Security
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Card Entry Access Data

asofo
Path Finder
‎09-25-2015 05:20 AM

Has anyone successfully indexed access data from a swipe card entry system? Specifically Honeywell. I understand this can be done by a database connection for historical data, or an API for real time data. I have zero development experience so I'm not 100% sure what I would do with the API they provide. Any help would be appreciated. Thanks!

Reply

muebel
SplunkTrust
SplunkTrust
‎09-29-2015 07:26 PM

I'm guessing the card reader is on the network? Does it have a REST api? I'd consult the documentation in that case, it's usually pretty easy to get started with the examples there and work up to extracting the information you want.

As domenico_perre mentioned, if the reader has or interacts with some sort of database, you could possible utilize the DBX app in order to setup database inputs and ingest that data in splunk. : https://splunkbase.splunk.com/app/2686/

This sort of thing seems to fall under the "Internet of Things" umbrella talked about here : http://www.splunk.com/en_us/solutions/solution-areas/internet-of-things.html

In particular, this software http://info.kepware.com/idf-for-splunk is supposed to be able to interface with Honeywell devices and inject the data out of the box. It costs some amount of money, but has a free demo.

Let us know how it goes!

Reply

asofo
Path Finder
‎10-02-2015 05:22 AM

Thanks I will have a look. The vendor did say they would give me their API, so I'll start there. I'll let you know how I make out. Thanks!

0 Karma
Reply

domenico_perre
Path Finder
‎09-25-2015 02:01 PM

If it is in a database look at db connect. That's a good start.

If you don't know then look for files with a modified date of today to see where it's writing to.

0 Karma
Reply

asofo
Path Finder
‎10-02-2015 05:21 AM

Thanks. I will check it out.

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Unlocking Unified Insights: New Gigamon Federated Search App for Splunk

In today’s data-heavy environment, organizations are caught in a data distribution dilemma. As data volumes ...

GA: New Data Management App in Splunk Platform

Streamlining Data Management: Introducing a unified experience in Splunk Managing data at scale shouldn’t feel ...

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...