IBM Security QRadar

Hi everyone, i have a problem on configuring the microsoft defender log source protocol tab for my client. I didn't find anything about what kind of url i need to add at "Login Endpoint" voice. I try with login.microsoftonline.com or https://login.microsoftonline.com/"with tenant id correct"/oauth2/v2.0/authorize but the test at the dns resolutions step tell me "Unable to resolve login.microsoft.com" any suggestions on the cause of the problem? and anyone could tell me the right url to add? 

Thanks a lot 

The API is probably no longer available from Microsoft. I assume neither work:
"Microsoft no longer allows the onboarding of new integrations with their SIEM API. For more information, see Deprecating the legacy SIEM API (https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/deprecating-the-legacy-siem-api/ba-p/3139643)." 
Reference: https://www.ibm.com/docs/en/dsm?topic=m3d-microsoft-defender-endpoint-siem-rest-api-log-source-parameters

Hi everyone, i have a problem on configuring the microsoft defender log source protocol tab for my client. I didn't find anything about what kind of url i need to add at "Login Endpoint" voice. I try with login.microsoftonline.com or https://login.microsoftonline.com/"with tenant id correct"/oauth2/v2.0/authorize but the test at the dns resolutions step tell me "Unable to resolve login.microsoft.com" any suggestions on the cause of the problem? and anyone could tell me the right url to add? 

Thanks a lot 

Really appreciated your answer, so the only way to integrate on Qradar the microsoft 365 defender logs it is with the azure event hub, cause my costurmer didn't want to configure it, all API the REST one and the GRAPH one aren't avaible right?

The API is probably no longer available from Microsoft. I assume neither work:
"Microsoft no longer allows the onboarding of new integrations with their SIEM API. For more information, see Deprecating the legacy SIEM API (https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/deprecating-the-legacy-siem-api/ba-p/3139643)." 
Reference: https://www.ibm.com/docs/en/dsm?topic=m3d-microsoft-defender-endpoint-siem-rest-api-log-source-parameters

Hi everyone, i have a problem on configuring the microsoft defender log source protocol tab for my client. I didn't find anything about what kind of url i need to add at "Login Endpoint" voice. I try with login.microsoftonline.com or https://login.microsoftonline.com/"with tenant id correct"/oauth2/v2.0/authorize but the test at the dns resolutions step tell me "Unable to resolve login.microsoft.com" any suggestions on the cause of the problem? and anyone could tell me the right url to add? 

Thanks a lot