Hello;
I have yet to install "Microsoft SQL Server App for Splunk", and I am a bit apprehensive in doing so as the page (https://splunkbase.splunk.com/app/1524/) reads "THIS PRODUCT IS ABANDONED AND WILL NOT BE UPDATED".
I have two questions:
What's in the future for this app, and/or what will replace it?
What is the ideal method to monitor my MS SQL servers for user activities, threats, usage, etc?
Thanks all,
-mi
Accepting the answer since this is def the right answer.
BTW: This related post may be of interest: What are the Splunk apps and add-ons for Microsoft technologies, and what do I use them for?