Enthusiast
Enthusiast

vROPs and Splunk Integration using REST ?

Hi Team,

How can we send vROPs alerts to splunk using REST Outbound setting. Can someone help with the detailed process on how to achieve this.

Regards,

Uday Mantri

0 Kudos
8 Replies
Immortal
Immortal

0 Kudos
Enthusiast
Enthusiast

Hi Daphnissov,

I believe, the suggested integration requires steamweaver as a middleware between vROPs and Splunk.

But is there any way that we can use vROPs REST Notification Plugins to send json content to splunk HEC.

0 Kudos
Immortal
Immortal

Sure, but it's all manual work. Start with the API docs and go from there.

0 Kudos
Enthusiast
Enthusiast

Well, have went through Splunk API documentation. We were unable to hit the POST REST to splunk from vROPs REST Notification settings. We configured the outbound setting through the user with admin rights on splunk but still it is not working.

pastedImage_2.png

pastedImage_0.png

Please suggest or refer us to all the required documents.

0 Kudos
Hot Shot
Hot Shot

That will never work until you build something to translate the vROPs JSON body to a Splunk JSON body. The fun part is that my customer is also wanting the same (not for Splunk though).

I'm note sure what you are trying to achieve, but we are using vRLI to send data to Splunk...


Was I helpful? Give a kudo for appreciation!
Braindumping @ http://kablog.nl/
Tweeting @ https://twitter.com/_Kabir_Ali_
0 Kudos
Enthusiast
Enthusiast

Hi Kabir,

Thank You for helping us out.

Yes, we are aware about the translation part. We have actually done that. What we want is to send vROPs alerts directly to splunk using the REST outbound settings. We are trying to achieve it using HEC collector. The only thing we are unable to achieve is how to do the outbound settings.

It would also help if you could help with the configuration steps required in vROPs and splunk respectively.

0 Kudos
Commander
Commander

What version of vrops are you using?

0 Kudos
Enthusiast
Enthusiast

vROPs 8.1

0 Kudos