/
cloud.office365.exchange
Document toolboxDocument toolbox

cloud.office365.exchange

Owned by Juan Tomás Alonso Nieto (Deactivated)
Jul 06, 2022
1 min read
[ 1 Introduction ] [ 2 How is the data sent to Devo? ]

Introduction

The tag beginning with cloud.office365.exchange identifies events with workload generated by Microsoft Office 365 (hosted on Azure). The types of events supported are:

  • AirInvestigation

  • AzureActiveDirectory

  • Compliance

  • Endpoint

  • Exchange

  • MCAS

  • MicrosoftFlow

  • MicrosoftForms

  • MicrosoftStream

  • MicrosoftTeams

  • MyAnalytics

  • OneDrive

  • PowerApps

  • PowerBI

  • Quarantine

  • SecurityComplianceCenter

  • SharePoint

  • SkypeForBusiness

  • ThreatIntelligence

  • Yammer

How is the data sent to Devo?

You can forward logs generated by Microsoft Office 365 using any Syslog drain (for example, Syslog-ng).

Related content

Office 365 Exchange Message Tracing collector
Office 365 Exchange Message Tracing collector
Devo v7.12.0
More like this
cloud.office365
cloud.office365
Devo latest
More like this
Microsoft Azure collector
Microsoft Azure collector
Devo v7.10.0
More like this
cloud.office365.siem
cloud.office365.siem
Devo v7.12.0
More like this
Microsoft Azure collector
Microsoft Azure collector
Devo latest
More like this
Platform alert pack: Office 365
Platform alert pack: Office 365
Devo latest
More like this