Latest Version 1.2.6
June 7, 2023
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
This app is archived. Learn more
Microsoft Graph Security API Add-On for Splunk
Microsoft Graph Security API Add-On allows Splunk users to ingest all security alerts for their organization using the Microsoft Graph Security API. Supported products include Azure Advanced Threat Protection, Azure AD Identity Protection, Azure Security Center, Azure Sentinel, Azure Information Protection, Microsoft Cloud App Security, Office Advanced Threat Protection, Defender Advanced Threat Protection and many more - Refer to complete supported product list at http://aka.ms/graphsecurityalerts
Built by Microsoft Corporation
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
Rating
0
(0)
Log in to rate this app
Support
Not Supported
Microsoft Graph Security API Add-On allows Splunk users to ingest all security alerts for their organization using the Microsoft Graph Security API. Supported products include Azure Advanced Threat Protection, Azure AD Identity Protection, Azure Security Center, Azure Sentinel, Azure Information Protection, Microsoft Cloud App Security, Office Advanced Threat Protection, Defender Advanced Threat Protection and many more - Refer to complete supported product list at http://aka.ms/graphsecurityalerts
Security alerts ingested through this add-on are mapped to the Splunk Common Information Model which allow you to easily integrate the alerts into your existing processes and dashboards.
Follow the setup and configuration steps in the 'Details' tab of this add-on to use this add-on. Learn more about the Microsoft Graph Security API at http://aka.ms/graphsecuritydocs
Categories
Created By
Microsoft Corporation
Type
addon
Downloads
26,908
Licensing
Splunk Answers
Resources
Log in to report this app listing