Splunk® App for PCI Compliance

Installation and Configuration Manual

Download manual as PDF

Download topic as PDF

Install the Splunk App for PCI Compliance

Before you install the app, make sure you have satisfied the install prerequisites for both Splunk Enterprise and the Splunk App for PCI Compliance. See Install prerequisites in this manual.

Download the app

  1. Browse to splunk.com and log in with your Splunk.com ID. You must be a licensed Splunk App for PCI Compliance customer to download the product.
  2. Download the Splunk App for PCI Compliance from Splunkbase.
    1. If you have Splunk Enterprise Security installed, install the Splunk App for PCI Compliance (for Splunk Enterprise Security).
    2. If you do not have Splunk Enterprise Security installed, install the Splunk App for PCI Compliance (for Splunk Enterprise).
  3. Choose Download, and save the app file to your desktop.
  4. Log in to the search head as an administrator.

Install the app

  1. On the Splunk Enterprise search page, select Apps > Manage Apps and click Install App from File.
    Caution: Install the Splunk App for PCI Compliance (for Splunk Enterprise Security) on the same instance as Splunk Enterprise Security. If you do not install it on the same instance as Splunk Enterprise Security, the Splunk App for PCI Compliance (for Splunk Enterprise Security) will not work.
  2. Select Choose File and browse to the Splunk App for PCI Compliance product file.
  3. Select Upload to begin the installation.
  4. Click Set up now to begin the installation.

Set up the App

  1. Click Setup next to Splunk App for PCI Compliance in Manage Apps.
  2. Click Start then wait until it completes the entire installation.
  3. Restart your instance of Splunk platform.
  4. Access Splunk Web from https and log in.

Add data

You can add data to the Splunk App for PCI compliance in two ways.

  • Use data from preconfigured add-ons such as TA-bluecoat.
  • Create custom add-ons to capture specific data in your environment.

Configure the app

To configure the app, click Configure in the menu bar. Follow the Steps to configure in this manual to begin setting up the Splunk App for PCI Compliance for your cardholder data environment.

PREVIOUS
Install prerequisites
  NEXT
Install technology add-ons

This documentation applies to the following versions of Splunk® App for PCI Compliance: 3.4.0, 3.4.1, 3.4.2, 3.5.0, 3.6.0, 3.6.1, 3.7.0, 3.7.1, 3.7.2, 3.8.0


Was this documentation topic helpful?

Enter your email address, and someone from the documentation team will respond to you:

Please provide your comments here. Ask a question or make a suggestion.

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters