Do you have a guideline on how to perform the integration with Splunk Enterprise Security?

In ES it is expected that all the indexes intended to be searched by ES to be added to the list of indexes searched by default
To make it work, please add index=flowintegrator to the list of indexes searched by default in the role of the user you are logged in
Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.