We have Azure DevOps connected to Azure AD so that our users can log in with their Azure AD credentials.
Currently, DevOps does not show our users’ Display Name that is set in Azure AD.
Users can change their own name here, but this is not a fix. For the sake of consistency, display names should match the display names used in Azure AD.
Azure AD Audit Logs are very helpful when diagnosing issues. Similarly, sending these logs to Azure Monitor is very useful for storing logs, and for setting up alerts on certain events.
In Audit Logs, we can see when an app registration secret or certificate is created or deleted.
However, there is no way to send these logs through to Azure Monitor so that we can set up alerts on these events.
Say you add user to a group… you should be able to see this change in the Azure AD Audit logs.
The Audit log details work great for users. For example, when you make a change to a user in AD and sync with Azure AD (using AAD Connect), you get great visibility of what was changed.
Sadly you can’t see who changed it.
When you make a change to a distribution group in AD (e.g. add a new member) and sync, there are no details at all
Suggestion: Please add the details of who changed what for both users and distribution groups in the Audit logs.