Getting Data In

Cisco ESA Deprecated?

aelliott
Motivator

I saw that http://apps.splunk.com/app/533/ Cisco ESA is deprecated, however, what add-on replaces it in the Cisco Enterprise Security Suite? I'm only seeing ISE, WSA, and ASA

Tags (3)
0 Karma
1 Solution

jconger
Splunk Employee
Splunk Employee

You can still use the Cisco ESA add-on as is. The functionality has not been integrated into the Cisco Security Suite since the update to 3.x yet, but ESA is the next on the list.

View solution in original post

friea
Splunk Employee
Splunk Employee

Support for Cisco Ironport WSA has been added to Cisco Security Suite; you can access the latest version here: http://apps.splunk.com/app/525/

A new CIM-compliant Splunk for Cisco ESA Add on is also available: http://apps.splunk.com/app/1761/

jconger
Splunk Employee
Splunk Employee

You can still use the Cisco ESA add-on as is. The functionality has not been integrated into the Cisco Security Suite since the update to 3.x yet, but ESA is the next on the list.

aelliott
Motivator

Sounds good, Looks like I'll be making an attempt at making it CIM compliant in the future 🙂

0 Karma
Get Updates on the Splunk Community!

Introduction to Splunk Observability Cloud - Building a Resilient Hybrid Cloud

Introduction to Splunk Observability Cloud - Building a Resilient Hybrid Cloud  In today’s fast-paced digital ...

Observability protocols to know about

Observability protocols define the specifications or formats for collecting, encoding, transporting, and ...

Take Your Breath Away with Splunk Risk-Based Alerting (RBA)

WATCH NOW!The Splunk Guide to Risk-Based Alerting is here to empower your SOC like never before. Join Haylee ...