Splunk for Managing Microsoft Solutions

Today's Windows^® IT infrastructures are more complex than ever. Virtualization and cloud computing add to this complexity, especially when there are outages or performance issues. IT operations management teams and administrators waste valuable time using multiple tools trying to track down the data they need to ensure high performance and availability.

Splunk Enterprise provides a better approach. It collects and indexes all the data generated by your Windows environments and other Microsoft^® technologies in one place in real time. Splunk software turns your silos of data into actionable information and immediate operational insights.

Manage, secure, audit and analyze all your Windows and Microsoft technology environments from one place in real-time:

Splunk and Microsoft

As a Microsoft Gold Certified Partner Splunk is committed to delivering innovative solutions and technologies that enable organizations to be operationally aware of the Windows IT infrastructure they manage. Splunk provides the tools to manage the Microsoft foundation for customer success.

Splunk is listed on the Microsoft Pinpoint Marketplace.

Splunk on Windows

Troubleshoot problems and investigate security incidents in minutes (not hours, or days) using Splunk for Windows. Monitor your end-to-end infrastructure to avoid service degradation or outages. And gain real-time visibility into customer experience, transactions and behavior.

Monitor all your Windows data, including:

• Windows Event Logs: Monitor logs generated by the Windows Event Log service on any event log channel that is available on any Windows machine. Collect logs on the local machine, or gather log data remotely using the Splunk Universal Forwarder or WMI.
• Performance monitoring: Collect performance data on Windows machines with Splunk and then alert or report on that data. Any performance counter that is available in Performance Monitor is also available to Splunk. You can monitor performance locally or remotely through WMI or a universal forwarder.
• Remote monitoring over WMI: Use WMI to access event log and performance data on remote machines with Splunk.
• Registry monitoring: Monitor changes to the local Windows Registry using Splunk's built-in registry monitoring capabilities. You can use a universal forwarder to gather registry data from remote machines.
• Active Directory monitoring: Audit any changes to the Active Directory - including changes to user, group, machine, and group policy objects.

Click the link below to download Splunk on Windows.

Do More with Apps

Use Splunk Apps to do more with Splunk in your Windows and Microsoft Technology environment.

Splunk App for Windows

The Splunk App for Windows provides pre-built data inputs, searches, reports, alerts and dashboards for Windows server and desktop management. Download

Splunk App for Unix and Linux

The Splunk for Unix and Linux provides pre-built data inputs, searches, reports, alerts and dashboards for Linux and Unix management. Download

Splunk App for Microsoft Exchange

The Splunk App for Microsoft Exchange gathers performance metrics from all aspects of a Microsoft Exchange messaging system and its underlying infrastructure. Download

Splunk App for Enterprise Security

The Splunk App for Enterprise Security covers the most prevalent use cases for data correlation and organizing security relevant data to provide continuous monitoring and situational awareness. Download

Splunk App for VMware (Beta)

The Splunk for VMware solution collects and harnesses data from the virtualization layer to enable true end-to-end visibility in virtualized environments. Download

Splunk App for Web Intelligence

The Splunk App for Web Intelligence provides insight into your web traffic for both IT and business. Download