Getting Data In

How to index logs in Splunk 6.4 from a Box folder?

vasanthmss
Motivator

Hi Splunker,

Looking forward to onboarding logs from a Box folder. Not the Box access logs, it's a custom log file uploaded in box.

I can think of the below options,

  1. sync the box folder in the heavy forwarder and monitor the files. - Box provides ftp not sftp.
  2. write a script to download the files and add oneshot. - like curl .. this required to provide the password.

FYI : Linux environment with Splunk 6.4

My Questions are,

  1. which of the above options is good? I can see both are not suites security policy.
  2. is there any other better options?

Thanks,
V

V
1 Solution

jtacy
Builder

Not that I'm a big fan of FTP for new projects, but Box supports FTPS and that's probably the way I would go. You can find the connection information here:
https://community.box.com/t5/Managing-Your-Content/Using-Box-with-FTP/ta-p/312

View solution in original post

0 Karma

jtacy
Builder

Not that I'm a big fan of FTP for new projects, but Box supports FTPS and that's probably the way I would go. You can find the connection information here:
https://community.box.com/t5/Managing-Your-Content/Using-Box-with-FTP/ta-p/312

0 Karma
Get Updates on the Splunk Community!

Developer Spotlight with William Searle

The Splunk Guy: A Developer’s Path from Web to Cloud William is a Splunk Professional Services Consultant with ...

Major Splunk Upgrade – Prepare your Environment for Splunk 10 Now!

Attention App Developers: Test Your Apps with the Splunk 10.0 Beta and Ensure Compatibility Before the ...

Stay Connected: Your Guide to June Tech Talks, Office Hours, and Webinars!

What are Community Office Hours?Community Office Hours is an interactive 60-minute Zoom series where ...