Search

MC789312 – Microsoft Purview | Audit search: New filters will be available

cloudscout.one Icon

check before: 2024-05-15

Product:

Entra, Microsoft 365 suite, Purview Communication Compliance

Platform:

Web, World tenant

Status:

In development

Change type:

New feature, Admin impact

Links:

384092

Details:

Summary:
Microsoft Purview's audit search is adding four new filters: Id, UserType, UserKey, and ClientIP. These will help organizations better investigate user activities. The update is part of Microsoft 365 Roadmap ID 384092, with a Public Preview in late May 2024 and full rollout by late June 2024. No admin action is required before the rollout.

Details:
In Microsoft Purview, audit search provides your organization with access to critical audit log event data, allowing you to gain insight and further investigate user activities. The Microsoft Purview Compliance portal’s audit search UI currently includes several search fields (i.e., date range, activities, workloads, users, etc.) to facilitate the retrieval of relevant logs. With a recent update, we have added four additional fields to the audit search UI.
These four fields are described below:
New filter fieldDescription
IdUnique identifier of an audit record.
UserTypeThe type of user that performed the operation. See the UserType table for details on the types of users.
UserKeyAzure Active Directory Object ID in GUID format.
ClientIPThe IP address of the device that was used when the activity was logged.

This message is associated with Microsoft 365 Roadmap ID 384092.
[When this will happen:]
Public Preview: We will begin rolling out late May 2024 and expect to complete by mid-June 2024.
General Availability (Worldwide): We will begin rolling out mid-June 2024 and expect to complete by late June 2024.

Change Category:
XXXXXXX ...

Scope:
XXXXXXX ...

Release Phase:
General Availability, Preview

Created:
2024-05-01

updated:
2024-05-01

the free basic plan is required to see all details. Sign up here


A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.


Share to MS Teams

Login to your account

Welcome Back, We Missed You!