Dan Kershaw from the Microsoft Graph team hosted the call and shared an overview about how to add your own custom properties to Microsoft Graph using Microsoft Graph extensions. Sarah Fender, Cloud and Enterprises Security, discussed the brand-new Microsoft Graph Security APIs, and how you could use these in your applications, including some great demos featuring a sample app and partner-built app demos. Next, Nilesh Shah from Office Platform team shared some cool demos of how to connect Excel and PowerBI to Microsoft Graph data. He then introduced us to the Visual Studio connector service that makes it a breeze to configure your VS project to work with Microsoft Graph. Yina Arenas from the Microsoft Graph team rounded things off with some information about Build 2018 – where to find the event planner and where Microsoft Graph will feature at Build.
2. • https://aka.ms/microsoftgraphcall
• Monthly cadence
• Next call: June 5, 2018
• What’s new & how you can use it
• Meet the product teams behind Microsoft Graph
• Technical deep dives
• Q&A
3. Call agenda
Excel & Power BI
• Intro to Visual Studio connector
service
• Updates on extensions
• Build overview
• Q
6. Users Groups Outlook OneNote SecuritySharePoint IntuneTeams Azure ADPlanner Excel
https://graph.microsoft.com
Your app
Access user, group and organizational data
more…
7. Operation Service endpoint
GET my profile https://graph.microsoft.com/v1.0/me
GET my files https://graph.microsoft.com/v1.0/me/drive/root/children
GET my photo https://graph.microsoft.com/v1.0/me/photo/$value
GET my mail https://graph.microsoft.com/v1.0/me/messages
GET my calendar https://graph.microsoft.com/v1.0/me/calendar
GET my manager https://graph.microsoft.com/v1.0/me/manager
GET last user to modify file foo.txt https://graph.microsoft.com/v1.0/me/drive/root/children/foo.txt/lastModifiedByUser
GET users in my organization https://graph.microsoft.com/v1.0/users
GET group conversations https://graph.microsoft.com/v1.0/groups/<id>/conversations
GET people related to me https://graph.microsoft.com/v1.0/me/people
GET my tasks https://graph.microsoft.com/beta/me/tasks
GET my notes https://graph.microsoft.com/beta/me/notes/notebooks
GET files trending around me https://graph.microsoft.com/beta/me/insights/trending
… more
https://graph.microsoft.com
11. Lack of contextDisconnected alerts Operational complexity
Most security organizations rely on
dozens of different security solutions.
Each solution uses a different alert
schema – making alert consolidation
and correlation difficult.
Integrating each new solution into
existing tools and workflows means
additional work.
Much of the context needed for
comprehensive investigation lives in
systems outside the SIEM.
When investigating a threat, valuable
time is wasted by manually
aggregating and correlating data
across multiple sources.
Responding to a threat requires taking
action or enforcing policies across one
or more security solutions.
Security related IT tasks, such as
assessing security configurations for
compliance or enforcing security
policies, are not easily accessible to
security operations.
12. Build and execute runbooks for
investigation and remediation
Automate security policy checks and
enforce rules
Orchestrate actions across security
solutions
Traverse alerts and related entities, like
users, hosts, apps, …
Dive deep into related security profiles,
aggregated across security solutions
Add organizational context from other
Microsoft Graph providers (Identity,
Intune, Office, etc.)
Correlate alerts across security solutions
more easily with a common alert schema
Write code once to enable any graph-
supported security solution
Keep alert status and assignments in sync
across all solutions
Unify and standardize alert
management
Automate SecOps for
greater efficiency
Unlock security context
to drive investigation
13. Alerts
Security Profiles
Host | User | File | App | IP
Actions Configurations
Insights and relationships
OAuth 2.0 and OpenID Connect 1.0
Azure AD Identity
Protection IntuneWindows
Defender ATP
Office 365 ATP Cloud Application
Security
Azure ATP Azure Security
Center
Azure Information
Protection
Ecosystem
Partners
Other Microsoft Graph Services
Office 365 | Intune | Active Directory | More…
Users Groups Mail Files Calendar
14. !
!
!
!
Preview Partners
Anomali integrates with the Security API to
correlate alerts from Microsoft Graph with threat
intelligence, providing earlier detection and
response to cyber threats.
Alerts from the Microsoft Graph will combine with
Palo Alto Networks threat data to speed detection
and prevention of cyberattacks for our shared
customers.
PwC uses alerts and context from Microsoft Graph
in its Secure Terrain solution to deliver improved
visibility and protection.
15.
16. 16
Public Preview (available now)
Beta of Security API in Microsoft Graph
Code samples for C# and Python
Support for Alerts from
Azure Security Center
Azure Active Directory Identity Protection
Intune and Azure Information Protection (soon)
Unified SIEM integration through Azure Monitor
QRadar, Splunk, SumoLogic, Azure Logic Apps
Developer forums on Microsoft Tech Community & Stack
Overflow
General Availability (H2 2018)
Onboarding additional Microsoft and ecosystem
products
Unlock new security context through Security Inventory
Adding automation through Actions and Configuration
Provider SDK and documentation for broad ecosystem
integration
Additional client SDKs and sample code through
Microsoft Graph
17. https://aka.ms/graphsecurityapi
Code
Get started with C# samples
https://aka.ms/graphsecurityaspnet
Get started with Python samples
https://aka.ms/graphsecuritypython
Explore in Microsoft Graph
https://developer.microsoft.com/en-
us/graph/graph-explorer
Join the Discussion
Join the Tech Community
https://aka.ms/graphsecuritycommunity
Follow the discussion on Stack Overflow
https://aka.ms/graphsecuritystackoverflow
Learn
Read the documentation
https://aka.ms/graphsecuritydocs
Stream alerts to your SIEM
https://aka.ms/graphsecuritySIEM
18. Fetching MS Graph API data in Excel &
Power BI
Nilesh Shah
Office Platform
33. • Giuliano De Luca: Building your personal Office 365 assistant
• Waldek Mastykark Debugging SharePoint Framework solutions which use the
Microsoft Graph just works
Grant API permissions in Office 365 without SharePoint
Framework packages
Introduction To MS Graph API
What Is Microsoft Graph SDK?
Write Your First Program Using Microsoft Graph SDK
Speaking in person and webinar
Bulk-copy files across site collection in MicrosoftGraph with
MicrosoftFlow, in parallel and in batch