PowerShell Script Two: Enabling Unified Audit Log on all Office 365 tenants and removing successful admins. This script should be run at least a few hours after the first script to ensure that the admin permissions have had time to correctly apply. It will import the required data from the Azure Audit logs to the Power BI report. Once the data import has been completed, a full-fledged dashboard will be automatically created which we can customize as per our need. A new item by the name "Azure Audit Logs" will be created in the left pane, as shown below. Question is how to get an Azure AD Resource ID to invoke the Set-AzureRmDiagnosticSetting cmdlet, or if there is a different PowerShell cmdlet to enable Diagnostic logging for Azure AD. On exec Get-AzureRmResource with context set to my Azure AD tenant, I do not get Azure AD resources.

Let's Encrypt - Using the Azure CLI to create an Azure AD Application and Service Principal for an Azure Web Service Open Github account in new tab Open Twitter account in new tab May 21, 2019 · I already had an Application I was using to query the Audit Logs so I added the Log Analytics to it. On your Azure AD Application select Add a permission => APIs my organization uses and type Log Analytics => select Log Analytics API => Application permissions => Data.Read => Add permissions Use the Search-UnifiedAuditLog cmdlet to search the unified audit log. This log contains events from Exchange Online, SharePoint Online, OneDrive for Business, Azure Active Directory, Microsoft Teams, Power BI, Sway, and other Office 365 services. You can search for all events in a specified date range,...