Blog Post

Security, Compliance, and Identity Blog
3 MIN READ

Gain rich insights with the new Microsoft Graph Security Power BI connector!

Preeti_Krishna's avatar
Feb 12, 2019

Today, we launched a Microsoft Graph Security connector for Power BI along with a sample dashboard and template to enable rapid development of enterprise-wide security reports. Gain greater visibility into active threats and trends to help you better understand and manage security and risk.

You can now leverage the new connector included in the Power BI Desktop February 2019 update to:

This Power BI connector for Microsoft Graph reduces the time and resources needed to integrate multiple data sources, simplifying the creation of reports across security solutions. For further details on integrating with the Microsoft Graph Security API, learn about the API and access the schema.

Getting Started

Use this connector in a new or existing Power BI dashboard. This connector is included in the Power BI Desktop February 2019 update

  1. Your Azure Active Directory (AD) tenant administrator must first grant consent for the connector; follow the steps in the connector documentation.
  2. Select Get Data -> More… from the Home ribbon in Power BI Desktop after installing the Power BI Desktop February 2019 update.
  3. Select Online Services from the categories list.
  4. Select Microsoft Graph Security (Beta) and connect as illustrated below.  Microsoft Graph Security Power BI Connector
  5. Choose a Version (v1.0 or beta) and sign into Azure Active Directory, when prompted. Your user account needs to have Security Reader role permissions per the user delegated Microsoft Graph Security authorization requirements.
  6. Select the entity of choice and click load to display results as illustrated in the following diagram. Results
  7. You’re now ready to use the imported data in Power BI Desktop. Check out the Microsoft Graph Security Power BI connector documentation for advanced query options and other details.

User Scenarios

We’ve provided some examples below of reports created using the Microsoft Graph Security Power BI connector. A sample dashboard and template are also available for download from the Microsoft Graph Security GitHub repo. Feel free to slice and dice the information for each of the schema properties to build your own visualizations.

Visualize Alerts across different Security Products

You can now create a visual of security alerts originating from different security products deployed in your organization trending over a duration as per the diagram below.

Visualize Alerts across different Security Products

Visualize Top Threats Targeting your Organization

Create a visual, per the diagram below, to get the top threats that impact your organization by categorizing your security alerts across the different security products running in your organization. This in turn enables you to get a complete picture of what’s top of mind for your organizational security investigations.

Visualize Top Threats Targeting your OrganizationVisualize Top Targeted Users

Get a pictorial representation of users who were associated with the security alerts that originated from the different security products deployed in your organization per the following diagram to manage user risk information and potential top targeted users.

Visualize Top Targeted Users

What's Next?

The Power BI dashboard and template using the Microsoft Graph Security Power BI connector can help jumpstart development of your custom reports. Build and contribute your own security templates and dashboards to the Microsoft Graph Security Power BI sample GitHub repo, following the contribution guidelines. Your contributions will be recognized via weekly blogposts on the Microsoft Security Graph tech community.

Try the Microsoft Graph Security connector and please share your feedback by filing a GitHub issue or by engaging on the Microsoft Security Graph API tech community or StackOverflow.

 

 

Updated Feb 12, 2019
Version 2.0
  • bkinnan2's avatar
    bkinnan2
    Copper Contributor

    Is this post still valid? My understanding is that the Connector is now deprecated?

  • wdong's avatar
    wdong
    Copper Contributor

    I wonder if I can use it to build an analytic report gathering all usages of  Exchange, Forms, MS Teams, Office 365, OneDrive, SharePoint, Skype for Business and Yammer via MS Graph on Power BI.