Splunk User Behavior Analytics

Splunk UBA and support for windows event log in native language

grodaas
Explorer

Does the "Windows Event Log(Multiline)"  data source in UBA support event logs in native language(non English). For example Norwegian? If it is not supported how can we add this data to UBA?

 

Labels (1)
0 Karma

lakshman239
SplunkTrust
SplunkTrust

@grodaas I don't think non-english is supported. However, Windows event logs in XML format is supported (will be in english by default). If you need local language support, please raise with your account team and/or raise an enhancement support/request case.

grodaas
Explorer

I will try the xml solution and report back

0 Karma
Get Updates on the Splunk Community!

Splunk Observability Cloud | Unified Identity - Now Available for Existing Splunk ...

Raise your hand if you’ve already forgotten your username or password when logging into an account. (We can’t ...

Index This | How many sides does a circle have?

February 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

Registration for Splunk University is Now Open!

Are you ready for an adventure in learning?   Brace yourselves because Splunk University is back, and it's ...