Installation
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Graph Security Addon

tejasode
Observer
‎05-16-2024 05:21 AM

https://splunkbase.splunk.com/app/4564

Hi All, want to know the status on usage of particular app ,as we are seeing app being deprecated ,is there any alternate app/addon in leveraging the same functionality.

Current App stopped working 

Regards

Teja 

Labels (3)
Labels
0 Karma
Reply

tej57
Builder
‎05-20-2024 06:12 AM

Hey @tejasode ,

Not sure why you mention the app to be archived. I see that the app is available for use and download as well. Additionally, the similar inputs can also be found in Microsoft Azure Add-on for Splunk (https://splunkbase.splunk.com/app/3757). There are a lot of add-ons available on Splunkbase to fetch data from Azure. Can you elaborate more on what particular functionality are you looking for?

Thanks,
Tejas.

0 Karma
Reply

tejasode
Observer
‎05-20-2024 10:00 AM

Hi , Sorry if any confusion on my comments, i am not asking that app should be archived.

We have this app installed on our SH since long now and all of sudden app stopped working, post we raised a case with SPlunk ,  they mentioned app got deprecated.

Now i am checking if there is any alternate option to onboard the CAS(cloud app security) logs.

As per your comments,If  App is still active , then why the console is  not opening?


0 Karma
Reply

tej57
Builder
‎05-21-2024 12:16 AM

Hey @tejasode ,

To check why the app console is currently not opening, it should be better to check splunkd.log and web_service.log. Apart from that for alternative solution, as I mentioned #3757 (Splunk Add-on for Microsoft Azure) has inputs to collect data from Azure Security Center. 

Additionally, if you're able to stream the CAS logs to eventhub, you can also go for configuring #3110 (Splunk Add-on for Microsoft Cloudservices) inputs. It is also a supported add-on and is CIM compliant as well. 

Thanks,
Tejas.

0 Karma
Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey
Get Updates on the Splunk Community!

Thanks for the Memories! Splunk University, .conf25, and our Community

Thank you to everyone in the Splunk Community who joined us for .conf25, which kicked off with our iconic ...

Data Persistence in the OpenTelemetry Collector

This blog post is part of an ongoing series on OpenTelemetry. What happens if the OpenTelemetry collector ...

Introducing Splunk 10.0: Smarter, Faster, and More Powerful Than Ever

Now On Demand Whether you're managing complex deployments or looking to future-proof your data ...