> For the complete documentation index, see [llms.txt](https://docs.aisera.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.aisera.com/aisera-platform/adding-data-to-your-tenant/integrations-and-data-sources/connectors/splunk/export-audit-logs-to-splunk.md). # Export Audit Logs to Splunk Aisera's Gen AI platform includes the functionality to export audit logs in real-time to Splunk. This feature allows seamless integration of Aisera audit data with existing Security Information and Event Management (SIEM) systems, enhancing security monitoring and compliance. ## Integration Setup Create the Splunk Integration: 1. Navigate to the **Settings > Integrations** page in the Aisera Admin UI. 2. Click the **+ New Integration** button. 3. Search for and choose the **Splunk** icon. 4. **Name** the integration. 5. Provide the **Splunk HTTP Event Collector (HEC) endpoint.** 6. Click **Next.** 7. Set the **Auth Type** and fill in the parameters. \ Currently, only the **Basic** authorization type is supported for Splunk. 8. Choose **OK**. ## Data Source Setup Add the Splunk Data Source: 1. Navigate to **Settings > Data Source** in the Aisera Admin UI. 2. Choose **+ New Data Source.** 3. Search for and select the **Splunk** icon.

4. Click **Next.** 5. Create and add a **Name** for your **Splunk** data source. 6. Choose **Forward Events** as the function.

4. Choose **Audit History** as the **Data Type**. 5. After setting the **Data Type**, choose the name of the **Integration** that you created in the **Integration Setup** above. 6. Enter an optional **Description**. 7. Click **Next.** 8. Ignore the options in the following windows and click **Next.** 9. Click **OK**. ## Event Triggers **To Set the Event Triggers:** 1. Navigate to **AI Automation > Event Studio** in the Aisera Admin UI. 2. Click the **+ New Event Trigger** button. 3. Add a **Name** for the Trigger.

4. Select **Event Forwarder** for the **Event Handler Type.** 5. Click **Next.** 6. Set the **Event Forwarder** options

7. Select **Splunk** as the **External System.** 8. Select your Splunk Data Source as the **Data Sources** option.

9. Select **AuditEvent** as the **Event Type** 10. Click **OK** --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.aisera.com/aisera-platform/adding-data-to-your-tenant/integrations-and-data-sources/connectors/splunk/export-audit-logs-to-splunk.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.