This Add-On allows pulling data from Elasticsearch to Splunk. It will extract all indice/s data for a specific date range.
You must provide the following parameters to create an input:
Optional parameters:
- Verify Certs
- Cert CA Path
- Custom Source Type
This update introduces new enhancements in order to ensure secure network communication within cloud environments.
Enforces stricter security measures to protect network communications. Users are no longer allowed to set the verify_certs to False. Parameter verify_certs is True by default for all external network calls. This change ensures that TLS certificate verification is enabled, maintaining a secure and trusted connection to external services.
The add-on now validates and restricts the usage of http URLs. This enhancement ensures that all network calls utilize the secure https protocol, mitigating potential security risks.
Elasticsearch libraries updated.
Custom Source type added
Thanks to mshirley for the comments towards improving this App.
New features:
- Proxy settings.
- Enable/Disable the use of SSL protocol,
- Verify CA Certs
- Possibility to use your own certificates.
Enjoy!
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.