tools/config/splunk-windows-index.yml

title: Splunk Windows index and EventID field mapping
order: 20
backends:
  - splunk
  - splunkxml
logsources:
  windows:
    product: windows
    index: windows
fieldmappings:
    EventID: EventCode
Added title to all configurations 2019-05-16 23:33:51 +02:00			`title: Splunk Windows index and EventID field mapping`
Configuration order checking 2019-04-23 00:54:10 +02:00			`order: 20`
Check for valid configuration/backend combinations 2019-05-20 01:00:33 +02:00			`backends:`
			`- splunk`
			`- splunkxml`
Added test cases 2018-10-15 15:24:18 +02:00			`logsources:`
			`windows:`
			`product: windows`
			`index: windows`
			`fieldmappings:`
			`EventID: EventCode`