How can Splunk read logs from database (MS SQL and...

humidisplunk · ‎02-18-2015

mzorzi · ‎02-18-2015

If you mean the log files in the filesystems, you can install a forwarder and threat it as a normal file.
If instead these logs are inside the database, you should use the dbx app.

ppablo · ‎02-18-2015

Information on the Splunk DB Connect app recommended by @mzorzi can be found here https://apps.splunk.com/app/958/

treinke · ‎02-18-2015

Are you talking about C2 audits or getting data out of the databases in to Splunk? Can you provide a little more detail about your request?

ppablo · ‎02-18-2015

As Anthony Reinke suggested, please provide much more details in your posts to get more complete answers in this forum. Otherwise, users have to keep asking you more questions to get more details rather than giving you straightforward answers.

saurabh_tek · ‎10-24-2016

@ppablo - i need database logs like changes done on the tables, who accessed the database etc...
(not the data inside DB), i am using SQL addon but that is not collecting these logs

i have seen on SQL management suite that they are generating. can you suggest how can i start collecting them into splunk ?

pmdba · ‎02-19-2015

A basic tutorial on configuring Splunk monitoring for Oracle can be found here: https://apps.splunk.com/app/1538.

How can Splunk read logs from database (MS SQL and Oracle)?

Re: How can Splunk read logs from database (MS SQL and Oracle)?

Re: How can Splunk read logs from database (MS SQL and Oracle)?

Re: How can Splunk read logs from database (MS SQL and Oracle)?

Re: How can Splunk read logs from database (MS SQL and Oracle)?

Re: How can Splunk read logs from database (MS SQL and Oracle)?

Re: How can Splunk read logs from database (MS SQL and Oracle)?