Office365 Auditing - specifically viewing devices logged in to accounts

email exchange powershell office365
17,771

If you have Azure subscription, you have access to these details.

To examine the devices and applications from which a specific user connected to a mailbox in Office 365:

  1. In the Security & Compliance Center, choose Reports > View reports.
  2. Under Auditing, choose Azure AD reports.
  3. In the Azure management portal, on the Active Directory tab, choose the name of your organization.
  4. Under your organization name, choose Users. Locate the user you want to investigate and choose the username.
  5. On the user page, choose Devices.
  6. In the View drop-down list, select Devices and applications from which the user has signed in. This will provide details, such as the version of client used to sign in, and the last sign-in time, IP address, and location of the user.

For more details, you may check this Microsoft TechNet article.

Share:
17,771

Related videos on Youtube

Jason
Author by

Jason

Updated on September 18, 2022

Comments

  • Jason
    Jason over 1 year

    We have some clients who work with government contracts, and some of their requests has been to being able to audit accounts and seeing where they logged in from based on IP.

    Is there a way to do this?

    I am attempting the following via powershell but I am not sure if this is the way to go.

    Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox"} | Set-Mailbox -AuditEnabled $true

    And for viewing:

    Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox"} | Set-Mailbox -AuditOwner MailboxLogin

    Am I going about this the right way to view IPs with time stamps and when they logged in and with what devices?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Office 365 Shared Mailboxes Not Displaying in Outlook
Restrict Office 365 users to internal email only
How do you change the From: field in an email's header using Outlook or Exchange online?
PowerShell List of distribution groups and members? (Office 365)
Office365 Exchange: Cannot open shared two calendars in Outlook
Outlook 2013 not showing emails older than aprox. 6months old in any folders
How to disable "clutter" feature in office 365
How to get a list of all Distribution Lists and their Members in Exchange 2007?
Configure Exchange to ignore requests for read receipts on certain mailbox
Need to add a "Wait" command to a Powershell script