Have accomplished the following:
- Splunk Enterprise set up
- Splunk Enterprise Security on separate search head
- Splunk Stream installed/ Main app on ES Search Head (can control protocols to stream successfully)
So issue is, when attempting to initiate a Steam from a Notable Event through an Adaptive Response, nothing occurs. Didn't know if there is a piece missing or a configuration/network permissions change that would need to occur (such as enabling specific port for the ES Search Head to talk to Splunk Forwarder that has stream app enabled, etc.).