Predefined entity discovery sources available for the Splunk Add-on for Exposure Analytics

After you install the Splunk Add-on for Exposure Analytics, you must add predefined entity discovery sources for the add-on in Splunk Enterprise Security.

For instructions on how to add an entity discovery source, see Configuring entity discovery sources for Exposure Analytics in the Administer Splunk Enterprise Security manual.


Entity discovery source	Type	Description of the data	Required?
Cisco - Splunk Add-on for Exposure Analytics - Asset	Streaming	Includes the system, network, and user information for each asset	Yes
Cisco - Splunk Add-on for Exposure Analytics - Encryption	Scheduled	Includes the encryption data and encryption status for each asset. Add this source only if you are measuring full disk encryption on Windows assets.	No

Splunk Enterprise

Splunk Cloud Platform

Splunkbase

Enterprise Security

SOAR

IT Service Intelligence

Content Packs

Splunk Observability Cloud

AppDynamics SaaS

AppDynamics On-Premises

SAP Agent

Developer Documentation

Splunkbase

Splunk Enterprise

Splunk Cloud Platform

Splunkbase

DATA MANAGEMENT

SEARCH AND ANALYTICS

ADMINISTRATION

Enterprise Security

SOAR

ENTERPRISE SECURITY

SOAR

RELATED APPS

IT Service Intelligence

Content Packs

ITSI

IT Ops

ADMINISTRATION

EXTENSIONS

Splunk Observability Cloud

MONITORING

DATA MANAGEMENT

ADMINISTRATION

AppDynamics SaaS

AppDynamics On-Premises

SAP Agent

ESSENTIALS

MONITORING

ADMINISTRATION

Developer Documentation

Splunkbase

PLATFORM

OBSERVABILITY

REFERENCE

Resources

REFERENCE

Learn More

Support

Predefined entity discovery sources available for the Splunk Add-on for Exposure Analytics