Getting Data In
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Integration of Jamf-pro with splunk

veeeeruuuu
Loves-to-Learn
‎06-26-2024 11:41 PM

Please guide me on integrating jamf-pro with splunk step by step.

Jamf Pro Add-on for Splunk | Splunkbase

This is the add-on I need to install.

jamf-add-on.PNG

Please guide me on which instance (HF, Syslog servers, Search Heads, Indexers, Cluster master, License manager, Deployment server) should I install this add-on? 

And custom index, should it be created on cluster master and push the bundle to all indexers?

should I create on all 3 search heads and 1 adhoc search head that we have?

And please guide how the HF forwards the required events to this newly created index? how to let HF know that there is a custom index?

Labels (1)
Labels
0 Karma
Reply
Get Updates on the Splunk Community!

Developer Spotlight with Brett Adams

In our third Spotlight feature, we're excited to shine a light on Brett—a Splunk consultant, innovative ...

Index This | What can you do to make 55,555 equal 500?

April 2025 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with this ...

Say goodbye to manually analyzing phishing and malware threats with Splunk Attack ...

In today’s evolving threat landscape, we understand you’re constantly bombarded with phishing and malware ...
Top