Configure Splunk for Integration with BeyondTrust Privileged Remote Access

 

You must purchase this integration separately from both your BeyondTrust Privileged Remote Access and Privileged Identity solutions. For more information, contact BeyondTrust sales.

To install the integration, follow the steps below to import an item into Splunk.

The Splunk home screen showing an arrow pointing to the Apps selection.

  1. Log into Splunk as a user with administrative rights.
  2. From the main home page, /app/launcher/home, click on the gear icon in the upper-left corner and go to Manage Apps.

  3.  

    The Splunk Apps screen shows an arrow pointing to the Install app on file button.

  4. On the Apps page, click Install app from file.

  5.  

    The Splunk Upload an app prompt shows the BeyondTrust TA file being uploaded.

  6. Browse to the location of the Splunk_TA_BeyondTrustPAM.spl file and install the Splunk Technology Add-on.

 

Other Considerations

For manual installation not completed through the web user interface, you must determine your deployment method, standalone or distributed. If distributed, your BeyondTrust technical account manager must go to the Splunk Indexer or Forwarder.