This documentation supports the on-premises releases of StreamWeaver upto version 3.16. For the SaaS releases, see the BMC Helix Intelligent Integrations documentation.

Configure: Splunk Enterprise (Destination)

CONFIGURE EACH OF THE DISTRIBUTORS (DESTINATION MEDIATORS)

  1. Index Name : the name of the Index in Splunk - this needs to be created in advance in Splunk 
  2. Splunk Source Type : this is the value that gets assigned to the Source Type in splunk used for filtering.
  3. Include Raw Json : Toggle to put the Raw Json in the payload sent to splunk.
  4. Toggle on for Log Request/Responses

  5. Batching control settings - see Batching-Control

    Select "Create Distributors"

Click here to return to Step-by-Step Configuration Guide



Screen Shot 2021-05-05 at 12.28.01 PM.png

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*