Hi guys,
Does anyone know even with the Trial version of Splunk Observability Cloud whether it still accepts logs being sent to it directly by the Splunk Otel Collector?
According to this page : https://docs.splunk.com/observability/en/gdi/opentelemetry/components/splunk-hec-exporter.html , it says:
"Caution - Splunk Log Observer is no longer available for new users. You can continue to use Log Observer if you already have an entitlement."
As I'm using the Trial version, I'm just curious to see how Observability Cloud processes logs via fluentd, rather than use Log Observer Connect which uses the Universal Forwarder to send logs to Splunk Cloud/Enterprise first, and then Observability Cloud just views log events via the integration. Seems that Observability Cloud is not showing the ordinary syslog or windows events which get sent to it automatically out of the box by the Splunk Otel Collector. Tried setting up my own log file, but nothing shows up in O11y either.
O11Y does not accept any logs anymore that are sent directly to the O11Y endpoints. The only way is to send the logs to Splunk Enterprise and then use Log Observer Connect.
Thanks for the reply. Cheers.