Before you can use Splunk App for SOAR Export, you must establish a connection between the Splunk platform and Splunk SOAR. Perform the following tasks to make the connection:

1. If you don't have Splunk Enterprise Security (ES), download and install the Splunk Common Information Model (CIM) app from Splunkbase.
2. Allow Splunk platform users to use Splunk App for SOAR Export.
3. Provide a valid SSL certificate for the connection between Splunk SOAR and Splunk Enterprise.
4. Connect Splunk App for SOAR Export and the Splunk Platform to Splunk SOAR.
5. (Optional) If you have Splunk Enterprise Security, Run adaptive response actions in Splunk ES to send notable events to Splunk SOAR.