Two things you should look at when trying to determine the legitimacy of a logon attempt are the timestamp and the ISP name.
- Is this a ‘normal’ time that you log into SSO?
- Do you recognize the ISP name? (TAMU, Verizon Wireless, etc.)
The location and ISP on the Security Log are derived from the IP address using a geolocation service database. This database is updated on a regular basis but may still contain incomplete or inaccurate information.
The limitations of IP-based geolocation technology can only provide about 99% accuracy in determining a country location and about 70% accuracy when determining a US city location. The city location accuracy can be further diminished when logging into SSO using a cellular network.
Additionally, some IP address locations are private and their location won’t be listed in the database. An example of this is “TAMULINK”, the wireless network used by TAMU in College Station.
If you have any doubts about a logon and you wish to report an activity for further research, you may do so using the ‘Report Problem’ button. See the SSO FAQ “How do I report a questionable logon activity?”