Are you a member of CheckMates?
×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Dome9 now supports HTTP based integration with Splunk, allowing to send JSON-formatted alerts produced by the Compliance Engine to easily to a Splunk HTTP Events Collector.
Splunk is a data collection, monitoring, and analysis system. Many Dome9 customers use it as their Security information and event management (SIEM) solution.
The new integration is very easy to set. On the Dome9 the integration requires setting up a "notification policy" that includes HTTP connector, and selecting the "Splunk - JSON" format.
On Splunk the integration requires setting up an "HTTP Event Collector".
A user guide for the integration is available in the Dome9 help guide.
For more on Dome9 Alerts and Notifications see here.
Information on the Splunk HTTP Event Collector is available in Splunk Dev.
