Installation
App Installation
The Cyences App needs to be installed on the Search Head only.
-
From the Splunk Web home screen, click the gear icon next to Apps.
-
Click on Browse more apps.
-
Search for Cyences App for Splunk and click Install.
- Create an index named cyences.
- Navigate to Settings > Indexes.
- Click on New Index.
- Enter cyences for the Index Name.
- Click Save.
- Restart Splunk after installing all dependencies.
Dependency Installation on Search Head
There are dependent apps which also need to be installed on the Search Head along with the Cyences app itself (follow the same steps mentioned in the previous section to install the apps).
| App Name | Splunkbase Link | What is this used for? |
|---|---|---|
| ES Content Update App | https://splunkbase.splunk.com/app/3449 | For some lookups |
| Splunk Common Information Model (CIM) | https://splunkbase.splunk.com/app/1621/ | For data models |
| Splunk Add-on for RWI - Executive Dashboard | https://splunkbase.splunk.com/app/5063/ | For field extraction (VPN data) |
| Flow Map Viz | https://splunkbase.splunk.com/app/4657 | For internal network traffic visualization |
- Note - Additional add-ons are necessary depending on the data present in your Splunk environment. For example, if there is Windows data present, then you need to install and configure the Splunk Add-on for Windows. Please visit the Data Onboarding section for more information.