September 2022
What’s New in 9.0 and How to Upgrade
Get a walk through of what is new Splunk Enterprise 9.0 and Splunk Cloud Platform features in our recent Tech Talk. These new enhancements help you with end-to-end visibility, rapid investigation and action, and more extensibility. How can you take advantage of these new features? We will talk about how to upgrade to Splunk 9.0 and show you how to upgrade to Splunk Cloud Platform to take advantage of all the new features.
You can use Data Manager for Google Cloud Platform Sources
Data Manager now supports onboarding of Google Cloud Platform (GCP) data sources. With this launch, you can now get the benefits of Splunk data analysis for some of the high-value events generated by Google Cloud when you onboard GCP data sources into the platform.
Track to Log Views in Splunk Observability Dashboards
Splunk helps SREs/Developers who demand a no-code interface to search and query log data in context with their metric indexes without having to learn a new query language. With log views in Observability dashboards, users can now see and explore log messages and metrics data together on one page, for faster in-context troubleshooting and deep root cause analysis. Learn how logs views uses metrics to find the logs that will help explain trends we see in metrics.
Observability into your Cloud Migration Initiative
Like one of the many organizations currently operating in hybrid and multi cloud architectures, your software operations have become extremely complicated. Figuring out instantly what’s going on with your application is harder than ever as the many tools you have were never designed for the cloud. Instead, you have data silos and inefficient use of data resulting in a lack of visibility across your software, systems and processes. In this session, we discuss how to build a foundation of security and resilience to innovate with the speed and agility you expect when migrating workloads to the cloud.
Splunk App for Chargeback is Now Splunk Supported
To help our customers more easily manage workload pricing, Splunk product and technology will now support the Splunk App for Chargeback.
This app helps Splunk Cloud Platform customers like you understand Splunk Virtual Compute (SVC) usage by business unit & department using the same SVC usage information provided in your Cloud Monitoring Console (CMC) App in an easier to understand fashion. Explore the app today.
Take Splunk On-the-Go this Summer
The new features announced this year at .conf22 let you do even more from the comfort of your pool chaise or wherever your summer activities may be! So lay back, relax, and read our blog to learn how your phone can connect you to even more data powered by Splunk.
Want Clearer Queries and Better Results?
Security and IT analysts need to be able to find threats and issues without having to write complex search queries. The Splunk Common Information Model (CIM) delivers a common lexicon of field names and event types across different vendor data sources making them consistent so that analysts can write clearer queries and get better results with more true positives and fewer false positives.
Learn more in this “Introduction to Splunk Common Information Model” video and in the .conf22 “Finding Threats Better With Splunk® Common Information Model (CIM) in Your Searches and Custom Add-o...” session.
Do More with Lantern
Splunk Lantern published 11 new articles in August, including an updated FAQ for the Splunk Platform 9.0.1 release. In addition to this great content, we've made the following updates.
- We rebranded from a "Resource Center" to a "Customer Success Center". We want to make clear that we are here to help you succeed with Splunk. If you need help getting started with a new product, learning how to ingest a new data source, or figuring out how to implement an observability use case, we're here for you. All our articles are written by Splunk experts who work in the field every day with customers just like you, so you know you're getting the best guidance possible to get you Splunking your data faster and better
- We’ve launched a new feedback widget on our site! The orange tab on the left-hand side allows you to tell us how articles are working for you or where improvement is needed. The survey is anonymous, so you won’t be able to receive a direct response to any comments you leave. However, you can always talk to us directly on the Splunk User Groups Slack or Reddit. Please take the time to leave feedback on our articles so we can make sure our content is effective in helping you succeed with Splunk!
- Finally, if you have been accessing Splunk Lantern articles using the knowledge bots of the Splunk Product Guidance app in Splunk Cloud Platform, please note that those bots have been removed based on feedback. We apologize if you found those bots helpful, but don't worry - none of the great content has gone away. You can still search for help with SPL and data source onboarding at any time on lantern.splunk.com
New Splunkbase Preview
Have you tried the new Splunkbase preview? Soon it will exit preview and become the default view for Splunkbase! But why wait? Visit today and experience the faster page loads, better search results, cleaner app directory and app cards and more!
An App for Clearer Queries and Better Results?
Security and IT analysts need to be able to find threats and issues without having to write complex search queries. The Splunk Common Information Model (CIM) app delivers a common lexicon of field names and event types across different vendor data sources making them consistent so that analysts can write clearer queries and get better results with more true positives and fewer false positives.
Learn more in this “Introduction to Splunk Common Information Model” video and in the .conf22 “Finding Threats Better With Splunk® Common Information Model (CIM) in Your Searches and Custom Add-o...” session.
New and Recent Updates
Are you using Puppet for IT automation? The recently updated Puppet Report Viewer app for Splunk integrates Puppet Enterprise or Puppet open source with Splunk to send Puppet node inventory, node facts, report summaries and report details into Splunk from one or more Puppet primary servers and automate taking action by triggering Bolt tasks from Actionable Alerts. See the app
The Splunk Add-on for Google Workspace allows a Splunk administrator to collect Google Workspace event data using Google Workspace APIs. You can then analyze the data in the Splunk platform.
The Splunk App for Zoom provides the interface for searches, reports, and dashboards for your Zoom video conferencing environment. It works in concert with Splunk Connect for Zoom, which connects to your Zoom data, to enable you to monitor, manage, and troubleshoot your Zoom service from a single application.
Have you ever wanted to perform advanced text analytics inside Splunk? Splunk has some ways to handle text but also lacks some more advanced features that NLP libraries can offer. The NLP Text Analytics app provides a simple interface for analyzing text in Splunk using python natural language processing libraries. This can also benefit use-cases that involve using Splunk’s ML Toolkit.
Ongoing Blog Series on OpenTelemetry: Everything you Wanted to Know About Sending Logs to Splunk (With the new OpenTelemetry Collector)
Curious about OpenTelemetry but more interested in logs than APM tracing or metrics? Look no further! This blog post will walk you through your first OpenTelemetry Logging pipeline. The OpenTelemetry project is the second largest project of the Cloud Native Computing Foundation (CNCF).
Read more to learn about sending logs to Splunk with the new OpenTelemetry Collector!
