Splunk® App for Microsoft Exchange (EOL)

Deploy and Use the Splunk App for Microsoft Exchange

On October 22 2021, the Splunk App for Microsoft Exchange will reach its end of life. After this date, Splunk will no longer maintain or develop this product. The functionality in this app is migrating to a content pack in Data Integrations. Learn about the Content Pack for Microsoft Exchange.
This documentation does not apply to the most recent version of Splunk® App for Microsoft Exchange (EOL). For documentation on the most recent version, go to the latest release.

About the Splunk App for Microsoft Exchange

The Splunk App for Microsoft Exchange consumes logs from your Microsoft Exchange systems to give you deep visibility into the health and performance of your Microsoft Exchange environment, from Edge and Hub Transport servers to the Client Access servers and the Mailbox Store itself.

It includes components that let you monitor system availability and client activity. It helps you immediately answer the eternal question facing every Exchange admin: "what happened to my email?".

Use the Splunk App for Microsoft Exchange to:

  • Identify infrastructure problems, such as non-running services and load issues
  • Monitor the performance of all servers throughout your messaging environment
  • Track messages throughout your messaging environment
  • Monitor client usage, including mobility usage via ActiveSync or Blackberry Enterprise Server
  • Monitor security events, such as virus outbreaks and anomalous logons
  • Track administrative changes to the environment
  • Analyze long-term mail operations trends
  • Plan for capacity expansion
  • Monitor your organization's outbound email sender reputation

Important: Be sure to read and understand the Splunk App for Microsoft Exchange's platform and hardware requirements before downloading and installing the app. Also, review what data the app collects and learn about additional deployment options and considerations.

How does it work?

Splunk universal forwarders gather logs and performance metrics from the following components of your Microsoft Exchange deployment:

  • Edge Transport
  • Hub Transport
  • Client Access Server (CAS)
  • Mailbox Server
  • Blackberry Enterprise Server (BES) (optional)

and forward them to a central Splunk instance that runs Splunk App for Microsoft Exchange. The app provides pre-built reports and dashboards that allow you to review the status of your Exchange mail services.

How do I get it?

The Splunk for Microsoft Exchange app is available for download.

How do I upgrade from a previous version?

If you are already running the Splunk App for Microsoft Exchange and want to upgrade, be sure to read "Upgrade the Splunk App for Microsoft Exchange" for conceptual information, important differences between versions, and specific upgrading instructions.

For information on what's new and what's been fixed from the previous version, as well as any known issues in this version, review the release notes.

Last modified on 01 February, 2013
  New to Splunk?

This documentation applies to the following versions of Splunk® App for Microsoft Exchange (EOL): 2.1, 2.1.1


Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters