Splunkbase says SplunkAdd-onforMicrosoft Active Directory is complaint with CIM VERSIONS 4.0, 3.0 ( https://splunkbase.splunk.com/app/3207/ ), but I cannot find the documentation like other Splunk...
Hi Folks,
we have on-boarded the activity logs, service status, operational messages, Azure audit, Azure resource data and Azure Storage Table and Blob data through SplunkAdd-onforMicrosoft C...
Hi,
we have a theMicrosoft Office 365 Reporting Add-OnforSplunk configured with an account which is a member of the Service Administrators group. From the logs we are seeing the following e...
TheSplunkAdd-onforMicrosoft Cloud Services is populating the Authentication datamodel in ES, however action="Unknown" for successful and failed logon events. Where would be a good place to s...
Hi Expert Can Microsoft Dynamics 365 data be ingested to MicrosoftSecurity and Compliance portal and from there it can be fed and extracted to Splunk? I'm looking to implement and wonder if this c...
Hi there! I am attempting to set up theMicrosoftSecurityAdd-Onon our Splunk Cloud (Victoria Experience). I was able to install the app ontheSplunk Cloud Platform, and understand m...
I installed theSplunk App for Enterprise Security, but all dashboards and reports are empty. TheSplunk_TA_windows Add-on is installed and "indexes.conf" contains the index "windows" that has 20 G...
I'm not seeing the Network Resolution/DNS datamodel/dataset populated from theSplunkAdd-onforMicrosoft Windows DNS. Theadd-on was installed per the documentation on all Windows DNS servers.
C...
...ypes where field names to replace are far less predictable. Our search heads have over 1000 KOs which reference the xmlWinEventLog sourcetype.
Has anyone made the transition to SplunkAdd-onfor W...
Hi,
I am working with theSplunkAddonforMicrosoft Azure and im trying to get theSecure Score working with it, has anyone had any luck with getting it working?
At the m...