Splunk® Supported Add-ons

Splunk Add-on for RSA SecurID

Set up the RSA Authentication Manager to produce syslog

Refer to the section Configure the Remote Syslog Host for Real Time Log Monitoring in your RSA Authentication Manager admin guide. Follow the guide to configure your Authentication Manager server to send logs via UDP to a remote syslog server. You can only configure the IP or hostname of the remote server, but not the port, which is set to 514 by default.

For production deployments, send your logs to a Splunk Connect for Syslog instance, or to a Developer or Test Splunk platform instance that is configured to listen on port 514 .

Last modified on 25 July, 2022
Install the Splunk Add-on for RSA SecurID   Configure inputs for the Splunk Add-on for RSA SecurID

This documentation applies to the following versions of Splunk® Supported Add-ons: released


Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters