deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-14 22:37:22 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

minor updates

Browse Source
This commit is contained in:
Joey Caparas 2017-01-19 14:15:01 -08:00
parent 8cad53e487
commit 8d30af3c68
1 changed files with 2 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
windows/keep-secure/configure-aad-windows-defender-advanced-threat-protection.md
View File

@ -25,8 +25,6 @@ localizationpriority: high
You need to add an application in your Azure Active Directory (AAD) tenant then authorize the Windows Defender ATP Alerts Export application to communicate with it so that your security information and events management (SIEM) tool can consume alerts from Windows Defender ATP portal.
1. Login to the [Azure management portal](https://ms.portal.azure.com).
>!NOTE:
>Use your Azure credentials not the Windows Defender Advanced Threat protection portal credentials.
2. Select **Active Directory**.
@ -108,9 +106,7 @@ You'll use these values to obtain a refresh token.
2. Click **Accept**. When you authenticate, a web page opens with your refresh token.
![Image of web page with refresh token](images/atp-refresh-token.png)
3. Save the refresh token value in a safe place. You'll need this value when configuring your SIEM tool.
3. Save the refresh token which you'll find it the `<RefreshToken></RefreshToken>`value. You'll need this value when configuring your SIEM tool.
After configuring your AAD application and generating a refresh token, you can proceed to configure your SIEM tool.