Hello, I'm just having a bit of difficulty differentiating between Splunk Enterprise, ITSI, SOAR, UBA, and Enterprise Security. It seems like they all do similar things. Do they a...
Hi ! I want to try splunkUBA on a single linux machine. But, on the app download page, I'm seeing error saying app installation is restricted to certain users and your user profile is n...
As the title suggests, i am trying to onboard multiple data sources in SplunkUBA. I would like to see if there is a way i can see from the CLI on the EPS per each data source ingested. The EPS&n...
Hi Team, I am trying to deploy the SplunkUBA node, but I get a bit confused because, in the SplunkUBA operating system requirements, I didn't find whether Red Hat 8.10 or 9.2 was s...
...ble to access the web ui and I was running the cmd (on UBA manager) /opt/caspida/bin/Caspida stop-all . There was an error . And when I tried to run the start-all, it shows the same error.
Does SplunkUBA use/require below Log4j 1.2? Currently below was flagged during the VA scanning thus I am not sure whether we can remove or require to update it? Apache Log4j 1.2
SplunkUBA search head is down. Even after restarting ui services, status is shown as active in CLI but GUI is not available. Commands used to stop/start ui service: sudo service caspida-ui s...
Hi,
Is Splunk Enterprise Security and Splunk User Behavior Analytics (SplunkUBA) totally independent apps?
Do they depend on each other in any way?
I'm looking to check out UBA, but do n...
Is there a document that simply and concisely compares the features of Splunk User Behavior Analytics (SplunkUBA) and Splunk Enterprise Security? I cannot find anything like that except for l...