Help me see changes in the Audit logs for distribution groups

By Chris Schultz in Azure AD 0 Comment

Say you add user to a group… you should be able to see this change in the Azure AD Audit logs.

Figure: New user added to a distribution group

The Audit log details work great for users. For example, when you make a change to a user in AD and sync with Azure AD (using AAD Connect), you get great visibility of what was changed.

✅ Figure: Good example: Azure AD | [user] | Audit logs | Audit Log Details with Old Value & New Value

Sadly you can’t see who changed it.

When you make a change to a distribution group in AD (e.g. add a new member) and sync, there are no details at all

❌ Figure: Bad example – Azure AD | [group] | Audit logs | Audit Log Details shows no details (you can’t see that a new user was added to the distribution group)

Suggestion: Please add the details of who changed what for both users and distribution groups in the Audit logs.