Hey fharding,
We had the some of the same questions when setting up our Splunk ES environment. We use HP Service Manager as our ticketing system and Netcool Omnibus to go between Splunk and Service Manager to accomplish this. We relied heavily on Splunk PS to help with the integration.
It definitely isn't a perfect system, but it works pretty well. We are able to import fields from notable events, and send those tickets to other support groups, or ourselves right from Splunk.
Its definitely possible to do.
Let me know if you have any questions.
... View more