Forum Discussion

Dean_Gross's avatar
Dean_Gross
Silver Contributor
Oct 21, 2019

O365 Malware report data to Sentinel

Does anyone know how to get data from the O365 Security and Compliance center report dashboards into Sentinel? specifically the Malware Detection data

  • Dean_Gross 

    right now O365 connector gets Onedrive, Sharepoint and Exchange events only.  we plan to expand to other O365 events.

     

    In the short term, you could use a logic app to pull the O365 API events into Log Analytics.

Resources