Splunk® Supported Add-ons

Splunk Add-on for Microsoft Office 365

Download manual as PDF

Download topic as PDF

Release notes for the Splunk Add-on for Microsoft Office 365

Version 1.1.0 of the Splunk Add-on for Microsoft Office 365 was released on May 23, 2019.

About this release

Version 1.1.0 of the Splunk Add-on for Microsoft Office 365 is compatible with the following software, CIM versions, and platforms.

Splunk platform versions 6.6.x, 7.0.x, 7.1.x, 7.2.x, 7.3.x
CIM 4.12
Supported OS Platform independent
Vendor products Microsoft Office 365

New features

Version 1.1.0 of the Splunk Add-on for Microsoft Office 365 has the following new features.

  • Configurable Token Refresh Window for the Management Activity inputs to support uninterrupted data ingestion.

Fixed Issues

Version 1.1.0 of the Splunk Add-on for Microsoft Office 365 contains the following fixed issues.

Date resolved Issue number Description
2019-04-17 ADDON-20704 Add-on doesn't tag authentication events from o365 audit events
2019-04-14 ADDON-20616 Modular input hang on calling O365 Management API
2019-04-12 ADDON-20076 Data duplicating multiple times over for o365:management:activity
2019-04-11 ADDON-21196 splunk_ta_o365 - DLP Inputs - Date range for requested content is invalid
2018-10-12 ADDON-18373 Data ingestion may stop on Debian Linux Server

Known issues

Version 1.1.0 of the Splunk Add-on for Microsoft Office 365 contains the following known issues.

Date filed Issue number Description
2019-04-09 ADDON-21696 Data duplication issue over multiple content URL in o365:management:activity input

Third-party software attributions

Version 1.1.0 of the Splunk Add-on for Microsoft Office 365 incorporates the following third-party software or libraries.

PREVIOUS
Source types for the Splunk Add-on for Microsoft Office 365
  NEXT
Release history for the Splunk Add-on for Microsoft Office 365

This documentation applies to the following versions of Splunk® Supported Add-ons: released


Was this documentation topic helpful?

Enter your email address, and someone from the documentation team will respond to you:

Please provide your comments here. Ask a question or make a suggestion.

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters