Overview

Sectigo Connector for Splunk ("the connector") is a Splunk app for integrating Sectigo Certificate Manager (SCM) audit logs with a Splunk cloud platform or Splunk Enterprise server. This integration lets you pull SCM audit logs into Splunk to monitor, analyze, and visualize the SCM activities of your organization in near real-time. SCM stores audit logs for 30 days.

Audience

This guide is intended for Splunk administrators and system administrators who have knowledge of IT security, cloud security, and are also familiar with SCM.

Scope

This guide covers instructions for deploying and configuring the Sectigo-developed Splunk app to deliver SCM audit logs.

Additional resources

What is SCM Enterprise?
Anatomy of a Splunk app