Azure User Mailbox Purpose

This add-on enables seamless integration between Microsoft Graph API and Splunk, allowing security teams and administrators to efficiently collect and monitor Azure AD shared mailboxes. Key Features ✅ Automated Data Collection – Fetches user details and filters only shared mailboxes from Azure AD. ✅ Optimized API Calls – Uses Microsoft Graph API (Beta) with rate-limiting handling to avoid excessive requests. ✅ Efficient Data Processing – Retrieves only the userPurpose field from mailboxSettings, reducing unnecessary API calls. ✅ JSON Output for Splunk Indexing – Stores data in a structured format, making it easy to query and analyze within Splunk. ✅ Threaded API Calls – Implements multi-threading for faster data retrieval while respecting API limits.

Built by Daniel Astillero

Latest Version 1.0.0

February 21, 2025

Compatibility

Not Available

Platform Version: 9.4, 9.3

Rating

0

(0)

Log in to rate this app

Support

Developer Supported addon

Ranking

#45

in Identity Management

This add-on enables seamless integration between Microsoft Graph API and Splunk, allowing security teams and administrators to efficiently collect and monitor Azure AD shared mailboxes. Key Features ✅ Automated Data Collection – Fetches user details and filters only shared mailboxes from Azure AD. ✅ Optimized API Calls – Uses Microsoft Graph API (Beta) with rate-limiting handling to avoid excessive requests. ✅ Efficient Data Processing – Retrieves only the userPurpose field from mailboxSettings, reducing unnecessary API calls. ✅ JSON Output for Splunk Indexing – Stores data in a structured format, making it easy to query and analyze within Splunk. ✅ Threaded API Calls – Implements multi-threading for faster data retrieval while respecting API limits.