https://community.splunk.com/t5/Splunk-ITSI/server-monitoring/m-p/494791#M1968 <P>Hi @punithjigali,<BR /> if you have the ITSI, there are many Use Cases already available for Windows OS.</P> <P>If you haven't the ITSI, I hint to install the Splunk App for Windows Infrastructure that contains many dashboards.</P> <P>In addition, it's possible to implement using Windows logs:</P> <UL> <LI>login, logout and logfails,</LI> <LI>extract server configurations,</LI> <LI>installed applications,</LI> <LI>servers status,</LI> <LI>excessive use of resources (CPUs, RAM, HDs, etc...)</LI> <LI>etc...</LI> </UL> <P>Your question should be send to a Windows administrator not to a Splunk developer: ask to a Windows administrator what he needs and realize this with Splunk.<BR /> In addition you could ask to a Security Manager what are the security Use Cases he needs: brute force, non active users, etc...</P> <P>At the end, see in apps.splunk.com if there are Apps that are interesting for you and start from them.</P> <P>Ciao.<BR /> Giuseppe</P> Thu, 07 May 2020 12:32:37 GMT gcusello 2020-05-07T12:32:37Z https://community.splunk.com/t5/Splunk-ITSI/server-monitoring/m-p/494790#M1967 <P>Hi team,</P> <P>I have installed UF and add on for windows and getting server data to my splunk instance.....</P> <P>are there any use cases on monitoring and forecast predicting using MLTK for this data...??</P> <P>this is the server data..... <BR />and the data is generated by add on windows....</P> Sun, 07 Jun 2020 00:08:36 GMT https://community.splunk.com/t5/Splunk-ITSI/server-monitoring/m-p/494790#M1967 punithjigali 2020-06-07T00:08:36Z https://community.splunk.com/t5/Splunk-ITSI/server-monitoring/m-p/494791#M1968 <P>Hi @punithjigali,<BR /> if you have the ITSI, there are many Use Cases already available for Windows OS.</P> <P>If you haven't the ITSI, I hint to install the Splunk App for Windows Infrastructure that contains many dashboards.</P> <P>In addition, it's possible to implement using Windows logs:</P> <UL> <LI>login, logout and logfails,</LI> <LI>extract server configurations,</LI> <LI>installed applications,</LI> <LI>servers status,</LI> <LI>excessive use of resources (CPUs, RAM, HDs, etc...)</LI> <LI>etc...</LI> </UL> <P>Your question should be send to a Windows administrator not to a Splunk developer: ask to a Windows administrator what he needs and realize this with Splunk.<BR /> In addition you could ask to a Security Manager what are the security Use Cases he needs: brute force, non active users, etc...</P> <P>At the end, see in apps.splunk.com if there are Apps that are interesting for you and start from them.</P> <P>Ciao.<BR /> Giuseppe</P> Thu, 07 May 2020 12:32:37 GMT https://community.splunk.com/t5/Splunk-ITSI/server-monitoring/m-p/494791#M1968 gcusello 2020-05-07T12:32:37Z