1.

If I Want Add/onboard Folder Access Logs From A Windows Machine To Splunk How Can I Add Same?

Answer»

Below are STEPS to add folder access logs to splunk:

  • Enable Object Access Audit through group policy on windows machine on which folder is LOCATED
  • Enable auditing on specific folder for which you want to monitor logs
  • Install splunk universal FORWARDER on windows machine
  • CONFIGURE universal forwarder to send security logs to splunk indexer

Below are steps to add folder access logs to splunk:


Discussion

No Comment Found

Related InterviewSolutions