On Demand Audit Current - Release Notes

Release Notes

Quest® Quest On Demand Audit

Release Notes

November 2018

These release notes provide information about the Quest On Demand Audit release.

Topics:

About this module

On Demand Audit provides extensive auditing of critical activities and detailed reports about vital changes taking place in Microsoft Office 365 Exchange Online, SharePoint Online, and OneDrive for Business. Continually being in-the-know helps you to prove compliance, drive security, and improve up time while proactively auditing changes to configurations and permissions.

  • When Exchange Online mailboxes are created, deleted, and accessed.
  • Permission changes to see which users are granted access to a mailbox.
  • Mailbox activity by non-owner such as messages sent, read, deleted, and folders deleted
  • Mailbox activity by owner for sensitive and high value mailboxes.
  • When files and folders are accessed, created, deleted, uploaded, moved, renamed, and checked in and out of SharePoint Online and OneDrive for Business sites.
  • When user and group attributes are changed.
  • When users and groups are added to and removed from the directory.
  • Successful and failed logins. 
  • Suspicious sign-in activity.

Release History

Release History

Current release

2018/11/22

Enhancements
Enhancement ID

Ability to copy event details to a clipboard.

41594

Previous releases

2018/10/30

Enhancements
Enhancement ID

Ability to create a new search or refine an existing search based on event details.

54553

2018/10/23

Enhancements
Enhancement ID

A Sign-ins tab on the dashboard and visualizations that allows you to see sign-ins by application, location, failed and successful attempts, and activity timeline. You can further filter the information by application or user.

7826

2018/10/02

Enhancements
Enhancement ID

Ability to audit activity from the Azure Active Directory Risky Sign-ins report. Enhancement includes:

  • Azure AD risk events in the past 7 days built in search.
  • Additional columns and filters for risky sign in searches.
23978

2018/09/20

Enhancements
Enhancement ID

Additional built in searches:

  • Email forwarding enabled in the past 7 days built in search
  • Office 365 activity from ad-hoc external recipients in the past 7 days

27168

28979

Ability to select the required service when adding the Service field to a search. 27819
Ability to select "Yes" or "No' when adding the MFA Required field to a search. 27824
Ability to select "Failed" or "Successful" when adding the Status field to a search. 27818

2018/08/21

Enhancements
Enhancement ID

Ability to audit activity from the Azure Active Directory Sign-in.

Additional built-in searches:

  • Azure AD failed sign-in events in the past 7 days
  • Azure AD sign-in events in the past 7 days
  • Azure AD successful sign-in events in the past 7 days

Additional available columns:

  • Status (Default for All Event searches and Sign-in searches only)
  • Event Version
  • Failure Reason
  • Location
  • Error Code

Additional integer operators for search queries:

  • equals_number
  • does_not_equal_number
  • greater_than
  • greater_than_or_equals
  • less_than
  • less_than_or_equals
  • between_number
10678

Additional built-in searches:

  • Objects added/removed from Azure AD groups in the past 7 days
  • Objects added/removed from Azure AD roles in the past 7 days
  • Users added/removed as owner of Azure AD groups in the past 7 days
  • Azure AD tenant level configuration changes in the last 180 days
  • Important changes for critical Azure AD directory roles in the past 7 days
  • OneDrive for Business and SharePoint Online anonymous link events in the past 180
    built-in search.

27716

27016

27056

27015

Ability to sort search results by column. 26271

2018/07/31

Enhancements
Enhancement ID
Ability to audit activity from the Azure Active Directory Audit Logs. 10678
Search terms are highlighted in search results and event details to allows you to quickly
scan for matches.
23968
Ability to organize the column display order through drag and drop. 26273
Azure Active Directory role membership and Azure Active Directory group membership and ownership activity produces an event for every target included in the activity. 23979

2018/06/26

Enhancements
Enhancement ID
New "in" and "not in" string operators are available when editing a search. This allows you to filter on multiple values for the same attribute. 23967
Updated design for the Audit homepage card to show the services currently being audited and the number of events in the last hour. 25372

2018/06/02

Enhancements
Enhancement ID
Ability to perform visualizations from the save search screen. 21981
Ability to run a search by clicking on the search name. 22871
When a search is copied, "Copy" is appended to the search name. 24551
New categories and built in searches:
  • All category that contains all configured searches.
  • All Events category that contains the "All events in the past 24 hours" and "All events in the past 7 days" built in searches
23982

2018/05/29

Enhancements
Enhancement ID
Ability to perform a quick search for events from the Audit card. 23609

2018/05/15

Enhancements
Enhancement ID
Ability to "Copy" a search. 22872
Ability to quickly search for events based on a value. 23611

2018/05/08

Enhancement ID
Ability to use "Save As" on searches. 22873
"All Office 365 events from EXT users in the past 7 days" built in search. 23286

Incident response management

Incident response management

Quest Operations and Quest Support have procedures in place to monitor the health of the system and ensure any degradation of the service is promptly identified and resolved. On Demand relies on Azure and AWS infrastructure and as such, is subject to the possible disruption of these services.You can view the following status pages:

System requirements

System requirements

The following web browsers are supported with On Demand:

  • Internet Explorer 11
  • Microsoft Edge
  • Google Chrome (latest version)
  • Mozilla Firefox (latest version)
Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents