Skip to content

Commit d7b70dd

Browse files
prmerger-automator[bot]prmerger-automator[bot]
authored
Merge pull request #274089 from tarTech23/splunk
Update splunk
2 parents f8913a9 + 8c19789 commit d7b70dd

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

articles/defender-for-iot/organizations/integrate-overview.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -116,7 +116,7 @@ Integrate Microsoft Defender for IoT with partner services to view data from acr
116116

117117
|Name |Description |Support scope |Supported by |Learn more |
118118
|---------|---------|---------|---------|---------|
119-
| **Splunk** (cloud) | Send Defender for IoT alerts to Splunk using one of the following methods: <br><br>- Via the [OT Security Add-on for Splunk](https://apps.splunk.com/app/5151), which widens your capacity to ingest and monitor OT assets and provides OT vulnerability management reports that help you comply with and audit for NERC CIP. <br><br>- Via a SIEM that supports Event Hubs, such as Microsoft Sentinel | - OT networks <br>- Cloud-connected or locally managed OT sensors | Microsoft and Splunk |- Splunk documentation on [The OT Security Add-on for Splunk](https://splunk.github.io/ot-security-solution/integrationguide/) and [installing add-ins](https://docs.splunk.com/Documentation/AddOns/released/Overview/Distributedinstall) <br>- [Stream Defender for IoT cloud alerts to a partner SIEM](integrations/send-cloud-data-to-partners.yml) |
119+
| **Splunk** (cloud) | Send Defender for IoT alerts to Splunk using a SIEM that supports Event Hubs, such as Microsoft Sentinel | - OT networks <br>- Cloud-connected or locally managed OT sensors | Microsoft and Splunk |- [Stream Defender for IoT cloud alerts to a partner SIEM](integrations/send-cloud-data-to-partners.yml) |
120120
| **Splunk** (on-premises) | View Defender for IoT data together with Splunk data by configuring your sensor to send syslog files directly to Splunk.| - OT networks <br>- Cloud-connected or locally managed OT sensors | Microsoft | [Forward on-premises OT alert information](how-to-forward-alert-information-to-partners.md) |
121121
|**Splunk** (on-premises, legacy integration) | Send Defender for IoT alerts to Splunk | - OT networks<br>- Locally managed sensors and on-premises management consoles | Microsoft | [Integrate Splunk with Microsoft Defender for IoT](tutorial-splunk.md) |
122122

0 commit comments

Comments
 (0)