Forum Discussion
Humza_Bukhari
Sep 22, 2023Copper Contributor
SecurityAlert (MDATP) showing disable and we are not receiving logs In sentinel from M365 Defender
We have tried every possible way but still we are unable to receive any logs after connecting the data connector in sentinel for microsoft defender 365 . SecurityAlert (MDATP) is showing disable . s...
Sep 22, 2023
Humza_Bukhari ok let's do this exercise, from one of your devices onboarded to MDE create a malicious test file using the below link, save it as EICAR.com on the desktop and let MDE catch it and remediate it and check the alerts in the portal and keep an eye at the same time in Sentinel to see if this will trigger the signal
How to Create a Malicious Test File (EICAR) - Carbon Black Community
Humza_Bukhari
Sep 22, 2023Copper Contributor
okay i have tried this , lets c what happened and will update you