Soracom

IoT Template Gallery

  • Templates
  • Verify MFA settings for SAM users

An app that picks up SAM users without MFA enabled and notifies you.

Overview

With this app template, for SAM users created in SORACOM SAM (SORACOM Access Management), if there are any login-capable users who do not have multi-factor authentication (MFA) enabled, you will receive an alert notification. This app can be used for the following:

  • Regularly extracts SAM users who have misconfigurations (MFA not enabled)
  • Sends alert notifications about the extracted SAM users

Example Notification in Chat

Chat notifications look like this:

Estimated Costs

Initial Costs

There are no initial costs associated with using this app template.

Monthly Costs

Item
Estimated Cost for This App
Notes
SORACOM Flux
37.5 yen/month (*1)
  • (*1) This explanation assumes the interval timer event source is configured to run once per day with 10 SAM users as an example. This Flux app counts 11 events per day, resulting in 341 events counted for a 31-day month of operation.
  • (*1) The SORACOM Flux Developer plan includes up to 10,000 events/month free per account. Events exceeding 10,000/month are charged at 0.11 yen per event.
  • This Flux app does not use credits.
  • Event counts and credits are initially set to the same upper limits as the free bundle allocation. When the limit is reached, app launches and action executions triggered by events will no longer occur. If you wish to use beyond these limits, please update the limits in advance. When you set limits that exceed the monthly bundle allocation, excess events and credits will be available on a pay-as-you-go basis.

This is an estimate and may vary depending on actual usage. For exact charges, please check the SORACOM flux plans and Billing Information. Please also refer to the user documentation Setting Quotas for Event Count and Credit Usage.

Prerequisites

Before deploying (executing) the app with this template, please prepare the following:

  • Slack notification destination settings: Obtain the incoming webhook URL for the target Slack channel.

For details, see Slack documentation Sending messages using incoming webhooks.

Creating the App

Customizing Settings

You can set the incoming webhook URL for the target Slack channel.

Actions to Take After Creating the App

The interval timer event source is Disabled. Please manually test the app, and after confirming chat notifications, set the event source to Enabled.

App Customization

By customizing the SORACOM API action’s API usage, you can further extend the app, such as checking the attributes (roles and permission settings) assigned to SAM users.

Troubleshooting

If things do not work as expected, please check the app’s execution history. For details, see View Logs.