Does the Splunk Palo Alto Networks (PAN) Add-on for Splunk support cloud-based deployment (TMS) for TRAPS?

Splunk Employee
Splunk Employee

I ask because PAN has two locations for TRAPS, on-prem (ESM) and in the cloud (TMS). The TMS uses the logging service and the log format is different. We want to move a customer to the cloud with TMS, which will use the Logging Service. The customer use-case is seeing reports/dashboards that confirm malware is being blocked/prevented.

Yes, the latest version supports it.

