Microsoft Sentinel for Teams (Preview)
Solution: Teams
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Microsoft Corporation |
| Support Tier | Microsoft |
| Support Link | https://support.microsoft.com/ |
| Categories | domains |
| Version | 3.0.0 |
| Author | Microsoft - support@microsoft.com |
| First Published | 2022-02-01 |
| Solution Folder | Teams |
| Marketplace | Azure Marketplace · Rating: ★☆☆☆☆ 1.0/5 (1 ratings) · Popularity: 🔵 Medium (64%) |
Microsoft Sentinel solution for Teams provides Teams security logs visibility and threat protection for communication and data sharing in the Microsoft 365 Cloud via Microsoft Teams. In order to get the logs, you should connect to the Microsoft 365 connector and choose the Teams application.Please refer to this guide. By connecting Teams activity logs into Microsoft Sentinel, you can view this data in workbooks, use it to create custom alerts, and improve your investigation process.This articlefocuses on collecting Teams activity logs in Microsoft Sentinel.
Contents
Data Connectors
This solution does not include data connectors.
This solution may contain other components such as analytics rules, workbooks, hunting queries, or playbooks.
Tables Used
This solution queries 2 table(s) from its content items:
| Table | Used By Content |
|---|---|
OfficeActivity |
Workbooks |
SigninLogs |
Workbooks |
Content Items
This solution includes 3 content item(s):
| Content Type | Count |
|---|---|
| Playbooks | 2 |
| Workbooks | 1 |
Workbooks
| Name | Tables Used |
|---|---|
| MicrosoftTeams | OfficeActivitySigninLogs |
Playbooks
| Name | Description | Tables Used |
|---|---|---|
| Advanced ServiceNow Teams Integration Playbook | This playbook showcases an example of triggering an incident within a targeted Teams channel and ope... | - |
| Send Teams Adaptive Card on incident creation | This playbook will send Microsoft Teams Adaptive Card on incident creation, with the option to chang... | - |
Release Notes
| Version | Date Modified (DD-MM-YYYY) | Change History |
|---|---|---|
| 3.0.0 | 19-07-2023 | Updated Workbook template to remove unused variables. |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