I installed the DUO Log Add-on for Splunk on one of my search heads, configured the local input with the API Host, both keys and selected all three logs to be extracted and set the collection interval to 600 seconds. The configuration saved without any errors. However, I am not receiving any data. There are no errors showing up in the Splunkd log. I am currently using Splunk Enterprise 6.4.3.
Any help on what to check would be appreciated.
↧