Take a look at the email integrations and connectors - ex. https://cloud.google.com/chronicle/docs/soar/marketplace-integrations/microsoft-graph-mail. Are you trying to ingest email from a specific mailbox?

No, I’m working on creating a playbook that should run on all emails received within my infrastructure. For that, I need every incoming email—regardless of the specific mailbox—to be ingested.

for example we are able to preview anymail from defender email explorer right i am looking for a similar approach

NASEEF,

You may want to consider configuring Microsoft 365 Journaling mailbox. Setting up a journal rule to send a copy of all incoming and outgoing emails (including headers, body, and attachments) to a dedicated journaling mailbox within your Microsoft 365 tenant. This ensures comprehensive capture of all emails regardless of the specific user mailbox. Then when you set up the Microsoft Graph Mail Connector, you can configure it to read emails from the dedicated journaling mailbox.

Thank you