Forum Discussion
erregei
Mar 07, 2023Copper Contributor
ATP Legacy portal to defeder > missing events in timeline
Hello everyone, after the old ATP portal has has been closed and redirect to Defender portal I can't find the changes that has been done on user or computers. For example: I was able to see, on an ...
- Mar 08, 2023You can disable the redirection to the new portal 🙂 I guess this will be removed at some point.
In the Defender portal -> Settings -> Identities -> Portal redirection,
LiorShapira
Microsoft
erregei In M365D portal, on the identity page you can find the timeline tab. It represents activities and alerts that the user was involved in. There's still work and improvements to the timeline such as extra filters, more details about each activity, export button and so on.
Regarding redirection to M365D portal, you are correct. You can still manually disable the automatic redirection, but from June 30, there will be a forced redirection. If you feel that there are important missing features, please let me know: t-lshapira@microsoft.com
SerdarMe
Mar 28, 2023Copper Contributor
Hi Lior,
I believe that most of IT admins who uses ATP would like to keep the classical ATP portal. The defender view of ATP is really poor and has no intuitive UI for the admins to view and troubleshoot the events. I mostly read all comments that people are not happy about this change that will be forced in June 2023. ATP portal is also used by our Service Desk colleagues to troubleshoot the user and computer objects and it is really doing a good job as the interface simple and useful. The success of ATA and ATP is purely based on this interface which Microsoft acquired the product from the other company (https://blogs.microsoft.com/blog/2014/11/13/microsoft-acquires-aorato-give-enterprise-customers-better-defense-digital-intruders-hybrid-cloud-world/) and decided to keep the interface. If we will be forced to use Defender view of ATP, then I have to decommission the product in our environment as we are purely using for the simplistic UI (We have other tools for the anomaly detection). I kindly ask the internal team to reconsider this decision as it is completely against the original ideas of using ATA-ATP. Thank you very much
I believe that most of IT admins who uses ATP would like to keep the classical ATP portal. The defender view of ATP is really poor and has no intuitive UI for the admins to view and troubleshoot the events. I mostly read all comments that people are not happy about this change that will be forced in June 2023. ATP portal is also used by our Service Desk colleagues to troubleshoot the user and computer objects and it is really doing a good job as the interface simple and useful. The success of ATA and ATP is purely based on this interface which Microsoft acquired the product from the other company (https://blogs.microsoft.com/blog/2014/11/13/microsoft-acquires-aorato-give-enterprise-customers-better-defense-digital-intruders-hybrid-cloud-world/) and decided to keep the interface. If we will be forced to use Defender view of ATP, then I have to decommission the product in our environment as we are purely using for the simplistic UI (We have other tools for the anomaly detection). I kindly ask the internal team to reconsider this decision as it is completely against the original ideas of using ATA-ATP. Thank you very much