Hi
I get a few atypical travel / unfamiliar sign-in properties incidents from time to time, where privileged users sign in from the same IP (52.98.175.181, Amsterdam, Noord-Holland) owned by Microsoft. I dismiss these as false-positives, but I'm curious why this happens. I get the atypical travel part, but it happens quite often, so I wonder why it keeps triggering the unfamiliar sign-in properties policy.
I hope the question makes sense, thanks in advance!