NCP
  • Network Copilot
  • What's New?
  • Quick Start
  • Getting Started
    • System Requirements
      • On-Prem Deployment
      • Cloud Deployment
    • Licensing
    • Metrics Matrix
    • Onboarding Data
    • Scalability
  • Downloading Network Copilot
  • Deploying & Managing Network Copilot
    • Deployment Prerequisites
    • Installing Prerequisite Packages
    • Deploying the NCP Package
    • Managing Network Copilot
      • Upgrading License
      • Upgrading NCP
      • Uninstalling NCP
  • Web UI Administration
    • License Activation
    • Login Page
    • Dashboard Overview
    • Inventory Management
      • Onboarding Switches
        • Using ONES Telemetry Agent
        • Using SNMP
          • Adding Switches using YAML
          • Adding Switches using CSV
        • Using sFlow
        • Using API
        • Using gNMI
    • User Accounts
  • Accessing NCP
  • External Integrations
    • Communication & Collaboration
      • NetBox
      • Cisco Nexus Dashboard
      • Slack
    • Data Ingestion
      • AWS S3
      • Azure
      • ELK Stack
      • Google Cloud Storage
      • InfluxDB
      • Loki
      • Snowflake
      • Splunk
  • Use Cases
    • Basic NetOps
    • Flow Analytics
    • Security Audits
    • Inventory Insights
    • Support Knowledge Base
    • Upgrade Compliance
  • Contact Aviz Networks Support
Powered by GitBook
On this page
  • Overview
  • Configure Snowflake as a Data Source in NCP

Was this helpful?

Export as PDF
  1. External Integrations
  2. Data Ingestion

Splunk

PreviousSnowflakeNextUse Cases

Last updated 22 days ago

Was this helpful?

Overview

This section guides you through configuring and running the integration between Splunk and NCP.

By following these steps, you'll enable NCP to:

  • Connect to your Splunk instance and pull structured logs.

  • Parsing and index logs for efficient search and correlation.

  • Allow users to query logs using natural language in the NCP chat interface.

  • Enhance troubleshooting workflows and observability through log-driven insights.

Prerequisites

Before beginning, make sure you have:

  • Splunk Endpoint URL: Example: https://splunk.example.com:8089

  • Splunk Query: Used to filter logs from specific sources (e.g., index="network" sourcetype="syslog")

Configure Snowflake as a Data Source in NCP

To connect NCP with your Snowflake instance, follow these steps:

  1. Log in to the NCP GUI

  2. Navigate to Settings → Data Sources → Splunk

  3. Click on Add Configuration

  4. Enter the following details:

    1. Name: A label for the Splunk configuration (e.g., Splunk-Cluster)

    2. Host: The full URL of your Splunk endpoint (e.g., http://splunk.example.com:8089)

    3. Username: Your Splunk username (e.g., admin, user123)

    4. Password: The password associated with the Splunk username (e.g., your_password_here)

    5. Index: The index in Splunk where the logs are stored (e.g., network, syslog)

  5. Click Save