rapid deployment splunk bundles for microsoft · for operational intelligence making machine data...

Rivium is a leader in getting Splunk deployments right. With experience delivering over a hundred Splunk engagements Australia wide we know what a brilliant Splunk environment looks like.

Our Rapid Deployment Splunk Bundle for Microsoft environments is a tailored solution to quickly enable you to monitor, audit, secure and analyse your Windows Infrastructure and workloads in one place, in real time.

Rapid Insights into Windows Environments

Rapid DeploymentSplunk Bundles for Microsoft

Splunk offers the leading platform for operational intelligence making machine data accessible, usable and valuable to everyone.

Software, Hardware and ServicesRapid Deployment Bundles for Microsoft Environments

TECHNOLOGY

Gemini SBOX is a purpose-built appliance that can dramatically reduce the cost to deploy Splunk compared to commodity hardware.

INFRASTRUCTURE

Rivium is a Splunk Professional Services partner with extensive experience in deploying Splunk solutions.

EXPERTISE

Analyse information on all the critical Windows events: CPU, memory,

physical disk, LogicalDisk, network interface, application crashes,

application installs and Windows updates.

Understand and analyse uncharacteristic usage patterns and failed attempts by users to log onto a

specific domain.

Visualise information on the health, configuration and performance of domains, sites, domain controllers, DNS servers and DNS zones that

belong to the Active Directory.

Events, Performance & System Monitoring

Anomalous Logons & User Logon Failures

Domain & DNS Services Monitoring

Splunk App for Windows

Infrastructure

Monitor, audit, secure and analyse your Windows IT infrastructure and workloads in one place, in real time. Avoid service degradations with granular insights into server event data, performance metrics, configurations, alerts and registry changes in Active Directory including users, groups, machines and group policy objects. Gain real-time visibility into your email service health and performance across the entire messaging infrastructure, including diverse message delivery components and the supporting infrastructure.

Reduce downtime through real-time service health and performance

monitoring across the entire messaging infrastructure.

With granular composite health scores across the entire service path you can

analyse critical metrics across Exchange service components, giving you instant visibility into which service components are affecting the health

of your email service.

Provides you with deep visibility into the health and performance of your Microsoft Exchange environment;

from Edge and Hub Transport servers to the Client Access servers and the

Mailbox Store itself.

Service-Centric Monitoring Service Analyzer Deep Visibility

Splunk App for Microsoft Exchange

Gain insights into your messaging infrastructure and non-Exchange devices and services with a unified view of the entire service infrastructure. The Splunk App for Microsoft Exchange consumes logs from your Microsoft Exchange systems to give you deep visibility into the health and performance of your Microsoft Exchange environment—from Edge and Hub Transport servers to the Client Access servers and the Mailbox Store itself.

Create actionable insights that are critical in solving customer, website/mobile and multi-channel analytics

challenges and enrich digital data with CRM or offline data.

Derive unique insights by combining client and server side data in real time

to analyse and improve customer experience.

Get meaningful insights and visualisations with unlimited

segmentation and full data drill down on real-time and historical data.

Actionable Insights Analyse Customer Experience Digital Data Visualisations

Splunk App for

Web AnalyticsOrganisations need a deep understanding of customer interactions and product/feature usage to create the best website or mobile user experience.

The Splunk App for Web Analytics provides an end-to-end view of your Microsoft IIS environment providing visibility of customer interactions across various digital channels.

Centralised management of Gemini sbox appliances and platforms makes

it easy to tweak network configurations, orchestrate tasks,

schedule activities and even visualise your topology. All in one intuitive, easy-

to-use interface.

An intuitive setup wizard allow easy customisation and optimisation for

your needs, minimizing the burden on IT operations. Includes direct attached high performance disks, optimizing IO operations and eliminating the need

for expensive SAN storage.

Designed from the ground up to minimize attack surfaces and

vulnerability. Contains proprietary, purpose-built OS extensions optimised

for security and a streamlined operating environment that eliminates

unnecessary services.

Ease of Management Rapid Provisioning Security Hardened

Gemini SBOX Splunk

Appliance

Gemini SBOX makes it easy to scale and manage your big data deployment. Gemini allows you to manage a Splunk appliance from a single interface and seamlessly delivers turn key solutions from leading organisations via the Gemini Integration Center.

SBOX integrates high-performance storage, an optimised and security hardened operating system, and an easy to use GUI that simplifies the deployment and day to day operations of big data software.

$5,356per month

including GST

10GB per day(2GB Exchange Data)

12 month data retention

1 Power User Training

3 Year Contract







Splunk Enterprise SubscriptionSplunk App for Exchange SubscriptionSplunk App for Windows InfrastructureSplunk App for Web AnalyticsSplunk App for Microsoft SQLSplunk Add-on for Windows DHCPSplunk Add-on for Windows DNSSplunk Add-on for Active DirectoryTwo additional source types and Apps

What your environment includes:

Small environment includes the A240 Appliance and the M1000 Management Appliance.

Medium environment includes the A240 Appliance, S1000 Search Head, and M1000 Management Appliance.

Large environment includes A540 Appliance, S1000 Search Head, M1000 Management Appliance.

SBOX Appliance

$8,572per month

including GST

3 Year Contract

$14,146per month

including GST

3 Year Contract

Splunk SBOX Rapid Deployment OptionsOptions for On-Premise

SMALL MEDIUM LARGE

Includes Implementation Includes Implementation Includes Implementation

Pricing does not include the ongoing management of your Splunk environment and may be subject to change based on currency fluctuations.

$5,709 per month

including GST


90 day data retention


3 Year Contract







$8,259 per month

including GST

3 Year Contract

$13,945 per month

including GST

3 Year Contract

Splunk Cloud Rapid Deployment OptionsOptions for Cloud

SMALL MEDIUM LARGE

Includes Implementation Includes Implementation Includes Implementation

Splunk Enterprise SubscriptionSplunk App for Exchange SubscriptionSplunk App for Windows InfrastructureSplunk App for Web AnalyticsSplunk App for Microsoft SQLSplunk Add-on for Windows DHCPSplunk Add-on for Windows DNSSplunk Add-on for Active DirectoryTwo additional source types and Apps

What your environment includes:

All environments includes the F1000 Forwarder Appliance and the M1000 Management Appliance.

SBOX Appliance

Pricing does not include the ongoing management of your Splunk environment and may be subject to change based on currency fluctuations.

Every customer is different, and there are many factors that can influence the amount of data your environment will generate per day.With Rivium’s experience with the deployment of many Splunk environments, we have found that the following metrics can be useful as a guide.

What size is right for me?Splunk is licensed by data volume ingested per day

10GB 20GB 50GB

Number of staff 50 200 500

Windows Servers 30 60 200

IIS Servers 100 500 1000

Database Servers 2 4 6

Exchange Hosts 2 4 6

Active Directory Hosts 2 4 6

For more accurate guidance on the right size for your organisation, Rivium will undertake a data source assessment to providerecommentations on the most appropraie rapid deployment bundle for your environment.

A: Level 14, 380 St Kilda Road, Melbourne VIC 3004T: 1300 360 886

W: www.rivium.comE: [email protected]

xxx

rapid deployment splunk bundles for microsoft · for operational intelligence making machine data...

Documents