Splunk
Add Splunk Integration
-
Prerequisites
- Sign in to your Splunk instance where you would like to receive notifications.
- Copy the Webhook URL and HEC Token.
-
Enable Splunk Integration
- In the Levo SaaS console, navigate to the Integrations screen as shown below and click on the Splunk tile.
- Configure the Splunk integration following the steps below.
- Select the event types for Changelog Notifications and Vulnerability Notifications that you wish to receive.
- Changelog Event Types:
New Application,New Endpoint,New Sensitive Type. - Vulnerability Notification Types:
Vulnerability Created,Vulnerability Reopened,Vulnerability Closed.
- Changelog Event Types:
- Paste the Webhook URL and HEC Token copied from Splunk.
- Select the event types for Changelog Notifications and Vulnerability Notifications that you wish to receive.
- After configuring your preferences, click Save to activate the Splunk integration.
- In the Levo SaaS console, navigate to the Integrations screen as shown below and click on the Splunk tile.