Has anyone had success integrating Slack Audit Logs without using a legacy token? Slack support has said using a legacy token, which the Splunk TA requires, is no longer recommended/supported and advises the use of the Audit Logs API key and Enterprise Grid app. More information can be found here:
https://api.slack.com/docs/audit-logs-api
Still looking for assistance from this from the plugin author: @Caroline Givnis
Slack Legacy token generator will not allow creation of new tokens beginning May 5th, 2020. thus, rendering this addon useless in less than a month for any new install.
When We tried to implement it, we could get login information with Oauth Token.
But still cannot get message inforamtion with Oauth Token and possible to get messages with legacy token.
I don't know developer can support it because written "Not supported" on Splunk base this add-on page....