Splunk® Add-on for Windows

Deploy and Use the Splunk Add-on for Windows

Download manual as PDF

Download topic as PDF

Neither the Splunk Add-on for Windows DNS version 1.0.1 nor the Splunk Add-on for Windows Active Directory version 1.0.0 is supported when installed alongside the Splunk Add-on for Windows version 6.0.0. The Splunk Add-on for Windows version 6.0.0 includes the Splunk Add-on for Windows DNS and the Splunk Add-on for Microsoft Active Directory.

Splunk Add-on for Windows

Version 6.0.0
Vendor Products Windows 8

Windows 8.1
Windows 10
Windows Server 2008 R2
Windows Server 2012/2012 R2
Windows Server 2016
Microsoft Active Directory
Microsoft Windows DNS Server

Add-on has a web UI No. This add-on does not contain any views.

The Splunk Add-on for Windows allows a Splunk software administrator to collect:

  • CPU, disk, I/O, memory, log, configuration, and user data with data inputs.
  • Active Directory and Domain Name Server debug logs from Windows hosts that act as domain controllers for a supported version of a Windows Server. You must configure Active Directory audit policy since Active Directory does not log certain events by default.
  • Domain Name Server debug logs from Windows hosts that run a Windows DNS Server. Windows DNS Server does not log certain events by default, and you must enable debug logging.

This add-on provides the inputs and CIM-compatible knowledge to use with other Splunk apps, such as Splunk Enterprise Security, the Splunk App for PCI Compliance, the Splunk ITSI Operating System Module, the Splunk App for Windows Infrastructure, and the Splunk App for Microsoft Exchange.

Download the Splunk Add-on for Windows from Splunkbase.

For a summary of new features, fixed issues, and known issues, see Release Notes for the Splunk Add-on for Windows.

For information about installing and configuring the Splunk Add-on for Windows, see Installation and configuration overview for the Splunk Add-on for Windows.

See Questions related to Splunk Add-on for Windows on Splunk Answers.

  NEXT
Source types for the Splunk Add-on for Windows

This documentation applies to the following versions of Splunk® Add-on for Windows: 6.0.0


Was this documentation topic helpful?

Enter your email address, and someone from the documentation team will respond to you:

Please provide your comments here. Ask a question or make a suggestion.

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters