The Audit events captured by the Security and Audit timeline represent a significant and useful tool to understand what activities are being undertaken by users within your organization. The Audit Timeline, in particular, allows you to dig into a complete series of events for the workloads supported. In the past, these have included Azure Active Directory, Exchange, OneDrive, and SharePoint.
The Audit Timeline is even more powerful with additional data being collected. Six new workloads have joined the four existing ones in the Security and Audit Module of Radar Reporting. The six new workloads are Teams, Skype for Business, Yammer, PowerBI, Security and Compliance and Threat Intelligence.
You can choose which workloads are to be displayed and dig into events for the particular workload. From the workload, picklist choose either all or some of the workloads to be displayed.