MC285910: General availability of AIP client and scanner audit logs in Microsoft 365 Audit and Activity explorer

Previously announced in public preview (MC243214), Azure Information Protection (AIP) administrators will soon be able to access data in Microsoft 365 compliance center Audit logs and Activity explorer, in addition to the AIP Analytics (Preview) portal. This message is associated with Microsoft 365 Roadmap ID 70600.

Azure Information Protection (AIP) customers can now access data in Microsoft 365 compliance center Audit logs and Activity explorer, in addition to the AIP Analytics portal. This means that all data logged via AIP client and AIP scanner can be witnessed along with the rest of the Microsoft Information Protection (MIP) and Data Loss Prevention (DLP) data sets from native Office apps and other cloud resources.

MC285910: General availability of AIP client and scanner audit logs in Microsoft 365 Audit and Activity explorer

Affected Workloads

  • Microsoft 365 suite

When this will happen

Rollout will begin in mid-October and is expected to be complete by end of October.

How this will affect your organization

As part of our unified labeling and analytics experience across the Microsoft Information Protection (MIP) solution, we are expanding your ability to access and review data logged by AIP client, scanner, and MIP SDK beyond the existing AIP Analytics (Preview) portal.

With this update, audit logs reported by the AIP client, the AIP scanner, and MIP SDK flowing today into the Log Analytics workspace will also be available in Microsoft 365 Audit logs.

Additionally, you can use the Activity explorer screen for additional insights into labeling activity and history.

What you need to do to prepare

Your data will be available in Activity Explorer, and you will be able to explore your AIP audit logs in Microsoft 365 portal. No action is needed as audit log data will flow into Activity Explorer by default. If you wish to opt-out, please follow the procedure explained here.

Administrators will be able to continue exploring AIP Audit logs in the Log analytics workspace in the AIP Analytics (Preview) portal. This is a supplemental access point.

You might want to notify your administrators about this new capability and update your training and documentation as appropriate.

Learn more

Message ID: MC285910
Published: 18 September 2021
Updated: 18 September 2021