Splunk AWS Quick Start: Deploy Your AWS Splunk Environment In Minutes
If I told you that a fully operational Splunk Enterprise deployment in AWS could be yours in a matter of minutes, would you be interested? Sit down, relax, and I’ll tell you all you need to know to have a Splunk Enterprise deployment ready to index; fully configured with indexer replication and search head clustering in less than an hour.
Late last year, I wrote a deployment guide for Splunk Enterprise on AWS that explains your options when deploying Splunk Enterprise in AWS. Today, it gets better: I’m happy to report that document has been expanded upon, and Splunk has released an official Splunk Enterprise AWS Quick Start.
If you’re not familiar with AWS Quick Start, the underlying …
It’s cloudy in London. Monitoring workloads in the AWS London Region with Splunk.
Hi everyone, Happy New Year (is it too late to be still saying that?) I’m currently sat in Splunk’s London office just behind Paddington train station and to no ones surprise it’s cloudy. Clouds aren’t anything new to London, but just before Christmas, AWS launched its new Europe (London) Region.
Following on from the new region launch, I’m happy to announce the latest update to the Splunk App for AWS. This update (5.0.1) now gives support for the AWS London Region. This means that if you’re monitoring your AWS workloads (be that globally, EMEA-wide or just in the UK) you can now use machine data from the UK region to get Operational Intelligence and real-time visibility. The app is …
Gatwick Airport lands passenger experience & operational efficiency with IoT, analytics and Splunk Cloud.
95% of passengers through security in 5 mins or less.
We’ve all been there, stuck at an airport, flight delayed, watching the departures board, trying to find somewhere to sit down and wanting to set off to where you’re going or just get home. Gatwick Airport, the busiest single runway airport in the world, processing up to 945 flights per day is striving to make this situation a thing of the past. I’m delighted to announce that they are using data from the Internet of Things and Splunk Cloud to improve the passenger experience and enhance operational efficiencies across the airport. Gatwick are using their machine data to deliver historic, real-time and predictive analytics to ensure a faster journey through the …
Cloud, Automation and Continuous Delivery to Headline DevOps Day at AWS re:Invent 2016
Learn all about Splunk at AWS re:Invent 2016.
DevOps, cloud, automation, continuous delivery and integration fans, it is going to be a busy week at AWS re:Invent2016! Splunk will be there, and we invite you to join us for many fun and exciting activities including telling Amazon Alexa to run your Splunk searches.
Whether you are new to DevOps or already continuously releasing in the cloud, come and chat with our experts to learn how Splunk analytics and correlated insights across your continuous delivery(CD) pipeline can help you release faster. We will showcase DevOps integrations including new Real-Time JIRA Service Desk Connector for Splunk, Puppet Enterprise App for Splunk, Splunk App for Jenkins, or using …
Introducing the Security Investigation Guided Online Experience
Are you looking to get started with Splunk for security? Or perhaps looking for how-to guides to help your Tier 1 analysts investigate security alerts?
Lots of our customers are, so we’re here to help.
Introducing the first in a series of guided online experiences that allow you to detect, validate and scope potential threats using Splunk.
Each experience in this series will include a video walk through, a step-by-step guide and an online Splunk instance, pre-loaded with data so you can jump right in and learn how to address security issues with Splunk. No download required. No login required. No need to add data. Just get in there and …
Configuring PingIdentity PingFederate (Ping) Security Assertion Markup Language (SAML) Single Sign On (SSO) with Splunk Cloud
There are now a few blog postings on SAML configurations for Splunk> Cloud. For Okta , Azure and ADFS. Ping is similar in complexity to the Identity Provider (IdP) ADFS, and can be a bit tricky depending on your implementation. The intent of this guide is help you along on your way to integrate Splunk> Cloud with PingFederate.
My role is a Cloud Services Advisory Engineer on the Customer Adoption and Success Team (CAST) within Splunk>. My focus is to assist our customers in their experience with our Cloud service for Splunk>. With our 6.4.x version of Splunk> Cloud, which this posting is about, the configuration for SAML definitely works quite well, but is not the most user friendly …
.conf2015 Highlight Series: City of LA and Splunk Cloud as a SIEM for Award-Winning Cybersecurity Collaboration
Updated June 23, 2016:
We are pleased to announce the City of Los Angeles was recently presented with the City on a Cloud award at the AWS Public Sector Summit in Washington, DC. The City on a Cloud Innovation Challenge recognizes and celebrates local and regional governments in three categories: Best Practices, Partners in Innovation and Dream Big. The City of Los Angeles was selected as the Best Practices winner for its use of innovative, world-class cybersecurity to protect digital assets and deployment of a unique, cloud-based security information and event management (SIEM) solution for the Integrated Security Operations Center (ISOC), to help consolidate, maintain, and analyze security data across the city’s departments.
All of the below was first published…
Retain More Data at Lower Cost with New AWS Storage Volume Types
This is a guest post contributed by David Potes, Partner Solutions Architect at Amazon Web Services
Many of the customers I work with are being asked to retain more of their logging data for longer periods. Some of these customers are being driven by increasing compliance requirements, while others want to mine historical data to analyze their systems. With the recent release of Splunk Enterprise 6.4, you now have the ability to dramatically shrink the size of your indexes to retain data longer at reduced storage sizes. If you’re running Splunk Enterprise on Amazon Elastic Compute Cloud (Amazon EC2), you can also tier your Splunk storage to deliver the right performance, at the right price. Now, by using the …
Welcome to the Hotel Cloud-ifornia
Aside from being a clumsily executed pun, the title does sound a bit ominous – especially if you are familiar with the 1976 Eagles classic (is it just me or is it getting old in here?). Well it should be ominous because checking into the cloud is like checking into a hotel and that is both good and bad.
The good is you’re getting out of your daily grind, turning over all the maintenance to someone else, and getting away from the screaming kids (or hardware alarms for the purposes of our analogy). That’s great!
The bad, however, is you are moving in with strangers, the maintenance people have the keys to your room and you pay by the night (or …
Splunk Enterprise 6.4 – Driving down the cost of big data analytics
Today, I’m excited to introduce Splunk Enterprise Release 6.4 and the latest version of Splunk Cloud. For Splunk Enterprise customers, the biggest news is that you can lower your cold data storage costs by 40-80%.
We know you’re under pressure to retain more data – and for longer – because of security and compliance. There’s also an increasing demand to optimize your business by analyzing historical data. This data is important but less frequently accessed, so now you can choose to reduce its footprint by 60% on average, and up to 80% for some data types.
How? We can now remove a part of the Splunk optimization data (TSIDX) from your original data, letting you trade optimal search performance …