Splunk Enterprise Security

windows server monitoring

punithjigali
Explorer

Hi team,

I have used windows add on to get events from server to my splunk instance using universal fowarder.

I want some of the monitoring examples that has bean already implemented so that I will go through that, get to practice and apply...

please share some of the example links...

0 Karma

gcusello
SplunkTrust
SplunkTrust

Hi @punithjigali,
if you see in punithjigali Enterprise Security [Configure -- Content -- Content Management] you can enable or disable Use Cases.
At [Configure -- Content -- Libraries] you can see a description of the Use Cases.

In addition, if you install the Splunk Security Essentials ( https://splunkbase.splunk.com/app/3435/ ), there's an interesting feature that analyze your data and says what use Cases are toggled.

Ciao.
Giuseppe

0 Karma
Get Updates on the Splunk Community!

Now Playing: Splunk Education Summer Learning Premieres

It’s premiere season, and Splunk Education is rolling out new releases you won’t want to miss. Whether you’re ...

The Visibility Gap: Hybrid Networks and IT Services

The most forward thinking enterprises among us see their network as much more than infrastructure – it's their ...

Get Operational Insights Quickly with Natural Language on the Splunk Platform

In today’s fast-paced digital world, turning data into actionable insights is essential for success. With ...