Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Can I remotely monitor Windows performance using a universal forwarder or do I have to install Splunk and then forward WMI?

Bliide
Path Finder
‎02-06-2015 12:14 PM

I am trying to troubleshoot a performance issue on a server on our network. I would like to setup some Windows Performance monitoring on the server. Can I remotely monitor Windows performance using a Universal Forwarder to get the data to the indexer or do I have to install Splunk Enterprise on the system and then forward WMI to the indexer?

0 Karma
Reply

thomrs
Communicator
‎02-06-2015 12:16 PM

Splunk App for Windows Infrastructure does much of this OTB. Part is free, need to pay or the AD part I believe.

https://apps.splunk.com/app/1680/

I´m looking to do just this after seeing the demo at Splunk live.

0 Karma
Reply

Bliide
Path Finder
‎02-06-2015 12:36 PM

Thank you for the advice. I will try it out.

0 Karma
Reply
Get Updates on the Splunk Community!

Infographic provides the TL;DR for the 2024 Splunk Career Impact Report

We’ve been buzzing with excitement about the recent validation of Splunk Education! The 2024 Splunk Career ...

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...