The Asana App for Splunk enables admins in Enterprise organizations to leverage Asana’s Audit Log API with Splunk.
With Asana for Splunk, you can utilize Splunk’s leading Security Information and Event Management (SIEM) suite, allowing admins to investigate, monitor, analyze, and act on audit logs from Asana.
For example, if an employee in one region suddenly attempts multiple logins in a foreign location, admins can use timely customized alerts to take immediate action.
This integration is available for Splunk Enterprise and Splunk Cloud and is Common Information Model (CIM)-compatible.
Asana is a leading work management platform that helps teams orchestrate work, from daily tasks to cross-functional strategic initiatives. With Asana, organizations have a living system of clarity where everyone can see, discuss, and execute their team’s priorities.
Headquartered in San Francisco, CA, Asana has over 107,000 paying customers and millions of free organizations across 190 countries. Global customers such as Amazon, Japan Airlines, Sky, and Under Armour rely on Asana to manage everything from company objectives to digital transformation to product launches and marketing campaigns.
For more information, visit asana.com/enterprise.
To set-up the Asana App for Splunk, follow these steps:
- Visit the “Asana for Splunk” application on Splunkbase to begin the installation process. Depending on your Splunk configuration, you may need to install the app via the apps menu in the topbar and then via "Find more Apps" or "Browse More Apps."
- If you're on a Splunk Cloud Classic experience, navigate to your IDM. If you're on a Splunk Cloud Victoria experience, navigate to your Search Head.
- In Asana’s Admin Console, create a Service Account and copy the Domain ID from the settings tab. Enter these values on the Configuration page.
- Navigate to the input step and enter an ingestion interval (in seconds format) between 30 seconds and 300 seconds (or five minutes).
- On the same page, enter a backfill range in “number of days”. Note: if you leave this blank, it will default your installation to 30 days of backfill. Asana stores logs for a maximum of 90 days after capture.
- Finally, set up your index macro on your Search Head. This is accessed by navigating to Settings > Advanced Search > Search Macros. From there, you’ll click on “asana-index” and edit the description of the macro to be “index=<your index name>” and click “save”. Your Asana for Splunk dashboard and appendix will begin to populate after you complete this step.
- Depending on the period of backfill you have selected, full data ingestion may take several hours to appear.
To learn more about using the Asana App for Splunk integration, visit the Asana Guide resource article.
If you have questions, feedback, or need support, contact the Asana support team.