About the Splunk Add-on for CyberArk
|Vendor Products||Privileged Threat Analytics (PTA) 12.2, Enterprise Password Vault (EPV) 12.2|
The Splunk Add-on for CyberArk allows a Splunk software administrator to pull system logs and traffic statistics from Privileged Threat Analytics (PTA) 12.2 and Enterprise Password Vault (EPV) 12.2 using syslog in Common Event Format (CEF). This add-on extracts CyberArk real-time privileged account activities (such as individual user activity when using shared accounts) into the Splunk platform and Splunk Enterprise Security, providing a single place to analyze unusual account activity.
Download the Splunk Add-on for CyberArk from Splunkbase at http://splunkbase.splunk.com/app/2891.
Installation overview for the Splunk Add-on for CyberArk
This documentation applies to the following versions of Splunk® Supported Add-ons: released