@Gary Bushey Thanks for your answer!
I did look at Office 365 Workbook, but didn't find anything regarding email data. There are only information on the mailbox.

I wonder if sender/receiver (and other data) are actually transmitted from Office 365 to Sentinel through the Office 365 connector. I try to figure out how to do this.

@Gary Bushey Thank you for your answer.I'm I'm also interesting. I think, what we would like it's to collects Message Trace data from Microsoft Office 365 including the following:
Sender
Recipient
Subject
To IP Address
From IP Address
Size
Date Received

Regards

@thotho : supporting email flow logs is on our roadmap. We hope to address your need soon.

@Ofer_Shezaf 

Would be very nice to get Email Message Header information a part of this data.

I'm specific interessted to get the X-Forefront-Antispam-Report Header, so that it's possible to analyze Email SPAM.

Do you have any timeframe on when this exchange online email connector can be available? Q1 2020? Q2 2020? This year? Next year?

Br. Rune

@ClémentB That information is not captured in Sentinel.  Not sure if it would be in the Security Graph or not but you can check that as well.

@Ofer_Shezaf, whats the status of this roadmap item? is there a public ID we can follow? We need to see message tracking in sentinel.

@Ofer_Shezaf   year later, any progress ?

Hello @Heiko Fuhrmann 

Have you seen the methods here?  especially the "Update 3rd June 2020" solution.

Office 365 Email Activity and Data Exfiltration Detection - Microsoft Tech Community

Thanks