Release notes for the Splunk Add-on for Microsoft Office 365¶
Version 4.8.0 of the Splunk Add-on for Microsoft Office 365 was released on February 24, 2025.
Note
Version 4.3.0 and higher is expected to have around 1% of event duplication for the Management Activity input in the Splunk platform due to duplicate events from the Microsoft API.
About this release¶
Version 4.8.0 of the Splunk Add-on for Microsoft Office 365 is compatible with the following software, CIM versions, and platforms.
| Splunk platform versions | 9.1.x, 9.2.x, 9.3.x, 9.4.x |
| CIM | 5.1.0 |
| Supported OS | Platform independent |
| Vendor products | Microsoft Office 365 |
New features¶
Version 4.8.0 of the Splunk Add-on for Microsoft Office 365 has the following new features:
- Introduced the Microsoft Entra ID Metadata input to migrate the following inputs from Splunk Add-on for Microsoft Azure to Splunk Add-on for Microsoft Office 365. For more information, see Microsoft Entra ID Metadata input. If these inputs are configured in Splunk Add-on for Microsoft Office 365, they will be treated as new inputs. It is recommended to disable those inputs in the Splunk Add-on for Microsoft Azure:
- Microsoft Entra ID Users
- Microsoft Entra ID Groups
- Microsoft Entra ID Applications
- Microsoft Entra ID Devices
Fixed issues¶
Version 4.8.0 of the Splunk Add-on for Microsoft Office 365 contains the following, if any, fixed issues.
Known issues¶
Version 4.8.0 of the Splunk Add-on for Microsoft Office 365 contains the following, if any, known issues.
Third-party software attributions¶
Version 4.8.0 of the Splunk Add-on for Microsoft Office 365 incorporates the following third-party software or libraries.
Third-party software attributions for the Splunk Add-on for Microsoft Office 365