Integrate RevealX 360 with Splunk
This integration enables you to view network threat detections and behavioral insights from RevealX 360 in Splunk.
CAUTION:
Deprecated Integration
The Splunk integration has been deprecated. Please migrate your integration to the Splunk Enterprise Security SIEM integration.
System requirements
ExtraHop RevealX 360
To configure this integration, you must create Splunk integration credentials and then add them to the configuration of the ExtraHop Add-On for Splunk.
- Your user account must have privileges on RevealX 360 for System and Access Administration.
- Your RevealX 360 system must be connected to an ExtraHop sensor with firmware version 8.8 or later.
- Your RevealX 360 system must be connected to ExtraHop Cloud Services.
Create Splunk integration credentials
The credential is also added to the ExtraHop REST API Credentials page
where you can view the credential status, copy the ID, or delete the
credential.
Install and configure the ExtraHop Add-On for Splunk
Next steps
Export RevealX 360 detections and metrics and view them in Splunk according to the instructions in the ExtraHop Add-On for Splunk Details.
Thank you for your feedback. Can we contact you to ask follow up questions?