Home
Resources
Integration Guides
Integration guides to help you use applications that integrate with Nozomi Networks products.
Splunk Universal Add-on
Installation
Installation
Instructions for installing and configuring the Nozomi Networks Splunk Universal Add-on. This topic covers logging into Splunkbase, downloading the add-on, setting up accounts, configuring inputs, and managing data retrieval parameters for seamless integration with Nozomi Networks.

Resources
- Release Notes
  Access the release notes for release-based products.
- N2OS Configuration
  The N2OS Configuration - Reference Guide.
- N2OS Software Development Kit
  The N2OS Software Development Kit (SDK).
- Integration Guides
  Integration guides to help you use applications that integrate with Nozomi Networks products.
  - QRadar Universal Application
  - ServiceNow Service Graph Connector
  - ServiceNow Vulnerability Response
  - Splunk Universal Add-on
    - Introduction
    - Requirements
    - Installation
      - Installation
        Instructions for installing and configuring the Nozomi Networks Splunk Universal Add-on. This topic covers logging into Splunkbase, downloading the add-on, setting up accounts, configuring inputs, and managing data retrieval parameters for seamless integration with Nozomi Networks.
      - Generate an API key in Vantage
      - Generate an API key in Guardian or CMC
    - Troubleshooting
- Reference Guides
  Additional reference guides with information on items such as Alerts and Incidents and Federal Information Processing Standards (FIPS).
- Quick Start Guides
  Hardware Quick Start Guides.
- Security
  Stay up-to-date with the most recent information and solutions for all vulnerabilities that affect Nozomi Networks products.
- Print format documentation
  A list of all the technical documentation that is available in print format.
- Documentation archive
  Access previous versions of the technical documentation.

Installation

Instructions for installing and configuring the Nozomi Networks Splunk Universal Add-on. This topic covers logging into Splunkbase, downloading the add-on, setting up accounts, configuring inputs, and managing data retrieval parameters for seamless integration with Nozomi Networks.

Log in to the Splunkbase website.
In the search field, search for Nozomi Networks.
The Nozomi Networks Universal Add-on page shows.
Select Download.
The Accept License Agreements page shows.
Accept the terms and select Agree to download.
A dialog shows.
Select Ok.
For an overview of the Splunk Universal Add-on, select Details.
Select Installation.
In the configuration section, create an account. The account should include the username and password, which are the key name and key token of:
- Central Management Console (CMC)
- Guardian
- Vantage
In the input section, configure the input to retrieve the following data from Nozomi Networks:
- Alert
- Asset
- NodeCve
- Node
- Link
- Variable
- Session
Add the host without (hypertext transfer protocol (HTTP) or hypertext transfer protocol secure (HTTPS)).
Select the account that you just created.
To specify the data retrieval starting point, use the from timestamp filter.
To determine how many items are retrieved for every call, define the page size.
Select Add.