MC344413: Retirement announcement for AIP Audit Logs pipeline forwarding audit logs to Azure Log Analytics workspaces

Upcoming, we will no longer be onboarding new Log Analytics workspaces to store Azure Information Protection (AIP) audit logs.

Note: Customers who have previously configured Log Analytics to store AIP audit logs will continue to receive forwarded audit logs into their workspaces until the data pipeline is fully retired.

Affected workloads

• Azure Information Protection

When this will happen

• We will stop onboarding Log Analytics workspaces to store the AIP audit logs on March 28th.
• We will keep this data pipeline available until September 30, 2022. After this date, customers will no longer receive new data through this pipeline into their log analytics workspaces. Data pipeline will be fully retired.

How this will affect your organization

Beginning on September 30, we will disable the Configure Analytics (Preview) page for all customers. When disabled, all customer integrations and reports that are using Log Analytics workspaces data, populated with AIP audit logs via mentioned pipeline, will stop acquiring new data.

The same data is already available in Microsoft 365 Activity explorer, as it was announced in September 2021, and will continue to be updated.

What you need to do to prepare

We encourage you to learn more about Microsoft 365 compliance center enhanced reporting and analytics capabilities, and learn how to get started with:

• Activity explorer
• Content explorer

Learn more

• AIP Audit logs (preview) documentation
• AIP removed and deprecated services
• Detailed information on our Yammer post
• Azure Information Protection audit log reference (public preview)

Message ID: MC344413
Published: 18 March 2022
Updated: 23 March 2022
Major change: True
Plan For Change
#AdminImpact #Retirement