Known data sources available for the Splunk Add-on for Asset and Risk Intelligence
After you install the Splunk Add-on for Asset and Risk Intelligence, you must add data sources for the add-on in Splunk Asset and Risk Intelligence.
For instructions on how to add a data source, see Add or modify a data source in Splunk Asset and Risk Intelligence in the Administer Splunk Asset and Risk Intelligence manual.
In order for added data sources to begin aggregating data, you must activate them and set a priority.
The following table lists the known data sources available for the Splunk Add-on for Asset and Risk Intelligence:
| Data source name | Type | Description of the data | Required? |
|---|---|---|---|
| Splunk Add-on for Asset and Risk Intelligence - Asset | Real-time | Includes the system, network, and user information for each asset | Yes |
| Splunk Add-on for Asset and Risk Intelligence - Software | Real-time | Includes the installed software products for each asset | Yes |
| Splunk Add-on for Asset and Risk Intelligence - Encryption | Batched | Includes the encryption data and encryption status for each asset. You can use the encryption data source for the full disk encryption metric. See Create and manage metrics in Splunk Asset and Risk Intelligence in the Administer Splunk Asset and Risk Intelligence manual. | No |
Add the encryption data source only if you're measuring encryption on Windows assets.
Last modified on 05 August, 2024
| Install the Splunk Add-on for Asset and Risk Intelligence | Data collected by the Splunk Add-on for Asset and Risk Intelligence |
This documentation applies to the following versions of Splunk® Add-on for Asset and Risk Intelligence: 1.0.0
Download manual
Feedback submitted, thanks!