Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How can I ask HTTP/HTTPS GET request to REST and output response to Splunk?

slipinski
Explorer
‎08-02-2018 06:22 AM

I use Splunk Cloud so I can't use Splunk REST API Modular Input. On my instance I'm not able to browse REST in data inputs.
Is any option to deal with outside REST data?
Would you be so kind to answer me?

Szymon

Tags (3)
0 Karma
Reply

jkat54
SplunkTrust
SplunkTrust
‎08-02-2018 07:44 AM

For that you should use the HTTP Event Collector (HEC).

It’s basically REST inputs with pre shared keys.

http://docs.splunk.com/Documentation/Splunk/7.1.2/Data/UsetheHTTPEventCollector

0 Karma
Reply

aivarson_splunk
Splunk Employee
Splunk Employee
‎08-02-2018 06:57 AM

Currently, the best way to do this is with a Splunk Heavy Forwarder. The HF can be at your site or in any Cloud provider (AWS, Azure, etc.) then push the data to your SplunkCloud instance.

0 Karma
Reply
Get Updates on the Splunk Community!

.conf23 Registration is Now Open!

Time to toss the .conf-etti 🎉 —  .conf23 registration is open!   Join us in Las Vegas July 17-20 for ...

Don't wait! Accept the Mission Possible: Splunk Adoption Challenge Now and Win ...

Attention everyone! We have exciting news to share! We are recruiting new members for the Mission Possible: ...

Unify Your SecOps with Splunk Mission Control

In today’s post, I'm excited to share some recent Splunk Mission Control innovations. With Splunk Mission ...