Splunk App for SOAR includes these services, which require configuration:

• Search service: This service allows you to use an external Splunk Cloud Platform or Enterprise environment as the main search engine for Splunk SOAR environments.
• SOAR System Logs: This service allows you to monitor the health of your Splunk SOAR (On-premises) environments.
• Auditing: This service allows you to forward SOAR system log files using Splunk Universal Forwarder to an external Splunk instance to create dashboards to monitor the health of your Splunk SOAR (On-premises) environments.
• REST API commands: This service allows you to issue REST API commands to Splunk SOAR environments.

You must make sure each service is configured individually. If you don't need a service, you don't have to configure it. Only configure the services you need.