Expand my Community achievements bar.

SOLVED

AEP - Splunk Integration for Audit Logs

Avatar

Community Advisor
Community Advisor
3/28/23 7:22:37 AM

Hi 

We are trying to Automate AEP Audit Logging to Splunk. We are exploring this option now https://experienceleague.adobe.com/docs/experience-platform/tags/extensions/server/splunk/overview.h... . Looking for a best approach, if anyone have idea / experience on this please suggest.

Views

909

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Level 5
Level 5
3/28/23 8:18:53 AM

Hi Ganthimathi,

Need to think about the below for the automation with Splunk:

  • The frequency of the logs you want to send. Do you want to send them in real-time, or do you want to send them in batches?
  • The format of the logs you want to send. Do you want to send them in JSON, XML, or another format?
  • The Splunk server you want to send the logs to. Do you want to send them to a specific Splunk server, or do you want to send them to a load balancer that will distribute them to multiple Splunk servers?

Once you have considered these factors, you can choose the best approach for your needs. Here are some of the options available to you:

  • You can use the AEP Audit Logging API to send the logs directly to Splunk.
  • You can use a third-party tool like Logmatic or Splunk Enterprise Manager to send the logs to Splunk.
  • You can use a cloud-based service like Splunk Cloud to send the logs to Splunk.

The best approach for you will depend on your specific needs and requirements. So, not able to give a straightforward answer as it all depends :).
Hope it helps.

Thanks

Madhan

View solution in original post

Views

898

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
1 Reply

Avatar

Correct answer by
Level 5
Level 5
3/28/23 8:18:53 AM

Hi Ganthimathi,

Need to think about the below for the automation with Splunk:

  • The frequency of the logs you want to send. Do you want to send them in real-time, or do you want to send them in batches?
  • The format of the logs you want to send. Do you want to send them in JSON, XML, or another format?
  • The Splunk server you want to send the logs to. Do you want to send them to a specific Splunk server, or do you want to send them to a load balancer that will distribute them to multiple Splunk servers?

Once you have considered these factors, you can choose the best approach for your needs. Here are some of the options available to you:

  • You can use the AEP Audit Logging API to send the logs directly to Splunk.
  • You can use a third-party tool like Logmatic or Splunk Enterprise Manager to send the logs to Splunk.
  • You can use a cloud-based service like Splunk Cloud to send the logs to Splunk.

The best approach for you will depend on your specific needs and requirements. So, not able to give a straightforward answer as it all depends :).
Hope it helps.

Thanks

Madhan

Views

899

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
Related Conversations
How to add a field that can generate unique value for each record using Query service Solved

Views

60

Likes

0

Replies

1
Can I use calculated field in dataflow to check for future date within array and update it to current date?

Views

35

Likes

0

Replies

0
AEP data science module , is it possible to build you own models in AEP ?

Views

76

Likes

0

Replies

1
AEP Shopify Datasets - There is no date time column in your selected source

Views

124

Likes

0

Replies

3
SSH Tunnel connection into AEP

Views

56

Likes

0

Replies

1