Mappings: Microsoft O365 Exchange Message Trace C2C
Input | Value |
---|---|
Vendor | Microsoft |
Product | O365 Exchange Message Trace |
Log Format | JSON |
Event ID Regex Pattern | Message Trace |
Output | Value |
---|---|
Vendor | Microsoft |
Product | O365 Exchange Message Trace |
Record Type |
Cloud SIEM Schema Field | Original Record Key | Notes |
---|---|---|
action | Status | |
bytesIn | Size | |
dstDevice_ip | ToIP | |
email_messageId | MessageId | |
email_recipient | RecipientAddress | |
email_sender | SenderAddress | |
email_subject | Subject | |
srcDevice_ip | FromIP | |
success | Status | This is a lookup field. More info to come in the catalog later... |