I’m testing the Splunk App for Nextcloud.
I installed a Splunk enterprise server, and a Splunk universal forwarder (my Nextcloud instance and the server are on different hosts).
Looks like it’s working, and I do collect data from my Nextcloud instance, however not all categories of data.
Shortlist of what IS collected:
- Successful and failed logins
- Number of files and folders operations
- Files and folders activity
- Most of the “security” data
Shortlist of what is NOT being retrieved (and not displayed in the Splunk web pages), mainly some usage data:
- Users (active and defined)
- Shares and storage (number of files, free disk space)
- Hardware
- A few other types of data
I would welcome ideas about what is left to configure, or what I’m doing wrong with the setup.
Thanks in advance!
Jean-Claude
↧
