What should you use

– by 2

Your company has a Microsoft 365 subscription.
You need to identify which users performed the following privileged administration tasks:
Deleted a folder from the second-stage Recycle Bin of Microsoft SharePoint
Opened a mailbox of which the user was not the owner
Reset a user password
What should you use
A. Microsoft Azure Activity Directory (Azure AD) audit logs
B. Security & Compliance content search
C. Microsoft Azure Activity Directory (Azure AD) sign-ins
D. Security & Compliance audit log search

microsoft-exams

2 thoughts on “What should you use

  1. Answer is D. Azure AD audit logs are for system health. Security & Compliance audit logs are for the types of activities the question mentions

    Reply

  2. it is D. The reference only mentions Azure-specific items, and nothing that is in the requirements of the question. All of those from the question are in the S&CC audit logs – heck, that’s what they are for.

    6
    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.