Today, we launched a Microsoft Graph Security connector for Power BI along with a sample dashboard and template to enable rapid development of enterprise-wide security reports. Gain greater visibility into active threats and trends to help you better understand and manage security and risk.
You can now leverage the new connector included in the Power BI Desktop February 2019 update to:
- Build cool dashboards to get a complete picture of your security alerts and secure score information across multiple security solutions.
- Mash up security data with data from the other Power BI connectors, like Excel workbooks or other databases, for richer context.
- Use Power BI and Microsoft Flow to trigger an automated security workflow, such creating a ticket and sending a notification when your secure score decreases by more than a few percent. Combine this with the Microsoft Graph Security Flow connector for advanced workflows.
This Power BI connector for Microsoft Graph reduces the time and resources needed to integrate multiple data sources, simplifying the creation of reports across security solutions. For further details on integrating with the Microsoft Graph Security API, learn about the API and access the schema.
Getting Started
Use this connector in a new or existing Power BI dashboard. This connector is included in the Power BI Desktop February 2019 update.
- Your Azure Active Directory (AD) tenant administrator must first grant consent for the connector; follow the steps in the connector documentation.
- Select Get Data -> More… from the Home ribbon in Power BI Desktop after installing the Power BI Desktop February 2019 update.
- Select Online Services from the categories list.
- Select Microsoft Graph Security (Beta) and connect as illustrated below.
- Choose a Version (v1.0 or beta) and sign into Azure Active Directory, when prompted. Your user account needs to have Security Reader role permissions per the user delegated Microsoft Graph Security authorization requirements.
- Select the entity of choice and click load to display results as illustrated in the following diagram.
- You’re now ready to use the imported data in Power BI Desktop. Check out the Microsoft Graph Security Power BI connector documentation for advanced query options and other details.
User Scenarios
We’ve provided some examples below of reports created using the Microsoft Graph Security Power BI connector. A sample dashboard and template are also available for download from the Microsoft Graph Security GitHub repo. Feel free to slice and dice the information for each of the schema properties to build your own visualizations.
Visualize Alerts across different Security Products
You can now create a visual of security alerts originating from different security products deployed in your organization trending over a duration as per the diagram below.
Visualize Top Threats Targeting your Organization
Create a visual, per the diagram below, to get the top threats that impact your organization by categorizing your security alerts across the different security products running in your organization. This in turn enables you to get a complete picture of what’s top of mind for your organizational security investigations.
Visualize Top Targeted Users
Get a pictorial representation of users who were associated with the security alerts that originated from the different security products deployed in your organization per the following diagram to manage user risk information and potential top targeted users.
What's Next?
The Power BI dashboard and template using the Microsoft Graph Security Power BI connector can help jumpstart development of your custom reports. Build and contribute your own security templates and dashboards to the Microsoft Graph Security Power BI sample GitHub repo, following the contribution guidelines. Your contributions will be recognized via weekly blogposts on the Microsoft Security Graph tech community.
Try the Microsoft Graph Security connector and please share your feedback by filing a GitHub issue or by engaging on the Microsoft Security Graph API tech community or StackOverflow.