Splunk Connection

Requirements

Creating a Splunk Connection

  1. Navigate to Splunk integrations by clicking the Splunk link on the integrations page

  2. Begin creating a BluBracket Splunk connection by clicking the + CONNECTION button

  3. Enter a unique name for the connection.

  4. Generate an integration token following the Splunk docs

  5. Copy your integration token and paste it into the token field.

  6. Enter the port number (default is 8088).

  7. If you are testing with a free trial, check the optional box.

  8. Enter the base url of your splunk account.

  9. Click TEST & SAVE.

Now you’re ready to create subscriptions for this connection and start seeing BluBracket incidents in Splunk.

Edit this page on GitHub

Related docs