Atlas V2021.2.3 arrives with 8 Atlas Elements consisting of Data Management, Data Utilization, Forwarder Awareness, Scheduling Assistant, Scheduling Inspector, ES Helper, Search Library, and STIG Compliance. Atlas can be installed with all or only a few of these elements, based on your current needs.
The Data Management element allows users to request data, view an inventory of all data by sourcetype, and automate alerting of dropped or missing data. For more information about Data Management, click here.
The Data Utilization element enables Admins and Users to quickly identify how Index-Sourcetypes are being used across ad-hoc searches, scheduled searches, and dashboards, if they are being used at all! For more information, check out this link!
The Forwarder Awareness element allows users to view and turn on alerts for forwarder data and status, including failures. For more information about Forwarder Awareness, click here.
The Scheduler Assistant element reveals your current Splunk concurrency health, identifies pain points that can hurt Splunk usability and report accuracy, and offers tools to improve scheduling to reduce concurrency errors and improve performance. For more information about Scheduling Assistant, click here.
The Scheduling Inspector element reveals Scheduled Searches with possibly improper configurations, showcasing alerts that may be missing data, or searches that may be over-taxing your environment based on time spans. It also identifies and helps users remedy orphan searches as well. For additional details, follow this link!
The ES Helper element helps Enterprise Security owners identify next steps for improving their data collection by scoring your current data model coverage and identifying possible high-priority target Sourcetypes to ingest next. For more information on ES Helper, check out this link!
The Search Library element contains a collection of pre-built searches with detailed SPL query and search descriptions. This component also enables users to create and save custom searches. For more information about Search Library, click here.
The STIG Compliance element makes STIG monitoring and reporting easy, by ingesting any Checklist file and enabling users to create and define systems for accurate reporting. Pair this with our Puppet Modules to automate not only reporting but with compliance. If you wish to learn more, review this overview, or reach out to Kinney Group!