Splunk Enterprise Security

How are the asset and identity lists for The Splunk App for PCI Compliance different from the Splunk App for Enterprise Security?


Wanted to check how the asset and identity lists that PCI need are different from the ES app. Does PCI need them in a different format, different fields? What are the critical fields that PCI need in order to populate the asset and identity center?


0 Karma


As far as the documentation is concerned, the process for importing them are exactly the same, so I would assume that the lists could be the same.

Get Updates on the Splunk Community!

Observability | How to Think About Instrumentation Overhead (White Paper)

Novice observability practitioners are often overly obsessed with performance. They might approach ...

Cloud Platform | Get Resiliency in the Cloud Event (Register Now!)

IDC Report: Enterprises Gain Higher Efficiency and Resiliency With Migration to Cloud  Today many enterprises ...

The Great Resilience Quest: 10th Leaderboard Update

The tenth leaderboard update (11.23-12.05) for The Great Resilience Quest is out >> As our brave ...