Splunk® Supported Add-ons

Splunk Add-on for Unix and Linux

Lookups for the Splunk Add-on for Unix and Linux

The Splunk Add-on for Unix and Linux contains the following lookup files:

File Name Description
nix_da_update_status.csv Maps sourcetypes to required update status.
nix_da_version_ranges.csv Maps sourcetypes to OS-provided version information.
nix_endpoint_change_vendor_action.csv Maps actions for windows registry and file system change notifications.
nix_fs_notification_change_type.csv Maps sourcetypes and change types for file system change notifications.
nix_linux_audit_action_object_category.csv Maps operations(op) to category and action for linux audit logs.
nix_object_category.csv Maps object and object_category for windows registry and file system change notifications.
nix_status.csv Maps status id and status for windows registry and file system change notifications
nix_user_types.csv Maps sourcetypes and user types for windows registry and file system change notifications.
nix_vendor_actions.csv Maps vendor_action and action for security logs..
Last modified on 12 July, 2024
Troubleshoot the Splunk Add-on for Unix and Linux   Scripted input reference for the Splunk Add-on for Unix and Linux

This documentation applies to the following versions of Splunk® Supported Add-ons: released

Acrobat logo Download manual
Acrobat logo Download this page

Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters