About the Splunk Add-on for Amazon Web Services¶
Version | 7.10.0 |
Supported vendor products | Amazon Web Services CloudTrail, CloudWatch, CloudWatch Logs, Config, Config Rules, EventBridge (CloudWatch API), CloudTrail Lake, Inspector, Kinesis, S3, VPC Flow Log, Transit Gateway Flow Logs, Billing Cost and Usage Report, Amazon Security Lake, SQS, SNS, AWS Identity and Access Management (IAM) Access Analyzer, and AWS Security Hub findings events |
CIM-compliant vendor products | AWS CloudTrail, AWS CloudWatch, AWS Config and AWS Config Rules, Amazon Inspector, Amazon Virtual Private Cloud, AWS Transit Gateway, AWS Security Hub findings events |
Add-on has a web UI | Yes. This add-on contains views for configuration. |
The Splunk Add-on for Amazon Web Services (AWS) allows you to collect a variety of data from AWS environments using either a push-based method with Amazon Kinesis Firehose or a pull-based method through AWS APIs. It supports the collection of performance metrics, billing and usage information, raw or JSON-formatted data, as well as IT operations and security-related data from various AWS services. This add-on enables centralized monitoring and analysis of AWS infrastructure and services within Splunk.
This add-on provides modular inputs and CIM-compatible knowledge to use with other Splunk apps, such as the Splunk App for AWS, Splunk Enterprise Security, and Splunk IT Service Intelligence.
See Use cases for the Splunk Add-on for AWS for more information.
Download the Splunk Add-on for Amazon Web Services from Splunkbase. See Deploy the Splunk Add-on for AWS for information about installing and configuring this add-on.
See Release notes for the Splunk Add-on for AWS for a summary of new features, fixed issues, and known issues.
See Questions related to Splunk Add-on for Amazon Web Services on the Splunk Community page.