Hello everybody.
I deployed a Splunk Enterprise Security in a distributed environment for our customer. He also has many customers and he doesn't want to see all the logs together. I've heard ES does not support multi-tenant natively, but at the moment, he wants to have separable reports for customer or see in the dashboard which data belongs to whom.
I don't know if there is a way to reach that. If you know, I will appreciate any help.
I've been looking for something similar and I got this:
https://answers.splunk.com/answers/236674/security-app-with-multi-tentant.html?utm_source=typeahead&utm_medium=newquestion&utm_campaign=no_votes_sort_relev
Best regards.
↧