Forum Discussion

Calum Steen's avatar
Calum Steen
Brass Contributor
Dec 01, 2018

Do EOP actions create entries in the Office 365 audit log?

We feed the Office 365 audit log into IBM QRadar for additional analysis, together with logs from firewalls, domain controllers etc.

 

If EOP puts an email into user quarantine or removes a email due to malware, does this event get written into the Office 365 audit log?

Resources