Splunk® IT Essentials Work

Entity Integrations Manual

Acrobat logo Download manual as PDF


This documentation does not apply to the most recent version of Splunk® IT Essentials Work. For documentation on the most recent version, go to the latest release.
Acrobat logo Download topic as PDF

About the Windows entity integration in ITE Work

There are two ways you can collect Windows data in (ITE Work). You can either use the data collection script or you can configure data collection agents manually. For information about data you can collect with this integration, see Windows data you can collect with ITE Work. Before you start collecting Windows data, make sure you satisfy the Windows integration requirements. For more information, see Windows integration requirements for ITE Work.

Collect Windows metrics and logs with the data collection script in ITE Work

The data collection script in ITE Work collects both Windows metrics and logs data. To use the data collection script you have to have internet access. The data collection script downloads a universal forwarder. If you don't have internet access, configure data collection manually. For more information, see Collect Windows metrics and logs with the data collection script in ITE Work.

Manually collect logs and metrics from a Windows host in ITE Work

You can manually set up a universal forwarder to collect metrics from a Windows host. Manually configure metrics collection for a host when you meet at least one of these conditions:

  • You're collecting data from a host on a closed network with no internet access.
  • You already installed a universal forwarder on the host.
  • You don't have trusted URLs you can download the required packages from.

If you also want to manually collect log data from a Windows host, see Manually collect logs from a Windows host in ITE Work.

Troubleshooting

If you have problems setting up the Windows entity integration, see Troubleshoot the Windows entity integration in ITE Work.

Last modified on 28 February, 2024
PREVIOUS
Troubleshoot the Unix and Linux entity integration in ITE Work 		  NEXT
Windows integration requirements for ITE Work

This documentation applies to the following versions of Splunk® IT Essentials Work: 4.9.0, 4.9.1, 4.9.2, 4.9.3, 4.9.4, 4.9.5, 4.9.6, 4.10.0 Cloud only, 4.10.1 Cloud only, 4.10.2 Cloud only, 4.10.3 Cloud only, 4.10.4 Cloud only, 4.11.0, 4.11.1, 4.11.2, 4.11.3, 4.11.4, 4.11.6, 4.12.0 Cloud only, 4.12.2 Cloud only, 4.13.0, 4.13.1, 4.13.2, 4.13.3, 4.14.0 Cloud only, 4.14.1 Cloud only, 4.14.2 Cloud only, 4.15.0, 4.15.1, 4.15.2, 4.15.3, 4.16.0 Cloud only, 4.17.0, 4.17.1

Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters