icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

We are working on something new...

A Fresh New Splunkbase
We are designing a New Splunkbase to improve search and discoverability of apps. Check out our new and improved features like Categories and Collections. New Splunkbase is currently in preview mode, as it is under active development. We welcome you to navigate New Splunkbase and give us feedback.

Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

Thank You

Downloading Splunk 5.x App for Microsoft Windows
SHA256 checksum (splunk-5x-app-for-microsoft-windows_502.tgz) 52359616bb2380ced2ae3802b6418df8995bd58202a0faef429081e38ba3d9ff SHA256 checksum (splunk-5x-app-for-microsoft-windows_501.tgz) cda9fe9fbb6eb55374d0e197e953ee7283bdbbcbaa352b99306f86880f39966a SHA256 checksum (splunk-5x-app-for-microsoft-windows_500.tgz) 9f73d79eda37879097aad29032c7e9f0a16d19722d88b476c210b7b94d3a3593 SHA256 checksum (splunk-5x-app-for-microsoft-windows_452.tgz) 2842774c5c7270a9cdc463f3081e2fb9d4dc18ef39e2d01ab34df506e478dfc2 SHA256 checksum (splunk-5x-app-for-microsoft-windows_451.tgz) 3d3a36f5a63682a55bf72b60322c65c014501fc4b500906f88caca2e6cbe79ab SHA256 checksum (splunk-5x-app-for-microsoft-windows_45.tgz) 29ca499bd92034eb09d51e1a65271a3a59f5758de76e5d88d4edb012dedda786 SHA256 checksum (splunk-5x-app-for-microsoft-windows_421.tgz) 367dde6fcf72df4e5ba4ae2f6cc414fcb13f0911948d9325b426915392528648 SHA256 checksum (splunk-5x-app-for-microsoft-windows_420.tgz) 6c9b808552b484d22739b8ad468674dd749ed6e9701414488ffee3b4239bac48 SHA256 checksum (splunk-5x-app-for-microsoft-windows_414.tgz) ff031474c326c22cd09af630cbcaada0737fc2ca23ae3d588baee46b6c1e50de SHA256 checksum (splunk-5x-app-for-microsoft-windows_413.tgz) ce181b9ab316bfd747fa21481b5858dde9555f25099dfd374a1437f4ce2cb42e SHA256 checksum (splunk-5x-app-for-microsoft-windows_412.tgz) 33ccda730163e95998d0cd67e2089f86955c08935e5dc876ca53ad34d007ed51 SHA256 checksum (splunk-5x-app-for-microsoft-windows_41.tgz) cd7e04ef6031e317a6786561fa7a33e5553fd7f25379d05ff28b00c7576bcef0 SHA256 checksum (splunk-5x-app-for-microsoft-windows_4010.tgz) 83d7380f5059ee8c8ee777dd2c50b34ffacbc94179229ed0277571e0b667ac22 SHA256 checksum (splunk-5x-app-for-microsoft-windows_409.tgz) f1f7a15f0861e8121eca0e09ecce507feaded89d3949b1fad3c7b27831e8dc30 SHA256 checksum (splunk-5x-app-for-microsoft-windows_20.tgz) 326b69d9e4d92ee87ec5a15d92a7b5b770e376fe8855a5a5d8c6c95400a7fb53 SHA256 checksum (splunk-5x-app-for-microsoft-windows_20new.tgz) 865c5de2caf28b57539becaad70e29e962dfa763c986534c6589fa4ee9ed2b1c SHA256 checksum (splunk-5x-app-for-microsoft-windows_20old.tgz) 26148ddd2ba200ad1b5cac2b5e66afa509e9ee8bee3df8ae0cdd08f1399dc5ee
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate


Splunk 5.x App for Microsoft Windows

Splunk Labs
This app has been archived. Learn more about app archiving.
This app is NOT supported by Splunk. Please read about what that means for you here.
On April 8, 2019, this app has been deprecated and reached its End of Life on July 7, 2019. For more information about the end of availability and support for this app, see https://www.splunk.com/blog/2019/03/18/end-of-availability-splunk-built-apps-and-add-ons.html?April.

