AvePoint Docs
Graph API
My support tickets
Graph API
My support tickets
English

Home > Enable Report Data Collection (Microsoft Azure Cloud Platform) > Overview

Export to PDF

Enable Report Data Collection (Microsoft Azure Cloud Platform)

Follow the instructions below to configure the report data collection settings.

Data in Microsoft 365

With this collection enabled, you can select data sources to view the following reports or use the functions of AvePoint cloud services.

*Note: AvePoint Online Services will stop collecting audit data immediately after your tenant’s subscription expires.

AvePoint Cloud ServiceReport/Function
AvePoint Cloud InsightsAll types of reports
AvePoint Cloud Management Report Center*Microsoft 365 Activity Reports
AvePoint Cloud Management Report Center*Auditor Reports
AvePoint Cloud Management Report Center*Usage Reports
AvePoint Cloud Management Identity ManagerThe User Filter and Policy Enforcer rules
AvePoint Cloud ArchivingThe Last Accessed Time ruleThe Action audit reports (for Opus only)
AvePoint OpusThe Last Accessed Time ruleThe Action audit reports (for Opus only)
AvePoint Policies for Microsoft 365The Auditor Mode rules
AvePoint Cloud Management AdministratorThe Auditor Mode rules

Note the following:

- To enable the data collection, you must first go to **App management** to create an app profile of the Microsoft 365 (All permissions), Reporting for Microsoft 365, or custom Azure app type. The app profile must include **AvePoint Online Services common service** into the service scope. - To collect data, make sure the **Audit log search** is turned on in the Microsoft 365 Purview compliance portal. For more instructions, see . - When you enable the **Report** **data** **collection** for the first time, AvePoint Online Services first collects data for six days before you enable the option, and then collects data daily. - To avoid 429 throttling issues, Cloud Management Report Center supports using Office 365 Management Activity APIs to read user activities for Auditor Reports. To use Office 365 Management Activity APIs, you must enable data collection on this page and select the **Use** **Office** **365** **Management Activity API, configured through Report Data Collection in AOS interface (Recommended)** option in the Report Center > **Global Settings** interface.

Complete the following steps to enable the report data collection:

  1. Click Report data collection on the left pane.

  2. On the Report data collection page, click the Data in Microsoft 365 section.

  3. In the Data in Microsoft 365 pane on the right side of the page, turn on the toggle to enable the data collection.

    *Note: After you enable the data collection, AvePoint Online Services can start jobs to collect data. The first job can collect data for six days before you enable the data collection.

  4. Set the scope for the tenants whose data will be displayed on reports. Select All tenants or Specific tenants. If you choose Specific tenants, select desired tenants from the drop-down list and click Apply.

  5. Refer to the table below to select your desired data source based on the reports you want to view or the functions you want to use.

Data sourceAvePoint cloud serviceReport/Function
SharePoint OnlineAvePoint Cloud InsightsUser Reports
SharePoint OnlineAvePoint Cloud InsightsThe Site Analysis report
SharePoint OnlineAvePoint Cloud InsightsContent Reports
SharePoint OnlineAvePoint Cloud InsightsThe Sharing Activity Analysis report
SharePoint OnlineAvePoint Cloud Management Report CenterMicrosoft 365 Activity Reports (SharePoint Online sites)
SharePoint OnlineAvePoint Cloud Management Report CenterAuditor Reports
SharePoint OnlineAvePoint Cloud Management Report CenterUsage Reports
SharePoint OnlineAvePoint Cloud ArchivingThe Last Accessed Time rule
SharePoint OnlineAvePoint OpusThe Last Accessed Time rule
SharePoint OnlineAvePoint Policies for Microsoft 365The Auditor Mode rules
SharePoint OnlineAvePoint Cloud Management AdministratorThe Auditor Mode rules
Exchange OnlineAvePoint Cloud Management Report CenterMicrosoft 365 Activity Reports (Exchange Online activities)
Microsoft Entra IDAvePoint Cloud Management Report CenterMicrosoft 365 Activity Reports (Microsoft Entra activities)
Microsoft Entra IDAvePoint Cloud Management Identity ManagerThe User Filter and Policy Enforcer rules
Microsoft Entra IDAvePoint Policies for Microsoft 365The Auditor Mode rules
General (other data sources such as Microsoft Teams)AvePoint Cloud Management Report CenterMicrosoft 365 Activity Reports

  1. Refer to the instructions below to select a storage type and configure the storage for storing Microsoft 365 activity data.

    • Default storage – Select this if you want to use the default Azure storage provided by AvePoint. To set a retention policy on the default storage, turn on the toggle, and configure the Retain data for _ Years/Months setting.

      *Note: If your organization uses the Default storage without a retention policy, the audit log will be kept until your organization’s subscription expires.

    If you want to use a custom storage, note the following before the configuration:

    • Before adding the storage account to the AvePoint Online Services interface, ensure that AvePoint agents have access to your storage. For details, refer to Allow AvePoint Agent Servers to Access Your Storage Account.

