-
Notifications
You must be signed in to change notification settings - Fork 422
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Splunk] Create single Splunk package #933
Comments
Pinging @elastic/security-external-integrations (Team:Security-External Integrations) |
Hi! We just realized that we haven't looked into this issue in a while. We're sorry! We're labeling this issue as |
In order to lower switching costs and reduce time to value for existing Splunk users, we shipped our experimental Splunk input in 7.12 across four packages - Apache, AWS Cloudtrail, NGINX and Zeek. This approach isn't scalable, with poor discoverability for users. To improve the workflow, a single Splunk package is needed to provide users with a 'one stop shop' to configure and manage data ingestion from Splunk.
UX needs to be defined, but at a high-level, the Splunk integration will include a toggle for all integrations the Splunk input can support:
Dependencies
The text was updated successfully, but these errors were encountered: