This add-on enables seamless integration between Microsoft Graph API and Splunk, allowing security teams and administrators to efficiently collect and monitor Azure AD shared mailboxes. Key Features <span class="lia-unicode-emoji" title=":white_heavy_check_mark:">✅</span> Automated Data Collection – Fetches user details and filters only shared mailboxes from Azure AD. <span class="lia-unicode-emoji" title=":white_heavy_check_mark:">✅</span> Optimized API Calls – Uses Microsoft Graph API (Beta) with rate-limiting handling to avoid excessive requests. <span class="lia-unicode-emoji" title=":white_heavy_check_mark:">✅</span> Efficient Data Processing – Retrieves only the userPurpose field from mailboxSettings, reducing unnecessary API calls. <span class="lia-unicode-emoji" title=":white_heavy_check_mark:">✅</span> JSON Output for Splunk Indexing – Stores data in a structured format, making it easy to query and analyze within Splunk. <span class="lia-unicode-emoji" title=":white_heavy_check_mark:">✅</span> Threaded API Calls – Implements multi-threading for faster data retrieval while respecting API limits.