We currently run Splunk Enterprise Version 6.4.2 on Linux.
We are in the process of installing a light forwarder on a Windows system.
While looking at existing configurations we have found different setups, some with the Splunk Add-on for Microsoft Windows and some
without. The question is going forward, what additional functionality would we get from the add-on since the base forwarder
without the add-on provides us access to the Windows logs?