The information is available in the Unified audit log: https://learn.microsoft.com/en-us/microsoft-365/compliance/search-the-audit-log-in-security-and-compliance?view=o365-worldwide
View EOP logs
Marc
631
Reputation points
Is there a way to view and consult EOP logs to find out information such as knowing who released (not if it has been released) an email in quarantine or retrieve an email deleted from the quarantine by mistake by an user?
Thanks
Accepted answer
1 additional answer
Sort by: Most helpful
-
Marc 631 Reputation points
2021-10-22T14:02:39.617+00:00 I have started the Audit and searched for "released quarantine" but not result are displayed?
Do I need to setup something else ?
Could be a license problem? We are using EOP.