7Tem
SSO Log Users Out Based on IP Address
We would like to implement SAML based SSO for our organization. We do not want employees to be able to access specific accounts outsides of specific hours and IP ranges. (We do not want to setup a VPN for that use-case for multiple reasons)
Question: Is it possible to somehow log the user out of a specific account that he signed into via SAML when his IP changes and is not part of the allowed range anymore?
Things we want to avoid: - Browser extensions - Polling of any kind - No additional infrastructure if possible
I really don't know if this is possible but would really appreciate your help.
