Install the Splunk Add-on for Forcepoint Web Security
Complete these steps to install the Splunk Add-on for Forcepoint Web Security:
- Get the Splunk Add-on for Forcepoint Web Security by downloading it from Splunkbase or browsing to it using the app browser within Splunk Web.
- Determine where and how to install this add-on in your deployment, using the following tables on this page.
- Perform any prerequisite steps before installing, if required and specified in the following tables.
- Complete your installation.
If you need step-by-step instructions on how to install an add-on in your specific deployment environment, see the following installation walkthroughs section for links to installation instructions specific to a single-instance deployment, distributed deployment, or Splunk Cloud.
Use the following tables to determine where and how to install this add-on in a distributed deployment of Splunk Enterprise. See the installation walkthrough section for links to installation instructions specific to a single-instance deployment, distributed deployment, or Splunk Cloud.
Distributed installation of this add-on
This table provides a quick reference for installing this add-on to a distributed deployment of Splunk Enterprise:
| Splunk instance type | Supported | Required | Comments |
|---|---|---|---|
| Search Heads | Yes | Yes | Install this add-on to all search heads where Websense Content Gateway knowledge management is required. |
| Indexers | Yes | Conditional | Not required if you use heavy forwarders to collect data. Required if you use universal forwarders to collect data. |
| Heavy Forwarders | Yes | No | This add-on supports forwarders of any type for data collection. |
| Universal Forwarders | Yes | No | This add-on supports forwarders of any type for data collection. |
Distributed deployment compatibility
This table provides a quick reference for the compatibility of this add-on with Splunk distributed deployment features.
| Distributed deployment feature | Supported | Comments |
|---|---|---|
| Search Head Clusters | Yes | You can install this add-on on a search head cluster for all search-time functionality. Before installing this add-on to a cluster, remove the eventgen.conf file and all files in the Samples folder.
|
| Indexer Clusters | Yes | Before installing this add-on to a cluster, remove the eventgen.conf file and all files in the Samples folder.
|
| Deployment Server | Yes | Supported for deploying the configured add-on. |
Installation walkthrough
See Installing add-ons in Splunk Add-Ons for detailed instructions describing how to install a Splunk add-on in the following deployment scenarios:
| Installation overview for the Splunk Add-on for Forcepoint Web Security | Configure Forcepoint Web Security to send syslog data |
This documentation applies to the following versions of Splunk® Supported Add-ons: released
Download manual
Feedback submitted, thanks!