I need a little guidance on how to detect logon events outside of office hours.
For this i’m guessing i need to:
- Create a stream to find the correct event (logon events)
- Then some pipeline rule(s) to check the time of day and add a field ‘OutOfficeHours’ true/false
Does that sound like the best way? Would you do it any other way?
I’m struggling to find any good examples of using time and date online…
I’d highly appreciate any help, thanks