Splunk Enterprise Security

Is the GuardDuty Add-On supported on Splunk Version 7.2?

cody_richardson
Path Finder

Is the GuardDuty Add-on officially supported on Splunk version 7.2? If not, are there plans to update it so it is supported?

Thank you.

0 Karma
1 Solution

kchamplin_splun
Splunk Employee
Splunk Employee

It's supported on 7.2, however, there is more guidance here on best practices for working with GuardDuty data:
https://www.splunk.com/blog/2018/02/22/serving-it-up-with-aws-and-splunk-aws-serverless-application-...

View solution in original post

0 Karma

cody_richardson
Path Finder

Thank you, kchamplin!

0 Karma

kchamplin_splun
Splunk Employee
Splunk Employee

It's supported on 7.2, however, there is more guidance here on best practices for working with GuardDuty data:
https://www.splunk.com/blog/2018/02/22/serving-it-up-with-aws-and-splunk-aws-serverless-application-...

View solution in original post

0 Karma
Did you miss .conf21 Virtual?

Good news! The event's keynotes and many of its breakout sessions are now available online, and still totally FREE!