RSA Admin

Splunk as an event source

Discussion created by RSA Admin Employee on Apr 4, 2012

Has anyone had any experience integrating splunk and enVision?

 

In short splunk is collecting some of our logs and I will need to feed these into enVision. I do not have the option of these going into splunk plus enVision. Also appreciate that it could be multiple event sources going into splunk, some could have been originally in syslog format, others not.

 

Thanks in advance.

Outcomes