Adoption of RUM and APM at Splunk

Here are a few top of mind questions asked during the live Tech Talk

Q. Given the recent merger of Splunk with Cisco - Do you foresee any changes to Splunk Observability?

A. What a great question. With Splunk and Cisco together, we will have a more comprehensive Observability solution to enhance digital experiences and prevent downtime across all environments whether they are on-premises, hybrid, or multi-cloud, and in the next months, we will be able to provide an integrated experience that covers a full-stack of technologies in any environment.

Q. What was the toughest adoption of Splunk Observability for your team?

A. The biggest challenge for O11y adoption is the difficulty of transitioning away from traditional methods of logging and debugging code within developer communities.

Q. Where are yo seeing customers challenged in integration across Splunk Observability?

A. Lack of awareness about how easily it can integrate with any application due to OTel is a significant issue. Additionally, O11y provides a lot of data, which can overwhelm individuals who are not from a cloud discipline.

Q. What is the next adoption your team is focused on and why?

A. The next step in our adoption process would be to deep dive into Synthetic monitoring. It appears to hold significant potential for QA automation.

Q. What product improvements in Splunk APM or RUM would you like to see in future?

A. Would love to see more built in out of box user friendly dashboard to provide end-to-end visibility into the entire stack.

Q. Is it possible to detect network issues with any off these solutions?

A. APM can provide you the all the details.

Q. What is the difference between the Splunk Observability vs other vendors such as IBM Instana? 

A. Splunk Observability and IBM Instana are observability solutions, they differ in their scope, approach to data collection and analysis, integration capabilities, ease of use, and focus areas. IBM Instana observability ecosystem may not be as extensive as Splunk's ecosystem.

Q. Is the roadmap available for Splunk for 2024

A.  Roadmap: for Splunk.com ..APM-RUM already in use

Q. Does the APM and RUM integration work only when using Open Telemetry or is it supported when using traditional APM agents ? 

A. If those legacy agents can support OTLP protocols, then the Splunk Observability Cloud can ingest all the same metrics as other vendor solutions.

Q. Is it possible for Splunk to live with other monitoring tools during a time of changing of this old tool and to have a view of all that was monitoring in old tool is on Splunk?

A. Yes ! as long as Open Telemetry is used.

Q. Is there any place Security team can use RUM and APM to find any security event or any insight which help SOC ?

A. Yes ! RUM/APM can be used for Security insights. RUM also allows custom events.

Q. How do you secure the Connection from the web to Splunk? How did you manage the API token or any credentials packaging into the app layer with the OpenTelemetry libraries?

A. Securing the connection from the web to Splunk involves several steps, including authentication, encryption, and possibly token management. OpenTelemetry, a set of APIs, libraries, agents, and instrumentation to provide observability in applications, can be utilized to integrate with Splunk for logging and monitoring purposes.

Some of the best practices involved are: Authentication and Authorization, Secure Communication, API Token Management, Integration with OpenTelemetry, Secure Credential Handling

Q. Can you please refer me to the security integration patterns for Splunk RUM

A. When integrating security with Splunk RUM, you'll typically focus on collecting relevant security-related data, analyzing it, and taking appropriate actions based on the insights gained. While there might not be specific "security integration patterns" tailored specifically for Splunk RUM, you can follow general security integration.

Additional Resources

Free Trial

• Splunk observability 

Documentation

• Track service performance using dashboards in Splunk APM

Certification

• Splunk Observability Cloud Certified Metrics User

Blogs 

• APM: Not an Infrastructure Monitoring Strategy

• APM Metrics: The Ultimate Guide

Training Courses

• Using Splunk Application Performance Monitoring

Checkout the Tech Talk video blog! 

Under 5 minute video moments for insights into how the Splunk Growth Engineering  team uses  Real User Monitoring (RUM) and Application Performance Monitoring (APM) to proactively identify and solve issues, and they demonstrate the capabilities of these tools through a live demo, highlighting the benefits of integrating front-end and back-end monitoring for comprehensive observability.