Skip to content

Commit

Permalink
M365 Defender: Make token endpoint configurable for Alert data stream (
Browse files Browse the repository at this point in the history 
…elastic#12401)

Makes token endpoint configurable for Alerts data stream
  • Loading branch information
@chemamartinez
chemamartinez authored Jan 20, 2025
1 parent a4e7582 commit 6fe2afd
Show file tree
Hide file tree
Showing 3 changed files with 7 additions and 2 deletions.
5 changes: 5 additions & 0 deletions packages/m365_defender/changelog.yml
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,9 @@
# newer versions go on top
- version: "2.20.0"
changes:
- description: Make token endpoint configurable for Alert data stream.
type: enhancement
link: https://github.com/elastic/integrations/pull/12401
- version: "2.19.0"
changes:
- description: Add support for `IdentityInfo` advanced hunting table.
Expand Down
2 changes: 1 addition & 1 deletion packages/m365_defender/data_stream/alert/agent/stream/httpjson.yml.hbs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ request.tracer.maxbackups: 5
{{/if}}
auth.oauth2.client.id: {{client_id}}
auth.oauth2.client.secret: {{client_secret}}
auth.oauth2.token_url: {{login_url}}/{{tenant_id}}/oauth2/v2.0/token
auth.oauth2.token_url: {{login_url}}/{{tenant_id}}/{{token_endpoint}}
auth.oauth2.scopes: {{request_url}}/.default
request.url: {{request_url}}/v1.0/security/alerts_v2
{{#if http_client_timeout}}
Expand Down
2 changes: 1 addition & 1 deletion packages/m365_defender/manifest.yml
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
format_version: "3.0.2"
name: m365_defender
title: Microsoft M365 Defender
version: "2.19.0"
version: "2.20.0"
description: Collect logs from Microsoft M365 Defender with Elastic Agent.
categories:
- "security"
Expand Down

0 comments on commit 6fe2afd

Please sign in to comment.