This workflow template automates the transfer of Torq audit and/or activity logs to Splunk at ten-minute intervals. It streamlines the collection and forwarding of log data, helping businesses maintain up-to-date security and operation insights within their Splunk environment. The workflow ensures that logs are consistently uploaded, facilitating real-time analysis and monitoring.
Use Cases
Example
Workflow Breakdown
Update the workflow context with the specific details of your Splunk configuration
Every 10 minutes the workflow will query the Torq audit or activity logs and upload to Splunk
Vendors
Utils, Splunk, Torq
Workflow Output
Upload the Torq Activity and/or Audit logs to Splunk on a schedule.