Splunk® Enterprise Security

Release Notes

Acrobat logo Download manual as PDF


This documentation does not apply to the most recent version of ES. Click here for the latest version.
Acrobat logo Download topic as PDF

Release Notes

This topic contains information on new features, updates, and known issues released with the Splunk App for Enterprise Security.

What's New

  • Version 3.2.2 of The Splunk App for Enterprise Security requires Splunk Enterprise version 6.2.1 through 6.3.x, and a 64-bit OS install on all search heads and indexers.
  • Search head clustering support: The Splunk App for Enterprise Security supports installation on a search head cluster. See "Search Head Clustering" in the Enterprise Security Installation and Configuration Manual.
  • Splunk App for Stream integration: Facilitates packet data capture into the Enterprise Security app workflows. See "Splunk App for Stream Integration" in the Enterprise Security Installation and Configuration Manual.
  • Protocol intelligence for wire data: A collection of new dashboards, correlation searches, key security indicators, and swimlanes that report on the information collected from common network protocols. See "Protocol Intelligence dashboards" in the Enterprise Security User Manual.
  • Dynamic Thresholds and Context Awareness: A new set of search commands for creating and maintaining dynamic thresholds, and reporting using common language labels. Set of new and existing correlation searches and key security indicators which leverage this new search capability. See "Extreme Search" in the Enterprise Security User Manual.

Add-ons

Last modified on 13 April, 2016
  NEXT
Fixed Issues

This documentation applies to the following versions of Splunk® Enterprise Security: 3.2.2


Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters