Hello, I'm trying to configurethe CloudTrail and CloudWatch data inputs to collect AWS logs forSplunk. When I select a region that I think is correct, there is no log data coming into Splunk. W...
Hi, I'm trying to configure "custom Data Type" > SQS input in Splunkadd-onforAWS app to onboard data from an AWS account. is it possible to create the SQS input using IAM role instead of a...
Hi - I am trying to get theSplunk App forAWS Security Dashboards working. Apparently the default index the app is using is "main". I need to change this. I know I could c...
I am trying to set up SplunkAdd-onforAWS to pull my logs from my AWS account into splunk. I have a Splunk Enterprise setup on prem in an AWS EC2 server. I used theSplunk Enterprise AMI. I have a...
Hi Team, We are trying to onboard AWScloudwatch metrics and events data to splunk , we decided to go with splunkAddonforAWS pull mechanism. I am trying to configure a custom namespace and m...
I'm trying to configure a cloudwatch logs input but I continue to receive invalid key errors when restarting Splunkonthe HF. I've gone by the doc as well as opened a support case but haven't had s...
What's the best practice to get AWS data, such as VPC Flow, CloudWatch, CloudTrail, into theSplunk platform at scale? The modular inputs in theSplunkAdd-onfor Amazon Web Services are not s...
I'm using current Cloud Splunk: It appears the older "SplunkAdd-onforAWS" can stream in Cloudwatch log-group data through Inputs > Custom Data Type > Cloudwatch Logs. This asks for a c...