Inside the Huntress platform, verify that the users' list is populating and updated around onboarding time.
Let's check the state of audit logging for the downstream client tenant.
As the tenant in question:
- Navigate to https://compliance.microsoft.com
- Left-hand menu, Solutions > Audit
- If blue "Enable Audit Logging" is present, click to enable.
You can also run the following powershell to enable audit logging
Get-AdminAuditLogConfig | Format-List UnifiedAuditLogIngestionEnabled
Please note that Audit Logging enablement may take 24 hours to complete. This is a Microsoft restriction. However, we have seen this complete within an hour typically.
More information around enablement of Audit logging can be located at Microsoft - Turn auditing on or off.