Hi all, I’ve attempted to use the Office 365 script found here to get our 365 logs into Graylog: https://marketplace.graylog.org/addons/c2847486-0cbc-46da-b1ee-2b19f9b9640e but am not seeing any logs in Graylog so far for this input. I know the Azure/365 API side works as we had it running with a different SIEM doing the same thing.
The steps I’ve taken have been to download the scripts from Git onto the Graylog machine and run the suggested command in the Github instructions. There are no errors given and it appears to run the script, as it loads for a few seconds and then gives me my prompt back, but nothing seems to happen.
Has anyone got any ideas? Or perhaps a better way of getting 365 logs into Graylog?