The Splunk Add-on for Palo Alto Networks lets you collect data from Cortex XDR, IoT Security, Firewalls, Panorama, and Strata Logging Service. The new Add-on provides a health check monitoring dashboard and CIM-compatible knowledge objects.
Key Highlights of the release:
Modular inputs for IoT Security & Cortex XDR
CIM normalisation
Health check monitoring dashboard
Support for the latest PanOS
Important information for users of the Palo Alto Networks-owned Add-on and App:
Due to certain differences between the Palo Alto Networks-owned Add-on and the Splunk-supported Add-on, it's important to understand the key changes, such as revised CIM mapping, macro adjustments, and configuration updates for IoT Security and Cortex XDR inputs. Familiarizing yourself with these changes and their impact is crucial to ensuring a smooth migration to the Splunk-supported Add-on and App. More details can be found in the Migration section of the Add-on documentation.
Documentation for this add-on is posted at [Splunk Docs](https://splunk.github.io/splunk-add-on-for-palo-alto-networks)
Resources
Log in to report this app listing