cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

[OFFICE 365 - EXCHANGE] Monitor in/out mails senders

ClementBonnet
Occasional Contributor

‎Nov 25 2019 09:14 AM

‎Nov 25 2019 09:14 AM

[OFFICE 365 - EXCHANGE] Monitor in/out mails senders

Hello,

 

I am currently trying to establish statistics regarding the email activities on Office 365.

I spent some time trying to figure out how to access the sender / receiver email or account (and other related data). I didn't find anything concluant within the OfficeActivity logs.

 

Did you try to achieve this ?

Thank you for your answer.

2,389 Views
0 Likes
9 Replies
Reply
9 Replies
Gary Bushey

‎Nov 25 2019 10:44 AM

‎Nov 25 2019 10:44 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@ClementBonnet Have you looked at the Office 365 Workbook?  It may not be 100% what you are looking for but it should give you a hint of how to get what you want if it doesn't.

0 Likes
Reply
ClementBonnet

‎Nov 26 2019 02:09 AM

‎Nov 26 2019 02:09 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@Gary Bushey Thanks for your answer!
I did look at Office 365 Workbook, but didn't find anything regarding email data. There are only information on the mailbox.

I wonder if sender/receiver (and other data) are actually transmitted from Office 365 to Sentinel through the Office 365 connector. I try to figure out how to do this.

0 Likes
Reply
thotho

‎Nov 26 2019 09:04 AM

‎Nov 26 2019 09:04 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@Gary Bushey Thank you for your answer.I'm I'm also interesting. I think, what we would like it's to collects Message Trace data from Microsoft Office 365 including the following:
Sender
Recipient
Subject
To IP Address
From IP Address
Size
Date Received

 

Regards

0 Likes
Reply
Ofer_Shezaf

‎Dec 01 2019 06:08 AM

‎Dec 01 2019 06:08 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@thotho : supporting email flow logs is on our roadmap. We hope to address your need soon.

0 Likes
Reply
Rune Myrhaug

‎Jan 16 2020 12:54 AM

‎Jan 16 2020 12:54 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@Ofer_Shezaf 

 

Would be very nice to get Email Message Header information a part of this data.

I'm specific interessted to get the X-Forefront-Antispam-Report Header, so that it's possible to analyze Email SPAM.

 

Do you have any timeframe on when this exchange online email connector can be available? Q1 2020? Q2 2020? This year? Next year?

 

Br. Rune

0 Likes
Reply
Gary Bushey

‎Jan 16 2020 06:01 AM

‎Jan 16 2020 06:01 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@ClementBonnet That information is not captured in Sentinel.  Not sure if it would be in the Security Graph or not but you can check that as well.

0 Likes
Reply
Mike Crowley

‎Aug 21 2020 10:18 AM

‎Aug 21 2020 10:18 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@Ofer_Shezaf, whats the status of this roadmap item? is there a public ID we can follow? We need to see message tracking in sentinel.

0 Likes
Reply
Heiko Fuhrmann

‎Dec 14 2020 10:08 PM

‎Dec 14 2020 10:08 PM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

@Ofer_Shezaf   year later, any progress ?

0 Likes
Reply
CliveWatson

‎Dec 16 2020 11:24 AM

‎Dec 16 2020 11:24 AM

Re: [OFFICE 365 - EXCHANGE] Monitor in/out mails senders

Hello @Heiko Fuhrmann 

 

Have you seen the methods here?  especially the "Update 3rd June 2020" solution.

 

Office 365 Email Activity and Data Exfiltration Detection - Microsoft Tech Community

 

Thanks 

0 Likes
Reply