How do I see sign in attempts

Sharon Haire 5 Reputation points
2026-06-08T17:45:53.04+00:00

I keep getting authentication requests. How do I see sign in attempts

Microsoft Security | Microsoft Authenticator

1 answer

Sort by: Most helpful
  1. AI answer

    2026-06-08T17:46:19.8566667+00:00

    To review sign-in attempts and authentication requests, use the account activity views provided for Microsoft accounts or work/school accounts.

    For a personal Microsoft account (Outlook.com, Hotmail, etc.):

    1. Go to the Recent activity page at https://account.live.com/Activity.
    2. Review the list of sign-ins from the last 30 days, including device and app details.
    3. If anything looks suspicious (unknown locations, devices, or multiple attempts), select Secure your account and follow the steps to change the password and update security info.

    For a work or school account (Microsoft Entra ID):

    1. Go to the My Account portal at https://myaccount.microsoft.com/ and sign in.
    2. Select Recent activity from the left navigation.
    3. Expand each sign-in entry to see details such as location, app, browser, and operating system.
    4. If unfamiliar successful sign-ins are found, immediately change the password and then go to Security info (https://mysignins.microsoft.com/security-info) to update security methods.

    If repeated sign-in attempts are blocking access to a work or school account, Microsoft Entra multifactor authentication may temporarily prevent additional attempts. In that case, either wait before trying again or use a different MFA method. If malicious activity is suspected, contact the organization’s IT administrator and ask them to review the Microsoft Entra sign-in logs.

    For managed identities in Azure (if applicable):

    1. In the Azure portal, browse to Microsoft Entra ID.
    2. Under Monitoring, select Sign-in logs.
    3. Open the Managed identity sign-ins tab to view authentication attempts by managed identities.

    If unrequested prompts appear on Outlook mobile or Authenticator, always select Deny unless the sign-in was initiated intentionally, then review recent activity as above and change the password if anything is unfamiliar.


    References:

    AI-generated content may be incorrect. Read our transparency notes for more information.

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.