Splunk Cloud

Contrary to popular belief, Lor em Ipsum is not simply random text. It has roots in a piece of classical. LOL

Get a deeper sense for the features that differentiate Splunk Cloud.


Product Capabilities


Contrary to popular belief, Lor em Ipsum is not simply random text. It has roots in a piece of classical. LOL

Turning data into insights requires specific capabilities. Read on to learn about the powerful functionality embedded into Splunk’s products.

Monitoring and Alerting


Continuous monitoring of events, conditions, and critical KPIs helps keep your operations running smoothly. With our scheduled searches you can create real-time dashboards and visualizations that keep your team and management informed. Even more out-of-the box dashboards for monitoring common IT, security, and application environments can be found in our Splunkbase app store.


Alerts can signal real-time critical events and impending conditions before they occur. Splunk's Custom Alert Actions feature makes it simple to automatically kickoff subsequent actions (think: sending emails and executing remediation scripts) when an alert is triggered. These Custom Alerts can be set to varying degrees of granularity based on a variety of conditions (think: data thresholds and behavorial pattern recognition, like abandoned shopping carts, brute force attacks, or fraud scenarios).

Dashboards and Visualizations

As mountains of data continue to be generated and consumed, efficient methods to make sense of it are crucial. Customized dashboards and data visualizations give voice to your data to create impactful narratives that drive action.


Dashboards integrate charts, views, reports and re-usable panels to display a comprehensive data story. Build and personalize dashboards to display the most relevant information for different audiences. Management, business and security analysts, auditors, developers, and operations teams can be shown the same data in different ways to best help them act. And you can access your dashboards and reports on-the-go with the Splunk Mobile App.


Choose from a wide range of charts and other visualizations to tell a data story that is compelling and actionable. Intuitive charts and interactive visualizations make sense of complex data, letting you identify problems, opportunities and potential issues.



Metrics are numerical data points captured over time that can be compressed, stored, processed and retrieved more efficiently than logs. They are natively supported as first-class data that are suitable for scale and performance. Use of metric data boosts all around speed by at least 20X over previous releases (before version 7.0).

Machine Learning Toolkit (MLTK)

Use built-in Splunk analytics or your own custom machine learning models to tackle impactful issues for your company. Easily build custom models using the guided experience of the Splunk Machine Learning Toolkit. It includes an API, role-based access controls for machine learning models and out-of-the-box algorithms that can be applied to a wide range of use cases – not to mention machine learning algorithms from popular open source Python libraries.


Reports can be created in real time or scheduled to run at any interval, used in dashboards. Additionally, they can be saved and shared in secure, read-only formats, such as PDF Reports. Data can also be shared via ODBC.


Splunk Cloud stores your data to be optimized for the cloud. You can configure data retention according to your auditing and compliance requirements and purchase more storage capacity.


Enterprise Integrations

You can embed Splunk reports and data in any application or use our ODBC integrations to access Splunk data in applications such as Microsoft Excel or Tableau. And with Splunk alerts, you can automatically trigger actions in ticketing or other systems. Additionally, rich SDKs let your team integrate Splunk data and functionality in a custom fashion.

User Auth

Splunk software supports SAML integration for single sign-on via most popular identity providers and comes pre-configured for a growing number of providers like Okta, PingFederate, Azure AD, CA SiteMinder, OneLogin and Optimal IdM. Splunk can also integrate with other authentication systems, including LDAP, Active Directory and e-Directory, and supports integration with Duo two-factor authentication.


Splunk is designed to report out on compliance and is certified with industry bodies to ensure your data's security. Splunk is also committed to protecting you and your data with Splunk Protects.

Apps and Add-ons

Contrary to popular belief, Lor em Ipsum is not simply random text. It has roots in a piece of classical. LOL

Getting Started

Contrary to popular belief, Lor em Ipsum is not simply random text. It has roots in a piece of classical. LOL

Get quick answers about Splunk Cloud with the Splunk Cloud FAQ, an explanation of Splunk Cloud’s components in the Splunk Cloud Service Description, and complete product details with the Splunk Cloud User Manual.

Getting Data In


With a variety of standard and custom input methods, Splunk software can ingest all kinds of data types. File-based data can be sent via forwarders that reside directly on the data sources, while DevOps, IoT and data from other disparate sources can be directly ingested using the Event Collector API or a TCP/UDP port. Data can also be pulled from API-based sources using Modular Inputs and other methods. Additionally, common IT, security and application data sources can be onboarded and analyzed directly with hundreds of free apps and add-ons available on Splunkbase.

Splunk Education

Splunk Education is the place for coursework on specific Splunk topics and learning paths to take you from novice to power user. Go from investigative keyword searches to creating rich reports and visualizations from scratch. Learning paths range from those with topics focusing on end users, to those focused on administering Splunk Enterprise (on-prem) and Splunk Cloud including user provisioning, data source inputs and system configurations.

Splunk Search Processing Language (SPL)

SPL is our secret sauce. This powerful query language is what enables you to investigate your machine data. With support for five different correlation types (time, transactions, sub-searches, lookups, and joins) and over 140 analytical commands, you can conduct deep analysis, use event pattern detection, and apply more machine learning methods to predict outcomes and even discover new opportunities in your data.


Contrary to popular belief, Lor em Ipsum is not simply random text. It has roots in a piece of classical. LOL

Buy any index volume. Splunk offers volume pricing discounts—the more you ingest, the less you pay per GB of ingested data. Contact us for more information.

Splunk Cloud is priced by how much data you send into Splunk Cloud in a day. We recommend that you purchase an instance size that aligns with the maximum amount of data you expect to send to Splunk in one day. With this pricing model, you pay once to index the data and then can perform unlimited searches against that data.


Splunk Cloud is available as an annual subscription and support is included in the price of the service. A Splunk Cloud subscription includes sufficient data storage to retain the equivalent of 90 days of ingested data (based on the subscribed index capacity).