Trying to forward windows event logs to Splunk indexer. Along with windows forwarder installation event logs forward to the indexer or we need to do any configuration after forwarder installation.
install the Splunk TA for Windows on the forwarder: https://splunkbase.splunk.com/app/742/ read here more on how to collect windows logs: http://docs.splunk.com/Documentation/Splunk/6.6.2/Data/AboutWindowsdataandSplunk hope it helps
