product
service
- Simple Security Consulting [Consulting]
- Splunk SOAR Automation Assessment Service [Consulting]
- Dashboard/SPL Creation Pack [Implementation/Building Support]
- Version upgrade service [implementation and construction support]
- Splunk Premium Apps construction support service [implementation and construction support]
- Splunk Security Log Analysis Start Package [Original App/Service]
- Splunk × CrowdStrike Falcon Insight, Macnica Original App [Original App/Service]
- Government uniform standard compatible App [Original App/Service]
- Smart Security Monitoring App [Original App/Service]
- Splunk × LANSCOPE Original App [Original App/Service]
- Security Monitoring App for Box [Original App/Service]
- Cloud Security Monitoring App [Original App/Service]
- SIEM Operation Monitoring Service [Original App/Service]
- List of services
- Macnica Premium Support for Splunk (utilization support, version upgrade monitoring)
- Macnica Premium Support for Splunk Skill Up Package
Specifications/Technical Information
Application for evaluation machine
- FAQ
Splunk
Splunk
About license types
On-premise licenses for Splunk Enterprise are annual licenses. There is also a cloud version license Splunk Cloud that allows you to use all the features of Splunk Enterprise on demand. Licenses can be selected in 1GB increments according to the amount of data to be imported into the Splunk server per day. A hybrid configuration of on-premises and cloud is also available.
- annual license
This license is valid for 12 months from the date of license issuance by Splunk. Includes license and annual maintenance. - Splunk Cloud
A SOC2Type2 certified cloud license that allows you to use all the features of Splunk Enterprise on demand. The minimum contract period is 1 year. Includes license and annual maintenance.
About license size
Please select the required license quantity according to the amount of data to be imported into the Splunk server per day. You can purchase in units of 1GB/day.
Please contact us for detailed pricing.
Free and Enterprise version
A free license allows you to ingest up to 500MB of data per day. An enterprise license allows you to capture even more data, add features, and get support. If you want to perform cross-sectional search or clustering of distributed data, or if you want to set access control or multiple user accounts, please use the enterprise license.
| function | explanation | SplunkFree | Splunk Enterprise |
|---|---|---|---|
| index Creation capacity |
Maximum indexing capacity per day |
500MB/day |
Unlimited |
| versatile indexing |
Universal real-time indexing of machine data |
✓ |
✓ |
| search |
Ad-hoc search across real-time and historical data |
✓ |
✓ |
| 分散サーチ |
Search across multiple Splunk deployments (supports load balancing and failover) |
✓ |
✓ |
| Monitor and alert |
Monitor and alert on individual and correlated real-time events |
✓ |
✓ |
| Reporting |
Ad-hoc reporting across real-time and historical data |
✓ |
✓ |
| knowledge mapping |
Knowledge mapped to machine data artifacts |
✓ |
✓ |
| Dashboard |
Highly customizable and interactive dashboards that integrate real-time machine data, graphs, reports and tables |
✓ |
✓ |
| data model |
Used to define consistent relationships within machine data |
✓ |
✓ |
| pivot |
Search, manipulate and visualize machine data with a drag-and-drop UI |
✓ |
✓ |
| high performance analytics store |
High performance analytics technology, manipulation and visualization |
✓ |
✓ |
| Faster reporting/ Fast reporting |
Transparent data summary technology |
✓ |
✓ |
| Embedded report |
Embed charts and reports in other third-party business applications outside of Splunk Enterprise |
✓ |
✓ |
| PDF delivery |
Automatic scheduled report and dashboard PDF creation and delivery |
✓ |
✓ |
| access control and Single sign-on |
Integrated role-based access control, user authentication with LDAP directory and single sign-on integration |
✓ |
✓ |
| single site clustering |
Increased availability of machine data in single-site deployments with high-availability architecture |
✓ |
✓ |
| single site Cluster management |
Centralized dashboard reporting on cluster health |
✓ |
✓ |
| multisite clustering |
Disaster recovery for multi-site deployments with high availability architecture |
✓ |
✓ |
| Universal Forwarder |
Securely and reliably transfer data from remote systems in real time |
✓ |
✓ |
| Forwarder management |
UI for monitoring and deploying forwarder configurations |
✓ |
✓ |
| Rich development environment |
A development platform for creating enterprise applications leveraging Splunk's modern web language |
✓ |
✓ |
| Apps |
Access hundreds of partners, communities and Splunk Apps from the Splunk Apps site |
✓ |
✓ |
| Premium Apps |
Access Premium Splunk Apps |
✓ |
✓ |
| Standard support |
Access full product documentation, Splunk apps, Splunk Answers and IRC channels |
✓ |
✓ |
| Enterprise support |
Direct access to Splunk customer support (manage cases online, customized support levels) |
✓ |
✓ |
*The listed information is information published by Splunk as of August 10, 2015.
*Information is subject to change without notice. Please note.
Inquiry/Document request
In charge of Macnica Splunk Co., Ltd.
- TEL:045-476-2010
- E-mail:splunk-sales@macnica.co.jp
Mon-Fri 8:45-17:30
