AZINTS-3155 / Adding new sources for dates in Azure active directory …

…pipeline (#19667)

* Remap time from three new sources in activedirectory logs

* Updating test to remove now missing time field

* Updating name to match required name

azure_active_directory/assets/logs/azure.activedirectory.yaml

@@ -179,9 +179,12 @@ pipeline:
         matchRules: |
           extract_resource_name /%{_subscriptions}\/%{_non_extracted_resource}\/%{_resource_groups}\/%{_non_extracted_resource}\/%{_providers}%{_non_extracted_resource}\/%{_non_extracted_resource}\/%{data}\/%{_resource_name}
     - type: date-remapper
-      name: Define `time` as the official date of the log
+      name: Define `properties.createdDateTime`, `properties.activityDateTime`, `properties.timeGenerated`, `time` as the official date of the log
       enabled: true
       sources:
+        - properties.createdDateTime
+        - properties.activityDateTime
+        - properties.timeGenerated
         - time
     - type: status-remapper
       name: Define `level` as the official status of the log

azure_active_directory/assets/logs/azure.activedirectory_tests.yaml

@@ -70,7 +70,6 @@ tests:
       "correlationId" : "d47198c3-f726-47b8-b683-3f6244c9ceb5",
       "Level" : 4,
       "location" : "US",
-      "time" : "2020-05-13T12:35:19.6363979Z",
       "category" : "SignInLogs",
       "resultType" : "0",
       "durationMs" : 0,
@@ -220,7 +219,6 @@ tests:
       resultType: "0"
       service: "azure"
       tenantId: "4d3bac44-0230-4732-9e70-cc00736f0a97"
-      time: "2020-05-13T12:35:19.6363979Z"
       title: "'Sign-in activity' resulted in success initiated by [email protected] "
       usr:
         email: "[email protected]"