From the course: Microsoft Security, Compliance, and Identity Fundamentals (SC-900) Cert Prep by Microsoft Press
Join today to access over 25,300 courses taught by industry experts.
Describe audit solutions in Microsoft Purview
From the course: Microsoft Security, Compliance, and Identity Fundamentals (SC-900) Cert Prep by Microsoft Press
Describe audit solutions in Microsoft Purview
- Describe insider risk, eDiscovery, and audit capabilities in Microsoft Purview. Here we describe audit solutions within Microsoft Purview. Microsoft Purview provides audit solutions through the Microsoft Purview Information Protection connector and the Azure Diagnostic event hubs. The Microsoft Purview Information Protection connector streams audit logs into the Microsoft Purview Information Protection Standardized Table, which is gathered through Office Management APIs and uses a structured schema. The connector supports several audit log record types, including Microsoft Purview scanner events, Microsoft Purview sensitivity label events, and Microsoft Purview protection events, and lastly, the Microsoft Purview file deletion events. You can use Microsoft Sentinel to detect, investigate, and act on malicious and inadvertent activities within your organization. You can also enable and capture audit logs and time series…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.