Support
 
PhoneGet Quote
 
Support
 
US Sales: +1 888 720 9500
US Support: +1 844 245 1108
Intl: +1 925 924 9500
Aus: +1 800 631 268
UK: 0800 028 6590
CN: +86 400 660 8680

Direct Inward Dialing: +1 408 916 9890

 
 
Features
Home » Microsoft 365 Auditing

Microsoft 365 Auditing

When dealing with a cloud environment, auditing user activities is a necessary security practice because users can sign in from practically anywhere. However, by only using Microsoft 365, you might miss out on some of the crucial details you need to monitor user activities fully. Use M365 Security Plus to ease your security concerns and keep your Microsoft 365 setup intact. Track even the most granular user activities in Exchange Online, Azure Active Directory, OneDrive for Business, and other services.

Exchange Online Auditing

You need to constantly audit Exchange Online to keep mailbox issues, like spam and malware, at bay. Use M365 Security Plus to audit and monitor not only mailbox access but public folder access, contact changes, and permission changes as well.

With M365 Security Plus, keep track of:

  • Non-owner mailbox accesses, admin activities, and mailbox delegations to check for malicious activities.
  • Owner, non-owner, and admin activities on Exchange Online groups, group delegations, emails sent as groups, and more.
  • Contacts created, modified, or deleted by users.
  • Public folders created, modified, or deleted by users.
  • Any changes made to critical mailbox permissions.

    • Know more »

Azure Active Directory (AD) Auditing

Auditing user activities helps organizations make preemptive decisions. If your auditing tool reveals suspicious user activities in Azure AD, you can avoid security breaches well before any dire consequences occur. M365 Security Plus provides in-depth audit details, which keep you aware of every event in the Azure AD environment.

With M365 Security Plus, keep track of:

  • Failed logon attempts due to an invalid username or password, which are indicators of brute force attacks.
  • Password and license changes made by users.
  • Recently created, modified, or deleted user accounts and user groups.
  • Group membership changes.

Know more »

OneDrive for Business Auditing

M365 Security Plus audits OneDrive for Business to bring even the smallest file changes to light. Monitor file activities, file sharing activities, and sync activities, such as files uploaded to or downloaded from the cloud, to keep OneDrive for Business undamaged. Create your own audit profiles to audit only those events you want to track. Audit profiles help you avoid the overhead that comes along with scrutinizing the entire audit log for details.

With M365 Security Plus, keep track of:

  • Files created, modified, deleted, renamed, or moved—with details on who did what action and when.
  • Sharing invitations, accepted and rejected access requests, and created, accepted, and deleted file sharing activities.
  • Partially and fully downloaded files, as well as uploaded files.
  • Synced devices and more.

Know more »

Yammer auditing

Yammer is the enterprise social network that brings all the stakeholders of a company, both internal and external, together. It's all about collaboration and networking. From Yammer, users can schedule a meeting in Outlook, start a video call in Skype for Business, access documents from OneDrive, and so on.

With everything users can access from Yammer, it's essential that actions are tracked. With M365 Security Plus, you can:

  • Audit the user groups created, modified, and deleted in Yammer, including the messages exchanged in those groups.
  • Keep track of files accessed, downloaded, modified, and viewed by Yammer users to ensure the integrity of files.
  • Track network configuration, profile settings, and security configuration changes made by admin.
  • Receive notifications about suspended users, exported data, and other modified Yammer settings the moment any of these activities happen.

Power BI auditing

Power BI is a business analytics suite fit for handling any amount of data. When bestowed with the responsibility of handling company data, extra precautions must be taken to comply with industrial mandates, so you can avoid mishaps. But Power BI's audit logs are difficult to get to and require multiple access features to be enabled in Microsoft 365.

With M365 Security Plus, keep track of:

  • Keep track of the groups created, modified, and deleted by users on Power BI.
  • See what dashboards were created, modified, deleted, and printed by users.
  • Audit the reports generated, viewed, printed, and shared by users to ensure that no data is shared with the external network, where it can fall into the wrong hands.
  • Know which users viewed metrics, admin portal activities, and datasets.

Know more »

Microsoft Teams auditing

Microsoft Teams helps get your teams on the same page with group chat, online meetings, web conferencing, etc. Users can customize their workspace by adding their favorite Microsoft app and third-party services. Teams can also collaborate on files with built-in Microsoft 365 apps like Word, Excel, PowerPoint, and SharePoint.

With M365 Security Plus, you can:

  • Track every team, organization, and channel setting changed by users.
  • Audit the teams and channels created in your organization to understand team dynamics better.
  • See the bots added and removed from your team's environment.
  • Configure alerts to notify you about changes you deem critical.

Microsoft Stream auditing

Microsoft Stream is the video sharing service of Microsoft 365, which lets you create and share videos across your organization. Users can create videos for knowledge sharing or promotion, and share them to their target audience.

With M365 Security Plus, you can:

  • Audit created, shared, modified, downloaded, and deleted videos by users.
  • See the likes and comments on videos, including deleted comments, along with permission changes made to videos.
  • Track the channels created, modified, and deleted by users in your Stream environment.
  • View information on user settings changes, deleted users, admin setting changes, and more.

SharePoint Online auditing

SharePoint Online lets you share critical data for collaboration both inside and outside your organization. But this means that your user access levels need to be defined and secure. However, enterprise environments are vast, which makes securing them an arduous task.

With M365 Security Plus, you can:

  • Track any modification made to a site’s permissions. You can also compare site permission levels before and after they have been modified.
  • View the users who have requested for administrator permissions for site collections.
  • Enable or disable site sharing. Keep track of the sites that have sharing policies turned on or off.
  • Track SharePoint Online objects and groups that have been modified, deleted, or renamed. Monitor users who have been added to or removed from a group.

Compliance Management

Compliance management is an arduous, but inevitable, task. Required audit details often need to be maintained manually. M365 Security Plus helps you generate and maintain the audit details you need to meet compliance requirements such as SOX, PCI-DSS, HIPAA, FISMA and GLBA.

With M365 Security Plus, keep track of:

  • Security searches and created, modified, or deleted compliance security filters.
  • Created, modified, or deleted Data Loss Prevention (DLP) and retention compliance policies.
  • New case hold policies, DLP matches, activity alerts, users, and groups.
  • Management role groups that are created or deleted, including their members, and more.

Looking for a unified SIEM solution with Microsoft 365 auditing capabilities?
Try Log360 today!

 Explore Log360 now!  Request demo
A Complete Microsoft 365 Security Solution
HighlightsAuditingMonitoringDelegationRelated products