Skip to main content

 

Splunk Lantern

Splunk Intelligence Management (TruSTAR) - Unified App for ES: Enrich and Submit Notable Events

In this video, we explain how you can take advantage of the enrich and submit actions available with the Splunk Intelligence Management Unified app and Splunk Enterprise Security. Learn also how a Notable Event urgency can be automatically updated based on your intelligence data and how to add shortcuts for these actions into your Notable Events.  

Click the "+" below to expand the configuration path and jump to the section you need. Each step is explained in a short video:

Splunk Intelligence Management (TruSTAR) - Setting up the Unified App for Splunk ES
Pages: 5