icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

We are working on something new...

A Fresh New Splunkbase
We are designing a New Splunkbase to improve search and discoverability of apps. Check out our new and improved features like Categories and Collections. New Splunkbase is currently in preview mode, as it is under active development. We welcome you to navigate New Splunkbase and give us feedback.

Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

Thank You

Downloading Splunk 5.x App for Microsoft Windows
SHA256 checksum (splunk-5x-app-for-microsoft-windows_502.tgz) cf8d5486eb5a718d0e219b630daee95a04c42cb084dc524c304033433e48cf07 SHA256 checksum (splunk-5x-app-for-microsoft-windows_501.tgz) d16e855df0f3bb2f6c6cba1f1018c19488813fbcf03bd653c96d8a842435fcf3 SHA256 checksum (splunk-5x-app-for-microsoft-windows_500.tgz) 3260d2bac0285688dc5901330444f3ffb0a24eb9cebcb7d18ede372ea9b81223 SHA256 checksum (splunk-5x-app-for-microsoft-windows_452.tgz) 542399523585f89eb18b65ae42ebf25799e5d12f2a809bf7bdd62a3c8611d700 SHA256 checksum (splunk-5x-app-for-microsoft-windows_451.tgz) a78bb20227ae11e4763f22a4bb48a3b1f3514e5ef913d5b0e6c817fc37c8cfbb SHA256 checksum (splunk-5x-app-for-microsoft-windows_45.tgz) 9eae12679687c818ab7c5aad169f892eb140dbc80358911815a6b223cfad514d SHA256 checksum (splunk-5x-app-for-microsoft-windows_421.tgz) 9551b15077e1a8c9eda8a6cc4468e975aeb475bb46d0595a533f9e0fbc45d42b SHA256 checksum (splunk-5x-app-for-microsoft-windows_420.tgz) 97c89199194f6f99daeb901f3687ee6938afd1de5ee9de011c56af982051220b SHA256 checksum (splunk-5x-app-for-microsoft-windows_414.tgz) 52c98863a1c1a379b3c29a2ae60c1af469d6ebcd3ce591f1d9437131194d9fde SHA256 checksum (splunk-5x-app-for-microsoft-windows_413.tgz) 84b0c4f06f480a8a0c50f9fae85caa7c599a98633d9c16c6c1a102a08ed2da63 SHA256 checksum (splunk-5x-app-for-microsoft-windows_412.tgz) 51ddd26b2516dd275fb2457a9c2a96c31f585cd2a76e6ea11783ab10d8b0e081 SHA256 checksum (splunk-5x-app-for-microsoft-windows_41.tgz) 4ef16b153c5ef684067a73a12ada36a8cd8bf581288181553777bb60130d0bec SHA256 checksum (splunk-5x-app-for-microsoft-windows_4010.tgz) b25ef61c2d5a55f3d70af6a9ece26f26b259d7885443b5116f3031895b122592 SHA256 checksum (splunk-5x-app-for-microsoft-windows_409.tgz) 9868dde546c0a2d4d7039cca87ccdcb549eb85059433d3097c5b1663f7f4a484 SHA256 checksum (splunk-5x-app-for-microsoft-windows_20.tgz) 8e7c996a8c4d44dbbc67cd68ecce08e30fd5c78e9c34832ac8306f6da6ade409 SHA256 checksum (splunk-5x-app-for-microsoft-windows_20new.tgz) b3b99ac1056de7be774b41b3b7ec4ffcc1605ad2ae279a733b7abfa272ccb128 SHA256 checksum (splunk-5x-app-for-microsoft-windows_20old.tgz) b3b99ac1056de7be774b41b3b7ec4ffcc1605ad2ae279a733b7abfa272ccb128
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate


Splunk 5.x App for Microsoft Windows

Splunk Labs
This app has been archived. Learn more about app archiving.
This app is NOT supported by Splunk. Please read about what that means for you here.
On April 8, 2019, this app has been deprecated and reached its End of Life on July 7, 2019. For more information about the end of availability and support for this app, see https://www.splunk.com/blog/2019/03/18/end-of-availability-splunk-built-apps-and-add-ons.html?April.

