Connecting Azure Devops activity logs to Defender for Cloud Apps

Regular Visitor

The relationship between Azure Devops( and Azure Active Directory and it's conditional access policy is interesting if you have the devops portal connected to AAD. 


CAP policy appears to apply to Azure DevOps if applied to the Azure Management Portal itself. 


I am looking for a way to get log activity from Azure DevOps to Defender for Cloud Apps for analytics of suspicious insider behaviors.   (mass downloads for example)


The normal connection methods don't quite seem to apply?

Any help would be great.

0 Replies