Duplicate » admin by request

Splunk Integration

Splunk Logo on a dark digital background of white networks.

Ready to get started? Download the step-by-step guide below.

A key selling point to Admin By Request is the valuable Auditlog data we collect. All significant security events, such as Requests for elevated privileges, software installs and uninstalls, and programs run as administrator, are logged in the Admin By Request User Portal further use if necessary.

However, with large enterprises today generating gigabytes of data on a daily basis, it makes sense to provide the ability for our customers to manage this data in a tool of their choice – specifically, one designed for handling copious amounts of data from various different sources.

Our latest integration for Splunk does just that.

What the Integration Offers

This integration is simple: get Auditlog data sent in real-time from your User Portal to your Splunk environment to be indexed, structured, analyzed, and searched for your way.

Never miss a beat with what’s happening in terms of elevated privileges and access in your organization.

Extra visibility, security, and insight without having to find your way around new software? Check ✔

How It Works

This integration uses Splunk’s HTTP Event Collection (HEC) functionality combined with Admin By Request webhooks. Get it going in three simple steps:

  1. Set Up a Splunk HEC Channel – HEC is essentially an HTTP endpoint for your Splunk instance with an authorization token, which allows you to send data into Splunk.
  2. Define Webhook in Admin By Request – With Admin By Request webhooks (also referred to as a web callback or HTTP push API) you can subscribe to events in real-time instead of pulling data out in intervals.
  3. Receive Events – Auditlog events, such as Requests for elevated access, are now sent to the HEC endpoint.

Get started below with the self-service integration manual.

Something Amiss?

If you’ve identified a bug or have a suggestion for this integration, head to the Contact page and let us know.

About the Author:

Picture of S Dodson

S Dodson

With a solid background in computer science and graphic design, my career kicked off writing tech manuals for various companies in both the software and hardware realms. I then side-stepped into marketing and found my passion in cybersecurity. I fuse my tech know-how with design skills to craft engaging blogs that spotlight cybersecurity for businesses. My main focus now is championing the marketing efforts of Admin By Request Zero Trust Platform, where my creative take on cybersecurity helps me create content that's enlightening, entertaining, and impactful. My articles have graced the pages of InfoSec Magazine and top-tier security websites like OPSWAT. I'm on a mission to stress the significance of cybersecurity and to showcase how Admin By Request is shaking things up by making enterprise solutions simple, intuitive, accessible, and affordable to organizations of all sizes, in any industry. My goal is to craft content that informs, intrigues, and motivates action, helping businesses understand the pivotal role of cybersecurity in the digital age we're now living in. Through my work, I aim to close the gap between technology and its real-world applications, keeping our audience well-informed, interested, and ready for the ever-evolving cybersecurity landscape. I bring a blend of extensive experience, deep expertise, recognized authority, and unwavering commitment to trustworthiness in cybersecurity. My goal? To make complex topics relatable and actionable for businesses of all sizes - just like Admin By Request strives to do.

Share this blog to your channels:

Get the Admin By Request Free Plan

Fill out the form with your work email and we’ll send your credentials to your inbox.

Book a Demo

Orange admin by request circle tick logo. » admin by request