Splunk® Content Packs for ITSI and IT Essentials Work

Splunk Content Packs for ITSI and IT Essentials Work

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

About the Content Pack for Monitoring Microsoft Windows

The Content Pack for Monitoring Microsoft Windows provides the elements necessary for monitoring your OS health related to Windows servers. It uses the heavy or universal forwarder and an add-on to collect and send data to event indexes. This content pack relies on the Splunk Add-on for Microsoft Windows, where the collected data is sent to event indexes. For more information, see the Splunk Add-on for Microsoft Windows.

The content pack includes a preconfigured service template for monitoring OS health metrics for CPU, memory, disk, and network. The KPIs in the service template are configured for general purposes only and must be tuned to accommodate your specific use case.


On-premises installation

On-premises users currently need to download the embedded backup ZIP file from the installation steps in the documentation and restore it in ITSI using the backup/restore functionality. The Content Library will be made available to on-premises users in a future release. See the installation instructions for this content pack to access the ZIP file.

Contents

This content pack contains the following objects:

  • OS-level KPIs
  • Eight KPI base searches:
    • OS:Performance.WIN.CPU
    • OS:Performance.WIN.LogicalDisk
    • OS:Performance.WIN.Memory
    • OS:Performance.WIN.Network
    • OS:Performance.WIN.PhysicalDisk
    • OS:Performance.WIN.Process
    • OS:Performance.WIN.System
    • OS:Performance.WIN.WinHostMon
  • A service template: Windows server health
  • A sample service to use for testing entity filtering and KPI thresholds: SAMPLE - Windows server health to use for testing entity filtering and KPI thresholds.

Deployment requirements

Use the following table to determine ITSI version compatibility with various versions of the Content Pack for Monitoring Microsoft Windows:

Content pack version ITSI version
1.0.1 4.7.0 or higher
1.0.0 4.2.1 - 4.6.2

Additional resources

Last modified on 11 October, 2021
PREVIOUS
Use the Content Pack for Monitoring Citrix
  NEXT
Release notes for the Content Pack for Monitoring Microsoft Windows

This documentation applies to the following versions of Splunk® Content Packs for ITSI and IT Essentials Work: current


Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters