Hi Beacon Community!
We are thrilled to introduce the Beacon add-on for Splunk, a powerful integration that connects Beacon and Splunk. With the Beacon add-on for Splunk, Beacon meets you where you work; alerting you to potential threats in your Atlassian cloud environment.
Check out the add-on here!
Setting up the integration is as simple as following these steps:
Username: Enter the email linked to the API token.
API Token: Retrieve your API token from the Atlassian account page.
API token: Select the API token configuration you've just set up.
Beacon workspace URL: Enter your Beacon URL in this format: https://beacon-domain/w/your-workspace/alerts
Interval: Set the interval for the scripted input to run (in seconds).
Index: Specify the index for the alert data.
Source (optional): Add a custom source tag for the alert data.
Check the "input health" tab to ensure it's successfully retrieved the latest alert.
For a comprehensive guide, watch this step-by-step video tutorial!
Upon configuration, the add-on continuously indexes the for new Beacon alerts in near real-time! Upon setup, the add-on will immediately index the most recent alert from Beacon. Subsequently, it will continuously monitor for new alerts and index them in near real-time.
For a seamless installation experience, refer to the appropriate installation guide:
Enterprise single server installation: Refer to the Enterprise Single Server Installation guide.
Enterprise distributed installation: Refer to the Enterprise Distributed Installation guide for installation on Search Head or Heavy Forwarder instances.
Splunk cloud installation: Refer to the Splunk Cloud Installation for installation on Inputs Data Manager or Heavy Forwarder instances.
Remember to restart your Splunk instance after installation to ensure the add-on functions correctly.
Need assistance or want to share your feedback? Feel free to comment below or reach out to us through the following channels:
Support email: beacon-team@atlassian.com
Intercom messaging platform: Connect with us via the blue chat bubble within the Beacon workspace.
Stay vigilant, stay secure!
Cheers,
Beacon Team
 
 Audrey Garcia
0 comments