I am registering an app in Azure AD to use the Microsoft 365 App for Splunk.
When I registered the app, I added the Office 365 Management API to the API permissions. However, the permissions that are actually displayed are different from the ones displayed in the steps described in the reference URL.
Is it possible for Splunk to get logs from Microsoft 365 without "ActivityReports" and "ThreatIntelligence" in the permissions?
procedure
Actual screen Reference URL
https://www.splunk.com/ja_jp/blog/it/set-up-guide-microsoft365-vol1.html
... View more