What’s New? 

We’re excited to announce the latest enhancements to Splunk Observability Cloud and share what’s currently in preview across the Splunk Observability portfolio. These innovations are designed to help you resolve database performance issues faster, seamlessly correlate and search relevant logs in APM and Infrastructure Monitoring, and monitor your cloud services more easily. The following features became generally available on October 21, 2025. 

Feature Highlight

Resolve database performance issues faster with Splunk Database Monitoring 

Databases are the backbone of modern applications, so even a slight slowdown in database query performance can directly and severely impact the end-user experience. Most incidents require close collaboration between application and database teams to pinpoint the root cause. Yet, disjointed tooling, data silos, and a tendency to protect individual ownership often lead to delayed resolution and costly business downtime.  

We’re introducing Database Monitoring in Splunk Observability Cloud. Built on OpenTelemetry, Splunk Database Monitoring helps you spot and resolve slow, inefficient queries across your entire database fleet with execution plans and rich query metrics. SRE, application, and database teams can trace application issues to specific queries for faster root-cause analysis and see which applications drive database load to optimize resource usage. AI-powered recommendations summarize and improve queries with ready-to-run code snippets. 

With this first release, we’re supporting Microsoft SQL Server and Oracle Database, with additional engines coming soon. Learn more in our documentation or schedule a demo today. 

DB Monitoring overview

Additional Releases

Faster, smarter log searches with entity-to-index mapping  

Historically, Related Content (RC) searches often defaulted to index=* because users lacked visibility into where relevant logs were stored. This led to excessive resource use, long-running searches, and irrelevant results. 

We’re introducing a scalable, admin-configurable mechanism that maps observability entities (e.g., service.name, host.name, deployment.environment, k8s.namespace.name) to specific Splunk indexes. These mappings optimize RC log searches in Splunk Observability Cloud by eliminating broad index=* queries, improving search speed, cost efficiency, and accuracy. 

Key capabilities: 

• Entity-to-Index Mapping UI: Create, review, and manage mappings between metadata fields and log indexes. 

• Auto-Generated Mappings: Use “Generate Mapping” to automatically suggest relevant mappings from existing data. 

• Dynamic Lookup at Query Time: RC dynamically resolves and injects the right indexes into searches, replacing index=*. 

• Scoped Search Execution: RC runs only against relevant indexes, reducing SVC consumption and improving performance. 

• Broad Compatibility: Works for both OpenTelemetry and Universal Forwarder users without any ingestion changes. 

Learn more in our documentation. 

Seamlessly connect and auto-discover multiple GCP projects 

Setting up cloud service integrations, such as with Google Cloud Platform (GCP), is a key first step to achieving full-stack observability with Splunk Observability Cloud. These integrations send metrics and metadata (including tags, labels, and other properties) to Infrastructure Monitoring for comprehensive visibility. 

Customers can now use Workload Identity Federation (WIF) to set up integrations across multiple GCP projects — with automatic discovery of newly created projects under directories. 

Through the GCP integration wizard, users can configure WIF, assign permissions, and connect multiple projects by selecting which data to import. Learn more in our documentation. 

What's in Preview Now

Secure Application on Splunk Observability Cloud 

Secure Application on Splunk Observability Cloud is a new capability to lighten workload for application teams by providing direct visibility into runtime exploitable vulnerabilities and automatically mapping them to their corresponding application services. This allows teams to proactively address critical risks and safely de-prioritize non-exploitable ones. Sign up on this page. 

ITSI Episode Summarization 

Episode summarization provides enterprise support teams accurate, concise, and contextually rich episode summarization and basic root cause analysis by leveraging LLMs, cutting down the number of clicks from 8-10 down to 1 to get most relevant context of an episode including actionable insights. Sign up on this page. 

Business Insights in Observability Cloud Alpha Program 

Business Journeys, the key feature of Business Insights in Splunk Observability Cloud, empowers business owners and product managers to visualize, analyze, and optimize end-to-end business processes. Leveraging APM and RUM data, it simplifies troubleshooting by correlating technical performance with business impact. Features include up to 50 milestones, auto-discovery, and multi-application connection via transition keys, enabling cloud-based business process optimization. Sign up on this page. 

Splunk Observability Cloud Multi-org Management - Child Org Automation Preview Program 

Empowering customers with self-service experience for child-org creation with APIs enabling role-based data segregation. Sign up on this page. 

Observability for AI 

Observability for AI supports LLM Monitoring and Infrastructure Monitoring for AI components. Sign up on this page. 

Digital Experience Analytics in Observability Cloud Alpha Program 

The preview program for O11y Digital Experience Analytics (DEA) offers selected customers an exclusive opportunity to explore and test this brand-new offering alongside RUM before its general release. Sign up on this page. 

Splunk RUM <> ThousandEyes Integration 

The RUM-TE integration helps Developer and SRE teams reduce Mean Time to Identify (MTTI) by quickly distinguishing between application and network-layer performance issues. Sign up on this page.