Set up the Attack Surface Risk Management for Splunk integration to allow Splunk to share website access logs and provide insights to Trend Vision One.
Procedure
- In the Trend Vision One
console, obtain the authentication token.
- Go to .
- Click Attack Surface Risk Management for Splunk.
- Click to copy the Authentication token.
- Download and install the Trend Micro Attack Surface Risk Management for
Splunk app from Splunkbase.
- Go to Splunk and select Splunkbase from the Resources drop-down.
- Search for and download the Trend Micro Attack Surface Risk Management for Splunk app from Splunkbase.
- Install the Trend Micro Attack Surface Risk Management for Splunk app.
- Use the authentication token to configure the integration in the Splunk
console.
Note
For more information, see Splunkbase - Trend Micro Attack Surface Risk Management for Splunk.- In the Splunk console, go to .
- Go to .
- In the User Account section, specify your account name and contact email address.
- In the Trend Vision One Integration section, enable Trend Vision One integration and paste in the Authentication token copied from the Trend Vision One console.
- Click Save.Splunk begins collecting and analyze XDR data from Trend Vision One. Splunk can only collect XDR data generated after connecting to Trend Vision One. You might need to allow some time before new XDR data starts to appear.