Log Management & Splunk Setup
Security add-in for Microsoft 365
With Securosys365 - DKE, you can configure the following Logging integrations:
- Splunk
- Datadog
In this guide, we will follow the setup of the Splunk log integration.
Log in to the Securosys365 - DKE
- Log in to Securosys365 - DKE Cockpit
Log Management Setup
- In the Administration Tab open Securosys365 - DKE: Log Management Settings
Create new Syslog
- Click Create new Syslog.
- In the Splunk integration card, click Install Now
- Enter a name for the Log Management Provider
- Enter the IP Address of the Splunk API
- Enter Splunk Port and Splunk Index
- Provide the Splunk HEC Token
More information in the official Splunk - HTTP Event Collector guide.
- Test Connection
- Save
Enable Splunk Logging
- In the Administration Tab click Settings
- Select the Tab Audit Record Retention
- Enable is AuditLog Database Enabled
- Save all
Need help?
- Contact the support team
- Book a 30-minute demo