What's New in Splunk 4.1
Splunk 4.1 is our newest release and adds the ability to search, report and create dashboards on live streaming data. Traditional technologies direct users down two separate paths: either data warehouses for big data historical analysis, or real-time monitoring. This results in forced trade-offs due to fundamentally different technology architectures. Splunk 4.1 now uniquely combines the ability to search, monitor and analyze both streaming data and terabytes of historical data, all from the same interface.
Splunk 4.1 also gives you the ability to schedule PDF report delivery, create workflows directly from events or fields in results, automatically drill down from charts or graphs, integrate to enterprise single sign-on architectures and much more.
Learn more about Splunk 4.1 below. Or download Splunk 4.1 now for free.
Real-time Search
Visibility Across Your IT Universe
Splunk 4.1 brings the full power of search, reports and dashboards to live streaming IT data. In the Search user interface you can now choose from a new time range option called 'Real-time Search' to search on live data before being indexed – delivering a true real-time view. Use familiar boolean operators to limit, widen or define your search, and utilize the Splunk search language for powerful statistical reporting commands to update transaction counts, calculate metrics and even look for specific conditions within a rolling time window.
Live Dashboards and Views
You can create live dashboards in a few clicks, which integrate multiple charts and views of your real-time data. See incidents and attacks as they occur, monitor application SLAs in real time, correlate and analyze events on streaming data and track live transactions and online activity. Splunk 4.1 now provides the ability to create dashboards that combine live and historical data.
Scale To All Your Streaming Data Sources
Splunk 4.1 uniquely combines the ability to search, monitor and analyze both live streaming data and terabytes of historical data, all from the same interface. Splunk 4.1 also adds an innovative, patent-pending implementation of real-time search using a MapReduce-based approach, which delivers extreme scalability and enables the new real-time capabilities to scale linearly across commodity servers.
Single Sign-on
Integrate to Enterprise Security Architectures
Splunk 4.1 Integrates with enterprise single sign-on solutions for transparent authentication of third-party credentials, simplifying credential management. This allows you to extend Splunk to more non-technical users, or mash-up Splunk searches and reports with your other internal or external websites to bring data to wherever your users need. Integrate Splunk to existing single sign-on solutions, such as CAS, Oracle Identity Management, RSA Passlogix, Sun OpenSSO, SiteMinder, Tivoli, etc. Deliver transparent authentication using common, open standards to extend your IT data to the users who need it without confusion, cost or complexity.
PDF Reports
Automatic Delivery of Dashboards, Reports and Views
This new feature allows users to create a PDF-formatted report from any dashboard, view, search or report within Splunk and schedule the delivery of these reports in PDF format via email. Now you can share meaningful information about your IT environment with others in the organization, even non-Splunk users.
Event-level Workflows
Create Workflows from Your Data
This new feature allows you to create workflows directly from data in search results and automate required next steps, such as opening a trouble ticket, blocking an IP address, looking up a product ID in an external database, launching a follow-up search or even geolocating an IP address on Google Maps. This creates a more seamless and efficient integration into operational workflows.
Eventtype Finder
Discover What's In Your Data
IT data is dynamic and often originates from sources that are undocumented or unknown. This feature helps you better classify this chaotic data by discovering potential event types, by looking for recurring patterns that signify events of a similar structure or type. Other systems need to be explicitly programmed for a particular structure, but with Splunk analyzing your data, new event types surface almost by themselves.
Download Splunk 4.1 Now
We're continually focused on investing in our product to make IT data more accessible, usable and valuable to everyone, and this release is no exception. In addition to what’s listed above, this release includes faster search performance, enhancements to the search interface and language, improved usability, manageability, and more.
Still on Splunk 3.x?
If you’re still on 3.x and haven't upgraded to Splunk 4.0 because you're waiting for 'live tail'... The wait is over! The real-time capabilities in Splunk 4.1 give you live tail on steroids. It provides one interface for all your log files anywhere in your infrastructure across all your datacenters, to search and analyze using the full Splunk search language.
Gain unparalleled visibility and insight into your IT universe with Splunk 4.1. Download your free copy now.