Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Q&A with Qlik - Qlik Cloud Migration: Questions about migrating to Qlik Cloud? Catch the latest replay!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
random_user_3869
Partner - Creator III
Partner - Creator III
‎2024-04-16 04:04 AM

Extract Event log to splunk (automation)

Hello everyone,

As part of an audit from my company, it security is asking me how to extract event log (every type of log) to splunk.

The logs i want to extract is the following:

  • com.qlik/edge-auth
  • com.qlik/users
  • com.qlik/automations

 

Is it possible to do that with an automation ?

I know that there is one available but it lacks informations.

Thank you

Regards

random_user_3869_0-1713254624134.png

 

Labels (1)
Labels
1,049 Views
0 Likes
1 Reply
AfeefaTk
Support
Support
‎2024-05-22 02:07 AM

Hi @random_user_3869 

You can use the 'Raw API List Request' block from the Qlik Cloud Services connector to make API calls to the audit endpoint and then log it into Splunk.

https://qlik.dev/apis/rest/audits/

Please refer to the existing template and make necessary changes for eg: replace  'List Audit Trails Incrementally' endpoint with the 'Raw API List Request' block from the Qlik Cloud Services connector.

Hope this helps!!

Thanks

916 Views
0 Likes