Integration with M365 ATP & EOP
It will be better if it is integrated with M365 ATP & EOP previously O 365 ATP so that we can get the data & reports here in single place
This is in our backlog.
When can we expect to see some progress on this?
It's rather bad that phishing alerts are not available in the SIEM.
Microsoft has cybersecurity products for every area of your network from on-premise servers to desktops to cloud email and storage. However, when you read through a list of names for some of the available security solutions from Microsoft https://www.mcdvoice.cool
Not only will this provide EOP events in the same place as other signals, it will also provide event data in (near) real-time instead of the EOP reports which lag behind.
Looking for Office 365 ATP integrator on Azure Sentinel. We have office 365 connector for the activity logs but we do not have a connector for the office 365 ATP. This will help to get all the security events of Microsoft services everything on a single pane with respective to SIEm
Jordan Cheal commented
Agreed! This would be incredibly helpful for us as well. Considering this is a microsoft product and there is already a data connector for O365, it would be great to pull events created by Threat Management.