cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

o365 send/receive logs on smtp level / audit logs

himanshusinha1
Copper Contributor

‎Sep 27 2019 02:39 AM

‎Sep 27 2019 02:39 AM

o365 send/receive logs on smtp level / audit logs

Hi,

 

we are trying to grab/download the send and receive logs on smtp level from o365. so we can track  mailbox send/recv as audit.

 

May i know how we can automate and download the logs from python/powershell except from the UI.

 

Is there any better way to pull this info? Please advise!

 

Labels:
5,503 Views
0 Likes
4 Replies
Reply
4 Replies
Vasil Michev

‎Sep 27 2019 10:38 AM

‎Sep 27 2019 10:38 AM

Re: o365 send/receive logs on smtp level / audit logs

Nope afaik. You can automate requesting the logs, but the URL from which you can download them is behind an auth wall, and doesn't seem to accept any of the standard methods to authenticate (including via Graph).

0 Likes
Reply
himanshusinha1

‎Sep 27 2019 06:33 PM

‎Sep 27 2019 06:33 PM

Re: o365 send/receive logs on smtp level / audit logs

@Vasil MichevThanks, May i know what the API endpoint will to get the  SMTP send/recv logs?

 

we do have account for 0365 and can automate, if we know the correct Endpoint/some method.

 

From the GUI, we see the "mail flow" logs, but not sure how we get over the  correct API/endpoint.

 

we see we can get from the powershell as well/GUI, but somehow we want to automate this using API endpoint:

https://www.codetwo.com/admins-blog/message-tracking-office-365/

 

https://www.urtech.ca/2018/11/solved-how-to-perform-a-message-trace-in-office365-exchange-online/

 

would be great  if you/someone can help to point the correct API endpoint.

0 Likes
Reply
Vasil Michev

‎Sep 28 2019 09:08 AM

‎Sep 28 2019 09:08 AM

Re: o365 send/receive logs on smtp level / audit logs

That's the issue, we simply don't know. Microsoft never published any details about it, and the only supported way for getting the CSV files is via the browser.

 

Now if you are only interested in the "regular" message trace, that can be easily automated, here's a sample script: https://gallery.technet.microsoft.com/scriptcenter/Office-365-Mail-Traffic-afa37da1#content

0 Likes
Reply
chuck richards

‎Oct 18 2021 01:21 PM

‎Oct 18 2021 01:21 PM

Re: o365 send/receive logs on smtp level / audit logs

If I can add to this. it seems that the logs only show SMTP successes and not failures. When I asked Microsoft they said they do not keep the smtp failures and it is up to the client system to capture the logs for failures. that seems like a very odd response or at least on that has never dealt with a MFD device before.

does anyone know how to get SMTP failure info?
0 Likes
Reply