- Tom Kopchak
- Apr 11, 2019
- Tested on Splunk Version: 6.0+
This series will help you as you’re working with the Splunk Universal Forwarder (UF). In this part of the tutorial, Tom will show you how to validate that the UF is checking in properly to the deployment server and making sure it’s sending logs to your Splunk environment.
There are a number of steps you can take to validate that the Splunk Universal Forwarder is successfully installed. We’ll separate this into two categories, what can be done on the host running the Universal Forwarder, and what can be done within Splunk.
If you're looking for something different than the typical "one-size-fits-all" security mentality, you've come to the right place.