Hi,
Is SplunkEnterpriseSecurity and Splunk User Behavior Analytics (Splunk UBA) totally independent apps?
Do they depend on each other in any way?
I'm looking to check out UBA, but do n...
Is there a document that simply and concisely compares the features of Splunk User Behavior Analytics (Splunk UBA) and SplunkEnterpriseSecurity? I cannot find anything like that except for l...
Hello, I'm just having a bit of difficulty differentiating between SplunkEnterprise, ITSI, SOAR, UBA, and EnterpriseSecurity. It seems like they all do similar things. Do they all...
IBM SecurityNetwork Protection XGS 5100 (IPS) required to be integrated with Splunk and wanted to ensure it's follows CIM so EnterpriseSecurity able map the data accordingly.
There are any a...
I am setting Splunk ES and sending data from Fortinet. Data is well parsed and CIM compatible however Network dashboards are not loaded.
After digging in macros I found that a particular c...
The dns datamodel is not populating because out of the box neither ES or the Windows Infrastructure app have the tag constraints defined. The datamodel is looking for the following three tags "tag=network...
I'm installing an EnterpriseSecurity build and have run into an issue with getting DNS into the ES environment.
From search & reporting, I see 5 different dns sourcetypes, in ES the DNS A...
Palo Alto Networks Add-on 6.0.2 - fail to download threat intelligence from AutoFocus' MineMeld inSplunkEnterpriseSecurity
I installed Palo Alto Networks Add-on 6.0.2 and configured it to d...