Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Overview of 365 and AD log options-Is there somewhere that has an overview of the different options?

NJ
Path Finder
‎02-20-2023 08:31 PM

Hi

I am trying to create alerts and dashboards for my o365 and AD logs. 

Is there somewhere that has an overview of the different options in for example Operations? Since I dont have a log from when a user is created, I dont know the value the log will say eg, UserCreated, UserWasCreated, CreateUser.

Hope it makes sense

 

Labels (1)
Labels
Tags (3)
0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎02-20-2023 11:28 PM

Hi @NJ,

did you already explored, in splunkbase some apps as: Microsoft 365 App for Splunk (https://splunkbase.splunk.com/app/3786)?

Ciao.

Giuseppe

Reply

NJ
Path Finder
‎02-20-2023 11:40 PM

Yes and that helped but want to know all the possible values under for example the Operation field that 365 and AD logs can produce.

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎02-20-2023 11:56 PM

Hi @NJ,

sorry but I think that this isn't the best locatiopn for this answer, this is a Microsoft knowldege not a Splunk knowledge!

Ciao.

Giuseppe

0 Karma
Reply
Get Updates on the Splunk Community!

New This Month in Splunk Observability Cloud - Metrics Usage Analytics, Enhanced K8s ...

The latest enhancements across the Splunk Observability portfolio deliver greater flexibility, better data and ...

Alerting Best Practices: How to Create Good Detectors

At their best, detectors and the alerts they trigger notify teams when applications aren’t performing as ...

Discover Powerful New Features in Splunk Cloud Platform: Enhanced Analytics, ...

Hey Splunky people! We are excited to share the latest updates in Splunk Cloud Platform 9.3.2408. In this ...