Azure WAF integration with splunk

Nawab · ‎03-11-2024

Is there anyone who have integrated Azure WAF with splunk.

If yes let me know which app or add-on you used.

Meett · ‎05-20-2025

Integrating Azure Web Application Firewall (WAF) logs into Splunk can be achieved using the Splunk Add-on for Microsoft Cloud Services. This add-on allows you to collect activity logs, service status, operational messages, Azure audit logs, and Azure resource data from various Microsoft cloud services, including Azure WAF, using Event Hubs, Azure Service Management APIs, and Azure Storage APIs. It provides the necessary inputs and CIM-compatible knowledge to integrate with other Splunk apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance. Splunkbase+2Splunkbase+2splunk.github.io+2

For more detailed information and installation instructions, you can refer to the official documentation

dania_abujuma · ‎05-15-2025

Hello @Nawab ,

Did you find an answer?

Azure WAF integration with splunk

installation

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Announcing Modern Navigation: A New Era of Splunk User Experience

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

Join the Conversation

Azure WAF integration with splunk

installation

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Announcing Modern Navigation: A New Era of Splunk User Experience

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...