Forum Discussion
Solved
Azure Activity Log missing legacy auth failed attempts or account lockouts for AAD Powershell
In my testing, I am not seeing any logging of failed attempts or account lockouts in the Azure Active Directory Activity Sign-In Logs when the legacy module of Azure Active Directory is used.
Moder...
- Update 12/11/2017 - Microsoft Premier Support said this is working "by design" and will either provide a public facing article that states this and/or will open a "Design Change Request" to log these legacy authentication failure events.
I seem to have some in the logs, they are marked as "Office 365" for the application name though.