User Agent and Device Data
Overview
User agent and device data provide technical context about the browser, device, or client used during an authentication event.
What this feature does
It helps administrators compare normal and unusual access patterns for a user.
Why it is useful
- It can reveal suspicious device changes.
- It supports security investigations.
- It helps distinguish between normal user behavior and unusual access.
Who should read this?
RISE Admin, Security Officer, Support Engineer.
Where to find it
Rise Audit Pro → Auth Log and security-related detail views.
How to use it
- Open Auth Log.
- Review user agent or device details for a login event.
- Compare with previous logins from the same user.
- Use this data alongside IP, country, and time.
Example workflow
A user normally logs in from a desktop browser, but a suspicious login appears with a different browser and location. The admin investigates further.
Screenshot
Screenshot required
Capture from: Rise Audit Pro → Auth Log → Device or user agent details
Capture from: Rise Audit Pro → Auth Log → Device or user agent details
Common mistakes
- Using user agent data as the only security signal.
- Assuming device names are always exact.
- Exposing raw user agent data unnecessarily to non-admin users.
Related articles
- Login Success Events
- New Country Login Detection
- Investigating Suspicious Login Activity
