Forum Discussion

5 Replies

      • SamiLamppu's avatar
        SamiLamppu
        Brass Contributor

        ItsMeMichael  About Azure ATP, you should receive alerts from Azure ATP after integration is enabled. The documentation states that it may take 12 hours until the integration takes effect.

         

        After enabling Azure ATP integration, you'll be able to see on-premises activities for all the users in your organization. You will also get advanced insights on your users that combine alerts and suspicious activities across your cloud and on-premises environments. Additionally, policies from Azure ATP will appear on the Cloud App Security policies page. 

        https://docs.microsoft.com/en-us/cloud-app-security/aatp-integration

         

        Has the situation changed, do you see the Azure ATP activities in the Activity Log?

  • ItsMeMichael 

     

    Hi, Microsoft will always tell you that it can take a bit of time for alerts in MCAS to show up when you configure new settings like this.  How recently did you configure this?

Resources