    • If the default storage is used previously, once the configuration is saved, old data in the default storage will be cleared up but won’t be moved to the new custom storage, and you cannot switch to the default storage anymore.

    • If you want to change to another custom storage, manually move the data from the old custom storage to the new one. AvePoint Online Services does not have the permission to clear up data from the old custom storage.

    To use a custom storage, refer to the instructions below to complete the configuration:

    • Azure Storage – If you select this custom storage type, configure the settings below:

      • Account name – Enter the account name of Azure Blob Storage.

      • Access key – Enter the access key of the account above.

      • Container name – Enter the container name of the storage.

      • Send an email notification of failed connection to all service administrators – If you want to enable this notification, turn on the toggle.

    • Amazon S3 – If you select this custom storage type, configure the settings below:

      • Bucket name – Enter the name of the bucket you want to access.

      • Access key ID – Enter the corresponding access key ID to access the specified bucket. You can view the access key ID from your AWS account.

      • Secret access key – Enter the corresponding secret key ID to access the specified bucket. You can view the secret key ID from your AWS account.

      • Storage region – Select the storage region of this bucket from the drop-down list.

      • Send an email notification of failed connection to all service administrators – If you want to enable this notification, turn on the toggle.

  2. Click Advanced settings and refer to the instructions below to complete the configuration:

    • Exclude accounts – Specify any user accounts you would like to exclude from collectors. This can be useful for filtering out service and test accounts to improve the quality and accuracy of reports. Enter one or more accounts in the format of someone@example.com, and separate each email address with a semicolon (;).

    • Policy for the activities of Microsoft 365 service accounts – If your tenant has configured a service account profile to scan Microsoft 365 objects, AvePoint recommends you select the Exclude activities of Microsoft 365 service accounts option to filter out activities of Microsoft 365 service accounts that are used to register objects into AvePoint Online Services, since the action records caused by scan jobs may affect the collected data and the analysis results.

    • Filter out data on the pages that contain the URL components below – The default URL components is displayed in the textbox. If necessary, you can modify the URL components in the textbox. By default, only View activities on the pages will be filtered out. If you want to filter out all activities, select All activities.

    • Send an email notification when no data is collected – AvePoint Online Services collects data every day. If you want to enable this notification, turn on the toggle and set a period by selecting a number from the drop-down list. Then, select email recipients from the following:

      • Service administrators in AvePoint Online Services

      • Custom recipients (select an email profile)

        If you select this option, select an email recipient profile or click Create from the drop-down list to create one. For details about managing email recipient profiles, refer to Email Recipient Profile.

    • Exclude non site audit data in specific containers (only for the SharePoint Online data source) – When this option is enabled, only the site audit data in the specific containers for SharePoint sites or OneDrive will be collected. If you want to enable this option, turn on the toggle, click Choose containers to specify containers, and then click Save.

      *Note: The site audit data will be collected based on the ObjectId property (the full URL path name of the file or folder accessed by a user), and the containers are configured in Auto discovery. For additional information on the other audit data (e.g. SearchQueryPerformed) in SharePoint Online and OneDrive, refer to the Microsoft article: .

    • Export Microsoft 365 tenant activity data to Azure SQL database – With this setting enabled, the data will be exported to your Azure SQL database every hour. If you want to enable this setting, turn on the toggle and provide the following information:

      • Server name – Enter the name of the SQL server where the SQL database is located.

      • Database name – Enter the name of the SQL database you prepared.

      • Username – Enter the username of an account that has the db_owner role to the database.

      • Password – Enter the password of the account above.

      *Note: By default, this option is disabled and hidden. If necessary, you can contact AvePoint to enable this option.

  3. Click Save to save your edits, or click Cancel to go back to the Report data collection page without saving any changes.

Activities in Microsoft 365

Turn on the toggle to enable this service, which monitors the Microsoft Activity API and provides auditing reports/alerts for the EnPower service.

Note the following:

- You can use this feature when your tenant in AvePoint Online Services has a working subscription for the EnPower service. Once your subscription to the EnPower service expires, this collection will be stopped the next day. After your subscription to the EnPower service has been renewed, this collection will be reactivated the next day. - Before you enable this feature, ensure that auditing is turned on for your organization. You can turn on auditing in the Microsoft 365 Purview compliance portal or by using Exchange Online PowerShell. For more instructions, refer to . - To enable this feature, ensure your organization has configured one of the following app profiles for the AvePoint Online Services common service: **Microsoft 365 (All** **permissions)**, **Reporting for** **Microsoft 365**, or **Custom** **Azure** **app**. - After you enable this feature, the first collection will collect activities for up to five days, and the following collections will collect activities hourly. - The collections will have some delays of hours. For details about how long it will take to collect activities of different services or features in Microsoft 365, refer to the Microsoft article .