We have the impossible travel alert policy in place. We get some users occasionally connecting from other countries for legitimate reasons (Ie VPN/Cross country Apps etc..). We have whitelisted these IP's (all the IP are static) as corporate but the policy keeps triggering. The alerts shows the whitelisted IP.

The whitelist is performed in the "IP address ranges" from MCAS. Has anyone experienced this issue? 


Appreciate any insights on this. Thank you!