MC789312 – Microsoft Purview | Audit search: New filters will be available Icon

check before: 2024-05-15


Entra, Microsoft 365 suite, Purview Communication Compliance


Web, World tenant


In development

Change type:

New feature, Admin impact




Microsoft Purview's audit search is adding four new filters: Id, UserType, UserKey, and ClientIP. These will help organizations better investigate user activities. The update is part of Microsoft 365 Roadmap ID 384092, with a Public Preview in late May 2024 and full rollout by late June 2024. No admin action is required before the rollout.

In Microsoft Purview, audit search provides your organization with access to critical audit log event data, allowing you to gain insight and further investigate user activities. The Microsoft Purview Compliance portal’s audit search UI currently includes several search fields (i.e., date range, activities, workloads, users, etc.) to facilitate the retrieval of relevant logs. With a recent update, we have added four additional fields to the audit search UI.
These four fields are described below:
New filter fieldDescription
IdUnique identifier of an audit record.
UserTypeThe type of user that performed the operation. See the UserType table for details on the types of users.
UserKeyAzure Active Directory Object ID in GUID format.
ClientIPThe IP address of the device that was used when the activity was logged.

This message is associated with Microsoft 365 Roadmap ID 384092.
[When this will happen:]
Public Preview: We will begin rolling out late May 2024 and expect to complete by mid-June 2024.
General Availability (Worldwide): We will begin rolling out mid-June 2024 and expect to complete by late June 2024.

Change Category:


Release Phase:
General Availability, Preview



the free basic plan is required to see all details. Sign up here

A plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to please choose a plan.

Share to MS Teams

Login to your account

Welcome Back, We Missed You!