About the Splunk Add-on for CyberArk
|Vendor Products||Privileged Threat Analytics 2.6.3, Enterprise Password Vault 9.x|
The Splunk Add-on for CyberArk allows a Splunk software administrator to collect system logs and traffic statistics from CyberArk Privileged Threat Analytics (PTA) 2.6.3 and CyberArk Enterprise Password Vault (EPV) 9.x using syslog in Common Event Format (CEF). This add-on extracts CyberArk real-time privileged account activities, such as individual user activity when using shared accounts, into the Splunk platform and Splunk Enterprise Security, providing a single place to analyze unusual account activity.
Download the Splunk Add-on for CyberArk from Splunkbase at http://splunkbase.splunk.com/app/2891.
Discuss the Splunk Add-on for CyberArk on Splunk Answers at http://answers.splunk.com/answers/app/2891.
Source types for the Splunk Add-on for CyberArk
This documentation applies to the following versions of Splunk® Supported Add-ons: released