Splunk Enterprise Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Splunk Security Essentials

bennett_riegel
New Member
‎10-29-2023 06:56 PM

I've downloaded the splunk security essential files all into my laptop, but I can't figure out how to upload into into splunk enterprise as an app. What is my next step and where do I go to do this?

Labels (1)
Labels
0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎11-02-2023 05:28 AM

Hi

you should follow these instructions https://docs.splunk.com/Documentation/SSE/3.7.1/Install/InstallSSE

If you have different version then select correct documentation based on your version.

r. Ismo

0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎10-29-2023 07:10 PM

>>> I've downloaded the splunk security essential files all into my laptop

May we know if you downloaded the single tar file (For example, ..splunk-security-essentials_371.tgz)


>>> but I can't figure out how to upload into into splunk enterprise as an app. What is my next step and where do I go to do this?

after downloading that tar file (for example..."splunk-security-essentials_371.tgz"), on your splunk, pls go to 

(left side Apps dropdown) Apps -- - > Manage Apps --- > Install app from file.

then select the tar file and load it, it will install smoothly.. then splunk restart will be required. 

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply

bennett_riegel
New Member
‎10-30-2023 06:48 AM

I'm in the install app from file section, and I've downloaded the security essentials, but I don't see a file to put in there. What is the exact name of it because I feel like I've tried all of them? 

0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎10-30-2023 05:56 PM

Hi @bennett_riegel 
1. did you download the app as a tar file from the Splunkbase
(the file name looks like "splunk-security-essentials_371.tgz")

2. on your Splunk, pls go to 

(left side Apps dropdown) Apps -- - > Manage Apps --- > Install app from file.

3. then select the tar file("splunk-security-essentials_371.tgz") and load it, it will install smoothly..
4. then Splunk restart will be required. 

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply
Get Updates on the Splunk Community!

Demo Day: Strengthen Your SOC with Splunk Enterprise Security 8.1

Today’s threat landscape is more complex than ever. Security operation centers (SOCs) are overwhelmed with ...

Dashboards: Hiding charts while search is being executed and other uses for tokens

There are a couple of features of SimpleXML / Classic dashboards that can be used to enhance the user ...

Splunk Observability Cloud's AI Assistant in Action Series: Explaining Metrics and ...

This is the fourth post in the Splunk Observability Cloud’s AI Assistant in Action series that digs into how ...
Top