Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MDCA/MCAS logs to IaaS/PaaS tenant Sentinel aggregated sentinel workspace #93

Open
chouma opened this issue Feb 1, 2022 · 0 comments
Open

MDCA/MCAS logs to IaaS/PaaS tenant Sentinel aggregated sentinel workspace #93

chouma opened this issue Feb 1, 2022 · 0 comments
Labels
enhancement New feature or request

Comments

@chouma
Copy link

chouma commented Feb 1, 2022

Hi C1

SOC has asked us to look into the potential for getting MDCA/MCAS logs from the PROD M365 tenant into sentinel in the IaaS/PaaS tenant.
Microsoft said ok the call that this would require some custom fields or something to move the log files.

Do you have an idea of how to get this done, or should we request some assistance from Microsoft to get us started analysing/planning this?

Who said this: Either Ward Pauvels, Leslie or someone else from Microsoft on the recent multi-tenant architecture review meeting.

Warmly

Claus Cramon Houmann
DIGIT.S2 Cloud Security
@lashegu lashegu added the enhancement New feature or request label Mar 24, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@chouma @lashegu