IT and Security professionals can now use at-a-glance dashboards for their services, users and infrastructure. Splunk Administrators can also use the custom commands within the product to augment information from other sources with Active Directory information, including an IP address to Username correlation. Splunk App for Active Directory comes with over fifty out-of-the-box dashboards and reports.
Splunk App for Active Directory is a comprehensive solution for managing your Microsoft Windows Server Active Directory forest. It contains dashboards for:
Splunk App for Active Directory supports Windows Server 2003 up to Windows Server 2012.
IMPORTANT: If upgrading from v1.0, please be sure to follow the upgrade information in the documentation. FAILURE TO FOLLOW UPGRADE INSTRUCTIONS WILL MEAN THE APP WILL NOT OPERATE AS INTENDED.
This [Windows | AD] App has been superseded by the new Windows Infrastructure app for use with Splunk 6.0. Please download the new application instead. - http://apps.splunk.com/app/1680/
• Splunk version 4.3.6 no longer warns of a configuration conflict in%SPLUNK_HOME%\etc\apps\Splunk_for_ActiveDirectory\metadata\default.meta when started from the command line.
• The app now returns data for the "Failed Logons by IP Address" dashboard.
• A problem with the TA_DomainController_NT6 technology add-on was fixed. The TA now collects "Processor" performance metrics correctly.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.