Splunk Enterprise Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Why does latest version of ES CU app indicates exploring Analytical Stories through ES or Sec Essentials App ?

dm1
Contributor
‎06-01-2021 06:40 PM

Just downloaded the latest version of ES Content Update app and noticed the following message:

Explore the Analytic Stories included with Splunk Security via ES Use Case Library or Splunk Security Essentials.

 

Is there a particular reason why this is stated?

This is sort of getting confusing as to which would be the best app to leverage the use cases/analytical stories.

 
 
Labels (1)
Labels
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

lkutch_splunk
Splunk Employee
Splunk Employee
‎06-02-2021 09:03 AM

 ES Content Update app got a UI update and some parts have been removed, as mentioned in Release Notes:

 

If you already have Enterprise Security, then it's easiest to see them in the Use Case Library: 

https://docs.splunk.com/Documentation/ES/6.5.1/Admin/Usecasecontentlibrary

 

If you don't already have Enterprise Security, then you can use Security Essentials as a first step in your security journey & see them in there. 

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

lkutch_splunk
Splunk Employee
Splunk Employee
‎06-02-2021 09:03 AM

 ES Content Update app got a UI update and some parts have been removed, as mentioned in Release Notes:

 

If you already have Enterprise Security, then it's easiest to see them in the Use Case Library: 

https://docs.splunk.com/Documentation/ES/6.5.1/Admin/Usecasecontentlibrary

 

If you don't already have Enterprise Security, then you can use Security Essentials as a first step in your security journey & see them in there. 

0 Karma
Reply
Get Updates on the Splunk Community!

Detecting Remote Code Executions With the Splunk Threat Research Team

WATCH NOWRemote code execution (RCE) vulnerabilities pose a significant risk to organizations. If exploited, ...

Enter the Splunk Community Dashboard Challenge for Your Chance to Win!

The Splunk Community Dashboard Challenge is underway! This is your chance to showcase your skills in creating ...

.conf24 | Session Scheduler is Live!!

.conf24 is happening June 11 - 14 in Las Vegas, and we are thrilled to announce that the conference catalog ...