Requirements:
- This Add-on requires to be installed on a Heavy Forwarder to facilitate parsing of ContentKeeper and ContentKeeperweb syslog logs ingested.
Installation:
- The Add-on Enosys Add-on for ContentKeeper and ContentKeeperweb Proxy should be installed on Heavy Forwarders, Search Heads and Indexers.
Known issues:
- (none)
Addressed Issues:
- New ContentKeeperweb REGEX extraction fixing capturing group
- Sanitised URL removing ports
- Mapped eventtypes per sourcetype (contentkeeper and contentkeeper:web)
Requirements:
- This Add-on requires to be installed on a Heavy Forwarder to facilitate parsing of ContentKeeper and ContentKeeperweb syslog logs ingested.
Installation:
- The Add-on Enosys Add-on for ContentKeeper and ContentKeeperweb Proxy should be installed on Heavy Forwarders, Search Heads and Indexers.
Known issues:
- (none)
Addressed Issues:
- New ContentKeeperweb REGEX extraction fixing capturing group
- Sanitised URL removing ports
- Mapped eventtypes per sourcetype (contentkeeper and contentkeeper:web)
Updated to support ContentKeeper Web proxy log format for preservation of IP address information in logs.
The ContentKeeper Add-on for Splunk allows a Splunk® administrator to extract and filter event information from ContentKeeper Proxy logs. https://github.com/enosysau/Splunk_TA_contentkeeper_Enosys
Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.