Is there a way to export audit logs to splunk via HEC? #45291
Unanswered
jelkhouri-splunk
asked this question in
Q&A
Replies: 1 comment
-
The only Teleport-supported method of exporting audit logs at the moment is to use the I presume HEC means HTTP Event Collector? I believe we do have a number of users who are using a universal forwarder to send logs on from Fluentd to Splunk-hosted HTTP event collectors. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I see in the docs that you can capture audit logs via a UF or via fluentd. Curious if there is a way to forward logs to Splunk Cloud via HEC?
Beta Was this translation helpful? Give feedback.
All reactions