Prompt your users to re-authorize when their origin changes.
With session IP address pinning enabled, authorized sessions can only come from the IP address that created the session. If another IP address attempts to access the organization, the session will be immediately revoked. By pairing IP pinning with SSO session durations, we're taking a proactive approach to combating stolen session cookies.
We're committed to keeping our customers' data secure and are constantly exploring new ways to enhance our security measures.