Splunk® Supported Add-ons

Splunk Add-on for GitHub

Configure your GitHub Enterprise server to send data to the Splunk Add-on for GitHub

To let the Splunk Add-on for GitHub collect data from your GitHub Enterprise server, configure your GitHub Enterprise server to forward logs and push it to your Splunk platform installation. For more detailed information, see the GitHub log forwarding documentation.

  1. On the Management Console page, click Monitoring.
  2. Select Enable log forwarding.
  3. For Server address, type the address of the server to which you want to forward logs. You can specify multiple addresses in a comma-separated list.
  4. In the Protocol menu, select the protocol to use to communicate with the log server, we recommend TCP. The protocol will apply to all specified log destinations.

Collect data in the add-on using GitHub Enterprise

Splunk Connect for Syslog

All production deployments should utilize Splunk Connect For Syslog to forward syslog data into the Splunk platform for GitHub Enterprise data. This solution provides improved simplicity and scalability, among other benefits. For more information, see the Splunk Connect for Syslog manual.

Validate data collection

Once you have configured the input, run this search to check that you are ingesting the correct expected data.

sourcetype=github:enterprise:audit

Last modified on 29 October, 2024
Install the Splunk Add-on for GitHub   Configure GitHub Cloud to send data to the Splunk Add-on for GitHub

This documentation applies to the following versions of Splunk® Supported Add-ons: released


Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters