May 24 2022 02:03 AM
May 24 2022 04:26 AM - edited May 24 2022 04:27 AM
I assume that access to Dynamics 365 is performed based on a Microsoft user, and it means that you can see logs in Azure Active Directory -> Sign-in logs. If it is so, you should connect Azure Active Directory to Sentinel and filter logs by Application. Thereby you will be able to see who accesses Dynamic 365.
May 24 2022 04:34 AM