The Splunk App for Microsoft Windows Active Directory ONLY works on Splunk 5.x systems. For similar functionality on Splunk 6 and later editions, please use the Splunk App for Windows Infrastructure: http://apps.splunk.com/app/1680/

The Splunk App for Microsoft Windows Active Directory gathers performance metrics, log files, and Powershell data from the domain controllers and DNS servers of a Microsoft Active Directory forest and its underlying infrastructure. It presents the data in a series of operational dashboards covering IT Operations, DNS Debugging, Security and Audit, and Change Management functionalities.
The Splunk App for Microsoft Windows ONLY works on Splunk 5.x systems. For similar functionality on Splunk 6 and later editions, please use the Splunk App for Windows Infrastructure: http://apps.splunk.com/app/1680/

The Splunk App for Windows provides examples of pre-built data inputs, searches, reports, alerts, and dashboards for Windows server and desktop management. You can monitor, manage, and troubleshoot Windows operating systems from one place. Included are scripted inputs for CPU, disk, I/O, memory, log, configuration, and user data, plus a web-based setup UI for indexing Windows Events Logs.

With the Splunk App for Windows you can:

  • Monitor CPU, memory, network and disk utilization across one or more systems
  • Monitor Windows Update successful and failed packages, application installations and application crashes on hosts across your environment
  • Monitor all Windows event logs across your environment, including Application, System and Security

What's new:

  • New and improved operational health dashboards designed for large scale enterprise distributed environments across multiple hosts
  • New customizable performance dashboards views to enable reporting by any counter that is being collected
  • New interactive views enabling advanced filtering capabilities including wildcarding on host names
  • App interoperability with non-Windows search head
  • Support for the Windows Technology-Addon (TA)

App Requirements

The Splunk App for Windows supports Windows Server 2003, 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Vista, Windows 7 and Windows 8.

Splunk Requirements

All instances of Splunk in a Splunk App for Windows deployment must run version 4.3.5 or later.

Microsoft Certification

As a Microsoft Gold Certified Partner Splunk is committed to delivering innovative solutions and technologies that enable organizations to be operationally aware of the Windows IT infrastructure they manage. Splunk provides the tools to manage the Windows foundation for customer success.
Microsoft and Windows are registered trademarks of Microsoft Corporation in the United States and other countries.

Release Notes

Version 5.0.2
Oct. 12, 2013

This App has been superseded by the new Windows Infrastructure app for use with Splunk 6.0. Please download the new application instead - http://apps.splunk.com/app/1680/

Version 5.0.1
July 23, 2013

• On pooled search heads, the app now respects search schedules and does not populate the dispatch directory with extraneous search artifacts.
• The app has been updated to conform to application taxonomy requirements.

Version 5.0.0
April 4, 2013

Completely refactored version of the App for monitoring of Windows infrastructure in enterprise environments.

Version 4.5.2
May 22, 2012

Fixed bug with persistent warning window about unsupported configuration on Unix platforms.

Version 4.5.1
March 10, 2012

Fixed bug with Windows app lookups being unavailable to other Splunk applications.

Version 4.5
Jan. 18, 2012

Here's what's new in the latest version of the Splunk App for Windows:

Bug fixes include:
You are no longer sent to a "404 Not Found" page when you click on the set-up link that the app presents after it is initially installed.
The system resources of the local Windows host are now properly monitored by default after installation.
On the dashboard that displays indexed data, the "Total Count" now properly appears on the "Last 15 minutes" and "Last 24 hours" subpanels.
Configuration defaults are now properly added for Registry monitoring inputs.

Version 4.2.1
Jan. 6, 2012

contains bug fix for migrating regmon filters from Splunk 4.2 to 4.3

Version 4.2.0
March 15, 2011

Updated to be compatible with Splunk 4.2, to work better with newer Windows operating systems (such as Windows 2008 R2) as well as other miscellaneous improvements.

Version 4.1.4
July 20, 2010
Version 4.1.3
June 16, 2010
Version 4.1.2
May 21, 2010
Version 4.1
April 5, 2010
Version 4.0.10
March 18, 2010
Version 4.0.9
Feb. 26, 2010
Version 2.0
July 20, 2009
Version 2.0new
July 20, 2009
Version 2.0old
July 20, 2009

Subscribe Share

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.