Splunk is excited to announce new releases that empower ITOps and engineering teams to stay ahead in ever evolving intelligent systems and IT environments. These innovations help simplify complex operations, enhance performance, and leverage AI to bring together proactive insights, assisted workflows, and much more. Read on to get the details, early access, and context on how you can take advantage for faster troubleshooting.
New in Observability This Month
ITSI’s Drift Detection
ITSI’s Simplified Onboarding for Event Analytics
ITSI’s Backup and Restore Enhancements
ITSI’s EA (Rules Engine) Scalability and Stability
ITSI’s Entity Normalization In-Product Remediation Workflow & Automatic Merging
Observability AI Assistant in Splunk Cloud Related Content
Synthetics Downtime Configurations
Synthetics Multi-factor authorization using TOTP, SSO, email password
More in Preview…
Proactive Insights and Faster Troubleshooting
Drift Detection: Drift Detection in Splunk ITSI helps catch sudden changes in KPIs before they are impacted and proactively determine slow, long-trending changes (like slowly increasing latency over months) that potentially indicate an issue, so it can be remediated before problems arise. Learn more.
Simplified Onboarding for Event Analytics: Simplified Alert Onboarding helps ITOps teams to easily get started with Event Analytics through an assisted workflow. Quickly transform alerts from Splunk & popular 3rd-party tools (like Nagios, SolarWinds, and Microsoft SCOM) with pre-built templates and more, including:
Webhook integrations to send alert data & run alert actions between ITSI & 3rd-party integrations.
Prebuilt transformation templates for selected tools that work in conjunction with the Splunk supported TAs
The bidirectional Jira Cloud integration to send ITSI alerts to Jira.
Event integration with Splunk Observability Cloud for more business service context and faster root cause analysis.
Normalizing and enriching alert data from a unified UI.
Preview to visualize alert ingestion and transformation before enabling the ingestion.
Synthetics Multi-factor authorization using TOTP, SSO, email password: Synthetic browser tests can now mimic the login flow of additional 2FA methods, including MFA with TOTP, SSO, SMS, and email. By simulating real-world user interactions under these various MFA scenarios, you can validate authentication mechanisms, reveal friction points/delays impeding on site accessibility, and proactively uncover edge cases and vulnerabilities. Learn more.
EventIQ: Currently in Preview, EventIQ in ITSI delivers AI-driven alert correlation, so ITOps teams can dynamically filter out noise, group related events, and highlight critical incidents that require immediate attention. With the ability to further configure event filter conditions and plain-text explainability during AI-analysis configuration, it's easy for teams to bake in additional domain expertise for correlation. Register to see how context-aware insights and actionable recommendations help reduce alert fatigue and streamline workflows to improve MTTR.
New Performance Optimization and Scale
ITSI Backup and Restore enhancements: New Backup and Restore enhancements include extended object support and dependency inclusion of Splunk knowledge objects. Proactive prechecks are additionally baked in to identify missing dependencies before creating backups to mitigate failures during restore.
ITSI EA Scalability and Stability: Made for the growing demand and complexity of modern IT environments, new enhancements to ITSI’s rules engine supports ingesting and processing a significantly higher volume of alerts with lower latency, even during indexer topology changes. Ensure faster insights & responses by tracking the performance of grouping, actions, and more to better understand noise reduction, latency metrics, and bottlenecks.
ITSI Enhanced Refresh Queue: Currently in Preview, ITSI’s new Refresh Queue enhancements help teams stay ahead of operational challenges, optimizing data refresh intervals and load balancing to ensure configuration updates take place as real-time as possible. Get proactive alerts when queue issues occur before it impacts your environment and upgrades.
Synthetics Downtime Configurations: You can now configure recurrence in your Splunk Synthetics Downtime Configurations, ensuring that known maintenance windows, regular updates, and other critical scenarios can be managed under one standardized configuration. By establishing set recurrence schedules ahead of time, you can eliminate the need for manual setup each downtime, reducing risk of error and maintaining operational consistency. Learn more.
Streamline Visibility and Workflows
Entity Normalization In-Product Remediation Workflow & Automatic Merging: Entity normalization delivers improved entity management, reconciliation and stability through an in-UI remediation experience. Once configured, entity normalization automatically merges duplicate entities, and frequently suggests duplicates found in the environment to cleanup, minimizing manual efforts for more accurate service views.
Entity-level Thresholding: Currently in Preview, Entity-level Thresholding dynamically baselines and applies adaptive thresholds at an entity-level, enabling ITOps teams to easily monitor when entity behavior deviates from normal and pin point the root cause of problems at the IT component level. With more abilities wrapped inside, like automatically picking up new entities from KPIs, get excited for its General Availability in the near future! Register here for more information and early access.
Extend Impact with New Integrations & Add-Ons
Observability AI Assistant in Splunk Cloud Related Content: Extend your root cause analysis and IT investigations with a GenAI-powered experience in Splunk Platform. Now, in addition to getting more context of your issues with observability data, you also get an AI Assistant that provides additional insights about related applications and infrastructure, for faster mean time to identify and resolve issues. Available for customers with Unified Identity enabled. Learn more.
AppDynamic Add-on & Dedicated AppDynamics content pack: AppDynamics Add-on and dedicated AppDynamics content pack - the integration of AppDynamics with Splunk ITSI helps enhance visibility and align application, infrastructure, and databases to business impact so you can quickly find problems and troubleshoot in-context. Read more details here, and access it directly on Splunkbase.
Support for ITSI on Azure: Elevate your cloud strategy with ITSI’s new native support for Azure, enabling seamless deployment and management of ITSI to provide optimized system performance, and tighter integration with Azure services.
... View more