Understand the data sources used in Splunk Security Essentials with the Data Onboarding Guides
Use the Data Onboarding Guides as a method to improve standardization in onboarding data. The Data Onboarding Guides page includes a list of the Data Sources that are commonly used in Splunk Security Essentials, along with some of the common products for each. In this list, many of the products have guides that show you how to configure the products in your environment to send the logs required to fire security detections. To view these guides, follow these steps:
- In Splunk Security Essentials, navigate to Data > Data Onboarding Guides.
- Click the data source you are interested in to see more information and the associated guides.
Create security Posture Dashboards | Troubleshoot Splunk Security Essentials |
This documentation applies to the following versions of Splunk® Security Essentials: 3.7.1, 3.8.0, 3.8.1
Feedback submitted, thanks!