Click the storage account you want to use
Click 'Manage Access Keys' in the command bar at the bottom of the screen.
In the 'Manage Access Keys' dialog, copy the 'Storage Account Name' and 'Primary Access Key'
Paste the name and key of the storage account that you copied above.
And that's it, you're all set. Keep in mind that only data that is captured AFTER configuring the offline store, is available in the Azure blob store.
Double-click the container to see the various blobs of data. We create a new blob per day for each machine the agent is running on. The 'name' column of the table below captures the machine name and the date for each blob.
To see all the data in the container, double-click the column that says 'content'. Alternatively, double click 'Binary' of blob you are interested in seeing the data for. This will reveal the data for your organization. Below is an example from my own tenant.
I also recommend filtering out the non-business apps.
We did not do this by default, because we've heard from many of you that you want this data to be available to you, in the event you want to do further forensic analysis across these other applications.
Now you can pivot all the data in a variety of ways. Here are some interesting pivots that customers have told us they'd be interested in exploring. I've used pivot tables to produce the same data for my tenant. All activity by a particular user within a particular timeframe Seeing all the applications used by a particular user (or set of users within a department) within a given timeframe, can be useful in situations where you want to do forensic analysis. You can use pivot tables as shown below to get the desired data.
In the picture above, I've chosen to explore all the business applications used by a particular user in the month of September. You see the result on the far left. To do this, in the Pivot Table Fields, I've chosen to the 'App Name' as the rows to report, while using User Name , Is Business App and Date Windows as my filters. Applications with the highest downloads in a particular timeframe Seeing which applications consume the most bandwidth can be useful for planning your network capacity. Historical information may also be useful to detect patterns, plan better and for forensic analysis
In the picture above, I've chosen to explore which business applications users downloaded the most from, in the month of August. I used both a pivot table and a pivot chart to represent the information. As you can see, in my tenant, Sharepoint, Yammer, msdn and Github represent the business apps with the maximum download volume for the month of August. Collaboration applications with the highest uploads Collaboration and file sharing applications often pose the highest data leakage concern for administrators. Seeing which collaboration applications have the most uploads may provide one clue to where IT must focus attention first.
In the picture above, I've chosen to focus on collaboration apps used by users in my tenant in the month of August, to see which ones are the apps uses are uploading most information to. I can see that I need to focus on securing Box and Dropbox first. Users with the highest upload volume within a particular timeframe The example above can also be extended to seeing which users are consuming the most bandwidth
In my demo tenant, I only had 4 users, but in your organization, you may want to add a filter and only focus on the top 5 users or users with volumes greater than a threshold. There are many more interesting possibilities to pivot the data. Go on, explore! And if you would like us to help you with any of these, let us know.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.