Absolutely! We currently have customers using Splunk Cloud with Tripwire Enterprise (TE) in production environments. There are really two types of "data pipes" feeding Splunk Cloud from TE. First is TCP syslog typically over port 1468 this feed can go directly to the cloud or more likely is sent to a forwarder. Secondly, there is a technical add-on built into the app which uses Tripwire Enterprise's SOAP API to extract detailed changes and detailed test results as CSV on a scheduled basis. These feeds are configured during setup of the app.
... View more