Microsoft Graph Security API Add-On for Splunk

Microsoft Graph Security API Add-On allows Splunk users to ingest all security alerts for their organization using the Microsoft Graph Security API. Supported products include Azure Advanced Threat Protection, Azure AD Identity Protection, Azure Security Center, Azure Sentinel, Azure Information Protection, Microsoft Cloud App Security, Office Advanced Threat Protection, Defender Advanced Threat Protection and many more - Refer to complete supported product list at http://aka.ms/graphsecurityalerts Security alerts ingested through this add-on are mapped to the Splunk Common Information Model which allow you to easily integrate the alerts into your existing processes and dashboards. Follow the setup and configuration steps in the 'Details' tab of this add-on to use this add-on. Learn more about the Microsoft Graph Security API at http://aka.ms/graphsecuritydocs