Chat now with support
Chat with Support

Change Auditor 7.0.3 - Office 365 and Azure Active Directory User Guide

Auditing in synchronized environments

Microsoft allows you to map identities between on-premises applications and cloud services. This is done by synchronizing your on-premises directories with Azure Active Directory using a Microsoft synchronization tool. When auditing Office 365 or Azure Active Directory in this synchronized environment, Change Auditor provides extra event details by mapping identities.

The following conditions must be met for Change Auditor to perform the mapping:

When Federation with AD FS is used as the single sign-on method, Azure logon events will no longer be generated since the authentication is done by the on-premises AD FS instance.

Upgrading Change Auditor

When you upgrade from Change Auditor version 6.9.0 or earlier:

Configuring Office 365 and Azure Active Directory auditing

Configuring Office 365 and Azure Active Directory auditing




Managing Office 365 templates

Change Auditor audits activity for Exchange Online, SharePoint Online, and OneDrive for Business that corresponds to the events in the Office 365 Security & Compliance Center unified audit log. Change Auditor allows you to easily track, report, and create alerts on activities such as:

For a compete list of events, their description, and default severity see the Change Auditor Office 365 and Azure Active Directory Event Reference Guide.

For details see:

Related Documents