We're investigating Splunk as a logging solution. We've got the Cloud Trial and we're trying to test the REST API. We've been at it for some time, but I haven't been able to find a way to get it to work, because there's always an authentication challenge. Is this the expected behavior? We can't use the API without a full license?
You appear to be correct.
Splunk Cloud supports the same REST endpoints as Splunk Enterprise. For details about REST endpoints, refer to the Splunk Enterprise REST API Reference Manual. To use the REST API, you must have a paid subscription to Splunk Cloud.
Why don't you try reaching out to your local Splunk sales team? I'm sure they can help you with what you need to explore.
The 15 day free trial does expose the API. Its sitting on a different URL.
Put an input- infront of your instance name..
root@Blue10:~# telnet input-prd-p-mt4lbmbctrhk.cloud.splunk.com 8089
Connected to input-prd-p-mt4lbmbctrhk.cloud.splunk.com.
Escape character is '^]'.