The Splunk App for Microsoft Windows Active Directory ONLY works on Splunk 5.x systems. For similar functionality on Splunk 6 and later editions, please use the Splunk App for Windows Infrastructure: http://apps.splunk.com/app/1680/

The Splunk App for Microsoft Windows Active Directory gathers performance metrics, log files, and Powershell data from the domain controllers and DNS servers of a Microsoft Active Directory forest and its underlying infrastructure. It presents the data in a series of operational dashboards covering IT Operations, DNS Debugging, Security and Audit, and Change Management functionalities.
The Splunk App for Microsoft Windows ONLY works on Splunk 5.x systems. For similar functionality on Splunk 6 and later editions, please use the Splunk App for Windows Infrastructure: http://apps.splunk.com/app/1680/

The Splunk App for Windows provides examples of pre-built data inputs, searches, reports, alerts, and dashboards for Windows server and desktop management. You can monitor, manage, and troubleshoot Windows operating systems from one place. Included are scripted inputs for CPU, disk, I/O, memory, log, configuration, and user data, plus a web-based setup UI for indexing Windows Events Logs.

With the Splunk App for Windows you can:

  • Monitor CPU, memory, network and disk utilization across one or more systems
  • Monitor Windows Update successful and failed packages, application installations and application crashes on hosts across your environment
  • Monitor all Windows event logs across your environment, including Application, System and Security

What's new:

  • New and improved operational health dashboards designed for large scale enterprise distributed environments across multiple hosts
  • New customizable performance dashboards views to enable reporting by any counter that is being collected
  • New interactive views enabling advanced filtering capabilities including wildcarding on host names
  • App interoperability with non-Windows search head
  • Support for the Windows Technology-Addon (TA)

App Requirements

The Splunk App for Windows supports Windows Server 2003, 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Vista, Windows 7 and Windows 8.

Splunk Requirements

All instances of Splunk in a Splunk App for Windows deployment must run version 4.3.5 or later.

Microsoft Certification

As a Microsoft Gold Certified Partner Splunk is committed to delivering innovative solutions and technologies that enable organizations to be operationally aware of the Windows IT infrastructure they manage. Splunk provides the tools to manage the Windows foundation for customer success.
Microsoft and Windows are registered trademarks of Microsoft Corporation in the United States and other countries.

Release Notes

Version 5.0.2
Oct. 12, 2013

This App has been superseded by the new Windows Infrastructure app for use with Splunk 6.0. Please download the new application instead - http://apps.splunk.com/app/1680/

Version 5.0.1
July 23, 2013

• On pooled search heads, the app now respects search schedules and does not populate the dispatch directory with extraneous search artifacts.
• The app has been updated to conform to application taxonomy requirements.

Version 5.0.0
April 4, 2013

Completely refactored version of the App for monitoring of Windows infrastructure in enterprise environments.

Version 4.5.2
May 22, 2012

Fixed bug with persistent warning window about unsupported configuration on Unix platforms.

Version 4.5.1
March 10, 2012

Fixed bug with Windows app lookups being unavailable to other Splunk applications.

Version 4.5
Jan. 18, 2012

Here's what's new in the latest version of the Splunk App for Windows:

Bug fixes include:
You are no longer sent to a "404 Not Found" page when you click on the set-up link that the app presents after it is initially installed.
The system resources of the local Windows host are now properly monitored by default after installation.
On the dashboard that displays indexed data, the "Total Count" now properly appears on the "Last 15 minutes" and "Last 24 hours" subpanels.
Configuration defaults are now properly added for Registry monitoring inputs.

Version 4.2.1
Jan. 6, 2012

contains bug fix for migrating regmon filters from Splunk 4.2 to 4.3

Version 4.2.0
March 15, 2011

Updated to be compatible with Splunk 4.2, to work better with newer Windows operating systems (such as Windows 2008 R2) as well as other miscellaneous improvements.

Version 4.1.4
July 20, 2010
Version 4.1.3
June 16, 2010
Version 4.1.2
May 21, 2010
Version 4.1
April 5, 2010
Version 4.0.10
March 18, 2010
Version 4.0.9
Feb. 26, 2010
Version 2.0
July 20, 2009
Version 2.0new
July 20, 2009
Version 2.0old
July 20, 2009

Subscribe Share

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.