Splunk Enterprise Security

Use case to report on users who are accessing systems or data that is not within their regular usage?

vikkysplunk
Path Finder

Hi All, is any one created Use case to report on users who are accessing systems or data that is not within their regular usage?

Labels (1)
0 Karma

richgalloway
SplunkTrust
SplunkTrust

That sounds like Splunk UBA (User Behavior Analytics).  See https://www.splunk.com/en_us/software/user-behavior-analytics.html

---
If this reply helps you, Karma would be appreciated.

vikkysplunk
Path Finder

@richgalloway Hi, is there any way we can create the use case for "Use case to report on users who are accessing systems or data that is not within their regular usage profile " in splunk with out using UBA?

0 Karma

richgalloway
SplunkTrust
SplunkTrust

Is there a way?  Probably.  If it was easy, though, Splunk wouldn't have bought UBA.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Get Updates on the Splunk Community!

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

The Transformative Power of AI and ML in Enhancing Observability   In the realm of IT operations, the ...

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

ICYMI - Check out the latest releases of Splunk Edge Processor

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor.  HEC Receiver authorization ...