Anonymization

Data privacy and security is a hot topic with breaches making the news almost weekly these days. Depending on your environment storing these cloud discovery logs with personal information could raise concerns, it is possible to anonymize both the username and device associated with the logs for safekeeping. Further information pertaining to the encryption can be viewed on Microsoft's documentation here. A short summary is provided here:

• Each tenant has its own AES-128 key
• No private info is displayed in the discovery dashboard
• You can also anonymize data during the upload of snapshot reports and automatic log uploads
• Device anonymization is only applicable to the MDE data source

This is not true anonymization though, each user or device name is encrypted and can be decrypted by an administrator should the need arise. This decryption is audited.