Home
Join the Community
Welcome Center
Welcome Center
Join Slack
Be a Splunk Champion
SplunkTrust
Splunk MVP
Become a User Group Leader
Splunk Love
Share a Tip
Find Answers
Splunk Administration
Getting Data In
Deployment Architecture
Monitoring Splunk
Using Splunk
Splunk Search
Dashboards & Visualizations
Splunk Products
Splunk Enterprise
Splunk Enterprise Security
Splunk Cloud Platform
Splunk Observability Cloud
Splunk AppDynamics
Splunk SOAR
Apps & Add-ons
All Apps and Add-ons
Splunk Development
Events
User Groups
Tech Talks: Technical Deep Dives
Office Hours: Ask the Experts
From Data to Insight: The Splunk Dashboard Contest
Dashboard Contest Terms and Conditions
Blogs
Community Blog
Product News & Announcements
Training & Certification Blog
Learning
Learning Paths
Training & Certification
Training + Certification Discussions
AppDynamics Knowledge Base
Best of conf
Resources
.conf25
Splunkbase
Developers
Documentation
Splunk Ideas
Splunk Events
Voice of Customer
Sign In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Show
only
|
Search instead for
Did you mean:
Community Office Hours
Community Office Hours
×
Join the Conversation
Without signing in, you're just watching from the sidelines.
Sign in or Register
to connect, share, and be part of the Splunk Community.
Ask a Question
Events
:
Office Hours: Ask the Experts
:
Community Office Hours
Options
Subscribe
Add Events to Calendar
Mark all as New
Mark all as Read
Community Office Hours
View:
In Progress
Upcoming
Past
Status: In progress
Status: Upcoming
EMEA Community Office Hours: Enterprise Security Essentials & Premier
Wednesday, May 20, 2026
[Register Here] This thread is for the EMEA Community Office Hours session on Enterprise Security Essentials & Premier on Wednesday, May 20, 2026 at 10 am BST / 11 am CEST. Ask the experts at Community Office Hours! An ongoing series where technical Splunk experts answer questions and provide how-to guidance on various Splunk product and use case topics. While this session is scheduled as an EMEA office hour for time zone convenience, it is open to everyone—if the time works for you, we’d love to have you join us. What can I ask in this AMA? What is available in Splunk Enterprise Security (ES) Premier that is not available in Splunk Enterprise Security (ES) Essentials? What makes Enterprise Security Essentials better than ES 7.X? What new or improved use cases should I expect Premier to help me deliver? What should I consider or prepare if I’m currently using ES Essentials and planning to migrate to ES Premier? What will happen to my dashboards, configurations, and investigations if I upgrade from ES Essentials to ES Premier? What sort of education or professional services are available for me to build an expert practice in ES Essentials or ES Premier? What does the SOAR integration look like for ES Essentials and ES Premier? How does UEBA integrate with ES Premier? Anything else you’d like to learn! Please submit your questions at registration. You can also head to the #office-hours user Slack channel to ask questions (sign in with SSO here). Pre-submitted questions will be prioritized. After that, we will open the floor up to live Q&A with meeting participants. Look forward to connecting!
Labels
(2)
Labels
Labels:
Security
Upcoming Office Hours
0 attending
0
0
Ingest Only What You Need with S3 Promote
Thursday, May 21, 2026
Cut Costs, Not Capabilities: Ingest Only What You Need with S3 Promote What are Community Office Hours?: Ask the experts at Community Office Hours! Is an ongoing series where technical Splunk experts answer questions and provide how-to guidance on various Splunk product and use case topics. Topic: Cut Costs, Not Capabilities: Ingest Only What You Need with S3 Promote When: Thursday, May 21 | 11AM PDT / 2PM EDT Where: Register Here What to Expect: We will be hosting an "Ask Me Anything" (AMA) session to dive into the technical implementation and best practices. Bring your questions, including: Configuration: How do I configure AWS IAM roles and S3 bucket permissions to grant Splunk Cloud the necessary access to my data? Workflow: What are the steps to configure a new Promote job, and how can I monitor its progress and health within Data Manager? Compatibility: Which data formats does S3 Promote support, and can I use it for custom data types beyond standard AWS source types? Licensing: How does S3 Promote affect my Workload or Ingest-based licensing, and is there a specific SKU required for this feature? Retention: Does Splunk automatically manage the deletion of promoted data, or are there specific best practices for handling data retention? Integration: Can I use S3 Promote to re-ingest data that was originally routed to S3 via Splunk Edge or Ingest Processors? Register Now Please submit your questions at registration. You can also head to the #office-hours user Slack channel to ask questions (sign in with SSO here). Pre-submitted questions will be prioritized. After that, we will open the floor up to live Q&A with meeting participants.
Labels
(2)
Labels
Labels:
Platform
Upcoming Office Hours
0 attending
0
0
