Forum Discussion
BlueMoose
Aug 01, 2023Brass Contributor
Outlook Audit Logs
Full disclosure: I have never used PowerShell before. This is a classic rabbit hole situation where I started trying to figure something out, which led me to another and another and now we're here.
I wanted to be able to know who was doing what in a shared inbox. I was then told that I needed the Audit Log. I pull the Audit Log and needed to arrange the data. I was told how I had to set it up. Now that it's all set and works, I just need a regular flow of the data from the Audit Log. I asked if the pulls could be automated and I was told that I'd need to use PowerShell and the Search-UnifiedAuditLog cmdlet. I guess my question is:
How indepth is what I have to do and where do I start?
- Any update?
- Perhaps Sentinel is better for this? https://practical365.com/use-office-365-audit-data-with-microsoft-sentinel/