Hi Expert
Can Microsoft Dynamics 365 data be ingested to Microsoft Security and Compliance portal and from there it can be fed and extracted to Splunk? I'm looking to implement and wonder if this could be a potential solution.
Unlike Splunk has an add-on for Microsoft Office 365, where we can use Office 365 management activity API to retrieve information (docs.splunk.com/.../About)
Also looking at this link (docs.microsoft.com/.../office-365-management-activity-api-schema
PowerApps/ D365 data can be ingested to Microsoft Security and Compliance Centre portal and from here the data can be extracted using APIs link to SIEM (Splunk) via AuditRecordType = e.g. 45 PowerApps portal event or 21 for Dynamics 365 events.
is my understanding correct? Appreciate your response.
Regards/Somnath
Thanks PerezAguiar, and yes, we can enable auditing on D365 and the data can be ingested into Security and Compliance centre. My question was if this data can be extracted in the Splunk for further interrogation?
While looking at the Office 365 Management Activity API schema | Microsoft Docs, not sure if this extraction is possible using APIs link to SIEM (Splunk) via AuditRecordType = e.g. 45 PowerApps portal event or 21 for Dynamics 365 events.
Regards/Somnath
Hey Somnathc10.
To be honest, no idea on how to integrate Splunk with Dynamics. However, you can enable Auditing on Dynamics and query this information into the Compliance Center. This is documented on Microsoft Dataverse and model-driven apps activity logging - Power Platform | Microsoft Docs
Best regards
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
André Arnaud de Cal... 291,240 Super User 2024 Season 2
Martin Dráb 230,149 Most Valuable Professional
nmaenpaa 101,156