A user is evaluating the integration of their DMS with Cisco SPLUNK. There are 3 SPLUNK Connectors in the Catalog. Question from this user is how other DataMiner users in the world are integrating with SPLUNK. Does DM collects Data from Splunk and further enhances event towards a more intelligent Service monitoring status or DM forwards trend & Alarm Data to SPLUNK? In the current integrations with SPLUNK is DM the Umbrella System?
In most cases DataMiner is fetching data from SPLUNK, which is data originating already from various sub-systems below SPLUNK. Note that this can be very different from one implementation to another, i.e. this is like integrating with a database that can contain information just about anything. So the way it is integrated, what data is to be extracted and how it needs to be leveraged and used in DataMiner (fault management, performance management, cross correlation with other data, aggregation, etc.) can vary from one use case to another.
As an example to the above, I am glad to confirm here one of our customers seeking to benefit Splunk searches to enrich trouble tickets. So, whenever an alarm condition arises in DataMiner, it will trigger the Splunk search that is associated with/designed for this type of alarm. DataMiner using the output to enrich the ticket that it will create for customer.