Splunk

Overview

Use the Splunk add-on to export the logs from Saviynt Enterprise Identity Cloud (EIC). Saviynt generates audit logs that records all actions performed by an user such as changes to SAV role, changes to global configurations, changes to connections.

Saviynt Event Add-on provides customers the ability to extract audit and other events information from Saviynt's Enterprise Identity Cloud Platform. 

Saviynt Events Add-on can be downloaded directly from Splunkbase 

Features

This integration is built leveraging Saviynt APIs, for additional details about Saviynt APIs visit  API Reference

Saviynt Enterprise Identity Cloud (EIC) generates audit logs that record all actions performed by a user such as changes to SAV roles, global configurations, and connections. These audit logs include the following entries: OBJECT TYPE, OBJECT NAME, ACTION, ATTRIBUTE, ACCESS BY, ACCESS TIME, IP ADDRESS, and MESSAGE. Splunk periodically ingests these events.