All Apps and Add-ons
Highlighted

Best Practices for implementing Windows OS monitoring?

Ultra Champion

I see a lot of posts within the validated_best-practice tag related to Windows monitoring. Is there a list of these best practices for implementing Windows monitoring?

I know there could be a lot to say on this topic but I'm specifically focused on guidance for rapid deployment of the Splunk Add-on for Windows such that data collection is ready to be enabled based on my use case needs.

0 Karma
Highlighted

Re: Best Practices for implementing Windows OS monitoring?

Ultra Champion

The Splunk Product Best Practices team provided this response. Read more about How Crowdsourcing is Shaping the Future of Splunk Best Practices.

Yes! Before you implement Windows OS monitoring, it’s important that you are familiar with the Splunk components such as forwarders, indexers, and search heads.

Installation

As you noted, the Splunk Add-on for Windows is an excellent choice for a variety of data sources necessary for Windows OS monitoring use cases. The Documentation for the Splunk Add-on for Windows has everything you need, but for those in a rush, these two topics are critical:

  1. Install the Add-on as per the documented instructions to install the Splunk Add-on for Windows.
  2. Familiarize yourself with the instructions to configure the Splunk Add-on for Windows. This knowledge will be used as data sources are enabled for your use case implementation.

Best Practices

With the Installation complete, refer to the following validated best practices:

View solution in original post

Highlighted

Re: Best Practices for implementing Windows OS monitoring?

Splunk Employee
Splunk Employee

Added related validated best practice.

0 Karma