If you don't have permissions, see Before you search the audit log.Are audit logs enabled, and do you have permission to view the audit logs? Check > Search > Audit Log Search.There's an error with your setup that's keeping the flow from working. If you don't see a (200) response, the request has failed. Set the Resource URL to for a commercial tenant, for a GCC tenant, for a GCC high tenant and for a DoD tenant.Ĭopy the Redirect URL into your text document in Notepad. Leave the Login URL as is for commercial and GCC tenants, and change it to for a GCC High or DoD tenant.
Paste the client secret you copied from the app registration into Client secret. Paste the application (client) ID you copied from the app registration into Client Id. Select Edit at the bottom of the OAuth 2.0 area to edit the authentication parameters. More information: Activity API operations
Now you'll configure and set up a custom connector that uses the Office 365 Management APIs. Leave the Azure portal open, because you'll need to make some configuration updates after you set up the custom connector. You'll need these values in the next step as you configure the custom connector. Select Overview, and copy and paste the application (client) ID and directory (tenant) ID values to the same text document be sure to make a note of which GUID is for which value. The API permissions now reflect delegated ActivityFeed.Read, and application ActivityFeed.Read permissions, with a status of Granted for (your organization).Īdd a description and expiration (in line with your organization's policies), and then select Add.Ĭopy and paste the Secret to a text document in Notepad for the time being. Select Grant Admin Consent for (your organization). Select Delegated permissions, and then select ActivityFeed.Read. Select Office 365 Management API, and configure permissions as follows: Select API Permissions > + Add a permission. Go to Azure Active Directory > App registrations.Įnter a name (for example, Microsoft 365 Management), don't change any other setting, and then select Register. More information: Get started with Office 365 Management APIs Using these steps, you'll set up an Azure AD app registration that will be used in a custom connector and Power Automate flow to connect to the audit log. Create an Azure AD app registration for the Office 365 Management API The Office 365 Management APIs use Azure Active Directory (Azure AD) to provide authentication services that you can use to grant rights for your application to access them.
More information: Security & Compliance Center availability for business and enterprise plans Your tenant must have a subscription that supports unified audit logging.More information: Search the audit log in the Security & Compliance Center The Microsoft Power Platform Service Admin role doesn't give you access to the audit log. You must have access to the audit log.More information: Turn audit log search on or off Microsoft 365 audit log search must be turned on for the audit log connector to work.This article assumes you have your environment set up and are logged in with the correct identity. Complete the instructions in Before setting up the CoE Starter Kit and Set up inventory components before continuing with the setup here.