VMware Cloud Community
sandeepbc
Contributor
Contributor

vROPs integration with Splunk

Hi Folks,

I want to forward all the alerts and events data to splunk directly from vROPS.

Please let us know - how to do that. I know it is possible through streamweaver

https://splunkbase.splunk.com/app/4780/

Do we have any other methods to integrate, is there any out-of-box REST API scripts available for this integration.

Reply
0 Kudos
7 Replies
KabirAli82
Expert
Expert

I believe its the other way around. You need Splunk to pull data from vROPs by API calls.

AFAIK there is not way to have vROPs forward its data to Splunk.


Was I helpful? Give a kudo for appreciation!
Braindumping @ http://kablog.nl/
Tweeting @ https://twitter.com/_Kabir_Ali_
Reply
0 Kudos
sandeepbc
Contributor
Contributor

Is there any built-in API call available in splunk to pull data from vROPS.

Any idea ?

Reply
0 Kudos
KabirAli82
Expert
Expert

I have no idea... best post this on the Splunk forum.


Was I helpful? Give a kudo for appreciation!
Braindumping @ http://kablog.nl/
Tweeting @ https://twitter.com/_Kabir_Ali_
Reply
0 Kudos
sxnxr
Commander
Commander

We forward all alerts and events that can be generated by an alert using REST payloads to a webhook shim that transforms the payload into a format that Splunks netcool

Not sure if this is what you are after

Reply
0 Kudos
sandeepbc
Contributor
Contributor

how do you do that, can u pls explain more on this.

Reply
0 Kudos
sxnxr
Commander
Commander

I didnt set it up so your best bet will be google. but at a high level

Deploy 2 x photon OS VMs (F5 LB in front)

Downloaded the webhook from github

Configured the webhook shim endpoing to change the fields

configured vrops to alert using Rest

vRealize + Webhooks = Infinite Integrations - VMware Cloud Management

vRops Webhook

Reply
0 Kudos
npatrikov
Contributor
Contributor

Hi,

If you are still looking for a solution, you can check ZigiWave.

Best regards!