Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.

How to integrate Saivynt logs, audit events inot Splunk platform

Community_User
Saviynt Employee
Saviynt Employee
Originally posted on March 24 2022 at 07:13 UTC

Hi Team,


We are having a requirement to integrate the logs & audits to Splunk. May I know if it is supported in any version of Saviynt?


Thanks & Regards,

Selvaraj N

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.
5 REPLIES 5

Community_User
Saviynt Employee
Saviynt Employee
Originally posted on March 24 2022 at 08:25 UTC

Hi Selva,


Integrating with SIEM systems like Splunk is explained in the documentation below :
https://saviynt.freshdesk.com/support/solutions/articles/43000532293-saviynt-siem-integration

Regards,

Sahaj

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Community_User
Saviynt Employee
Saviynt Employee
Originally posted on March 24 2022 at 09:19 UTC

Hi Sahaj,


In this document, it has been mentioned like we can integrate with out-of-the-box event connector. What is this connector? Where can I find more information about this connector?


Thanks & Regards,

Selvaraj N

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Belwyn
Saviynt Employee
Saviynt Employee

Hi Selvaraj, 

You can find the details for Splunk integration here on our updated product documentation. 

https://saviynt.freshdesk.com/en/support/solutions/articles/43000666823-splunk-integration-guide

Hope this helps.

Thanks & Regards, 
Belwyn.

igorvt77
New Contributor II
New Contributor II

While this is a nice feature for capturing the audit logs, there is no ability to capture the application logs.  Are there any plans to add this option into the Saviynt product as this would tremendously increase the ability to debug / troubleshoot issues with jobs/tasks along with providing better options for alerting for failed jobs / tasks etc in Saviynt.

sagars
Saviynt Employee
Saviynt Employee

Hello @igorvt77 ,

We do not push Application logs as part of SIEM Integration. We do have job monitoring and Saviynt platform health check controls which helps in identifying and tracking various platform health issues, if its not available in your platform then please work with CPS team in enabling them.

Regards,

Sagar Srikantaiah