Splunkbase says SplunkAdd-onforMicrosoftActiveDirectory is complaint with CIM VERSIONS 4.0, 3.0 ( https://splunkbase.splunk.com/app/3207/ ), but I cannot find the documentation like other Splunk...
Hi All,
I want to pull AD logs to Splunk Cloud. I see some source aboutSplunkAdd-onforMicrosoft Windows 6.0.0 and above which pulls the AD logs and another Add-on also does the same thing....
One question about “Microsoft Office 365 App forSplunk”.
Can it use log data from “Microsoft Azure ActiveDirectoryAdd-onforSplunk” forthe Azure AD logs?
Or does it can only get logs d...
Hello! I am working with version 4.1.3 (latest) of theSplunkAdd-onforMicrosoft Cloud Services that is installed onSplunk Enterprise 8.0.5. My objective is to pull data from an A...
We have an issue with theMicrosoft Azure ActiveDirectory Reporting Add-onforSplunk where it's not retrieving all the signin events.
We currently have our interval set at 60 seconds. We can t...
Hi Experts,
would like to check if anyone tried using certificates fortheMicrosoft defender add-on.
how / where do I generate the certificates to upload to azure app registration.
c...
onSplunk 6.5.3 I have installed SplunkAddonforMicrosoftActiveDirectory https://splunkbase.splunk.com/app/3207/
then installed universal forwarder on domain controller, I can see index=msad a...
I am currently trying to use Splunk to parse data from our ActiveDirectory. I have currently loaded the Apps:
SplunkAdd-onforMicrosoftActiveDirectory 2.1.4
Splunk Supporting Add-OnforActive...
Hi Team, I got a requirement one of ActiveDirectory team to get the Event ID with Event Source. If you have any idea to get the details please post me the details. Thank you !!!