What will be Impact on the logging capabilities if we have Office 365 Business Premium licenses (and not E3 or E5) for Chronicle SIEM and SOAR.
Office 365 Business Premium licenses - Impact on the logging capabilities
+4- Bronze 1
Microsoft forums might have more insight into what data each of their plans collects. On the Chronicle end anything that feeds through the parsers is enriched that can be. The O365 and Premium Defender ATP logs should com through to Chronicle same as E3-E5 Defender logs would. Unless there is some unusual caveat regarding their premium plan.
Login to the community
Login with SSO
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.