Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How do I pull in logs containing Office 365 email header info into Splunk?

Deb
Explorer
‎11-03-2021 02:48 PM

Hello, I use Splunk to look at Office 365 email....but I don't see header info relating to TLS which we are looking for data on.  How do I pull this info into Splunk?  Is it in a different log?  

 

Thanks

Labels (2)
Labels
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Roy_9
Motivator
‎11-04-2021 09:24 AM

Sure, no problem

Happy Splunking

View solution in original post

Reply
Solved! Jump to solution

Roy_9
Motivator
‎11-03-2021 07:32 PM

Are you using Microsoft O365 Email Add-on for Splunk for these logs?

Try exploring the above package by downloading from splunkbase.

 

0 Karma
Reply
Solved! Jump to solution

Deb
Explorer
‎11-04-2021 07:15 AM

Thank you....I'm guessing this is the only way to do it?  Add-on is required?  I see it does offer the ability to look at Auth info as well which we are interested in.  Thanks for the reply.  I'll look into it!!  🙂

0 Karma
Reply
Solved! Jump to solution
Solution

Roy_9
Motivator
‎11-04-2021 09:24 AM

Sure, no problem

Happy Splunking

Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey
Get Updates on the Splunk Community!

Tech Talk Recap | Mastering Threat Hunting

Mastering Threat HuntingDive into the world of threat hunting, exploring the key differences between ...

Observability for AI Applications: Troubleshooting Latency

If you’re working with proprietary company data, you’re probably going to have a locally hosted LLM or many ...

Splunk AI Assistant for SPL vs. ChatGPT: Which One is Better?

In the age of AI, every tool promises to make our lives easier. From summarizing content to writing code, ...