Hello,
We have a requirement to send the logs from one of our IoT devices in to the Splunk. As it doesnt have syslog functionality/ install splunk agent, we are planning to use HEC.
I have gone through the Splunk documentation on HEC and created the token and did some testing using curl and everything looks good. (curl -k http://localhost:8088/services/collector -H "Authorization:Splunk " -d "{json formatted entries}").
Now what should be the next step to collect the actual logs from the device. Whether the developer needs to output the logs in to the above Splunk HEC token?
↧