Azure Activity Logs,
Office 365 Audit Logs (all SharePoint activity and Exchange admin activity)
and alerts from Microsoft Defender products (
Microsoft 365 Defender,
Microsoft Defender for Office 365,
Microsoft Defender for Identity,
Microsoft Defender for Endpoint
Azure Security Center,
Microsoft Cloud App Security,
and Azure Information Protection
Can be ingested at no additional cost into both Azure Sentinel, and Azure Monitor Log Analytics.
But I do not see it under the newly created workspace ?
am I missing something here?