BeyondTrust Splunk App for Endpoint Privilege Management for Windows and MAC
This Application includes Dashboards that are pre-configured for Endpoint Privilege Management for Windows and MAC
1- BeyondInsight Connector for Splunk.
2- Corresponding Data Input(e.g. syslog tcp/514 or https/json)
3- Events in Splunk from Endpoint Privilege Management for Windows and MAC
You can set either set source=epm or sourcetype=beyondtrust at the BeyondInsight Connector level, or at the Data Input level.
Each report in the Dashboard filter data like this: (source=epm AND sourcetype=beyondtrust AND index=idx_beyondtrust)
It is possible to quickly edit each report to replace with desired source, sourcetype, or index.
For any question or feedback, please contact Integrations@beyondtrust.com
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.