https://community.dynatrace.com/t5/Automations/Splunk-Observability-platform-integration-with-Dynatrace/m-p/281599#M2272 <P>Looking to understand the integration patterns for receiving data (metrics, logs) from Splunk and incorporating into Dynatrace dashboards.</P> Tue, 15 Jul 2025 18:13:36 GMT dsteinbrick 2025-07-15T18:13:36Z https://community.dynatrace.com/t5/Automations/Splunk-Observability-platform-integration-with-Dynatrace/m-p/281599#M2272 <P>Looking to understand the integration patterns for receiving data (metrics, logs) from Splunk and incorporating into Dynatrace dashboards.</P> Tue, 15 Jul 2025 18:13:36 GMT https://community.dynatrace.com/t5/Automations/Splunk-Observability-platform-integration-with-Dynatrace/m-p/281599#M2272 dsteinbrick 2025-07-15T18:13:36Z https://community.dynatrace.com/t5/Automations/Splunk-Observability-platform-integration-with-Dynatrace/m-p/281606#M2273 <P>Hi&nbsp;<a href="https://community.dynatrace.com/t5/user/viewprofilepage/user-id/93385">@dsteinbrick</a>&nbsp;,&nbsp; there is no direct integration, and it's going to be messy either way.<BR />Realistically this needs to be done at the collection point rather than export - especially for the big 3 metrics, logs and traces.&nbsp;<BR /><BR />For this I'd suggest option 2 - it will just make life so much easier.&nbsp; &nbsp;<BR /><BR />Last time I checked Splunk only had minimal capabilities of streaming data as an export to 3rd parties.&nbsp; &nbsp;Maybe there is something on Splunk base that could do this.&nbsp; There is a dynatrace add on, that can send metrics, problems .. to splunk *(does not cover logs or traces)&nbsp;&nbsp;<BR /><BR />If you're after events only, then this is easy -&gt; standard search query with alert &amp; use option 1 or the events api as an endpoint for the alert to send to.&nbsp;You could possibly extend this to certain scheduled searches.&nbsp; &nbsp;<BR /><BR />For the big 3<BR /><BR />1. use the&nbsp;<A href="https://docs.dynatrace.com/docs/discover-dynatrace/platform/openpipeline" target="_blank">OpenPipeline — Dynatrace Docs</A>&nbsp;to ingest data and export from Splunk (you'll need to figure that part out)<BR /><BR />2. Adding a Dynatrace exporter to the Splunk OTEL collector (I'm assuming you are using this since you mentioned Splunk observability).&nbsp; you can dual stream to both Dynatrace and Splunk.&nbsp; benefit here is that you get raw data and it's going to be able to be used directly in dynatrace.&nbsp;<BR />e.g</P><LI-CODE lang="markup">apiVersion: v1 kind: ConfigMap metadata: name: otel-collector-config namespace: observability labels: app: otel-collector data: otel-collector-config.yaml: | receivers: otlphttp: endpoint: 0.0.0.0:4318 exporters: splunk_hec: token: "&lt;your-splunk-hec-token&gt;" endpoint: "https://&lt;your-splunk-hec-endpoint&gt;" source: "otel" sourcetype: "_json" index: "main" disable_compression: false max_connections: 20 timeout: 10s dynatrace: api_token: "&lt;your-dynatrace-api-token&gt;" endpoint: "https://&lt;your-dynatrace-endpoint&gt;/api/v2/otlp" tls: insecure: false processors: batch: timeout: 5s send_batch_size: 512 service: pipelines: traces: receivers: [otlphttp] processors: [batch] exporters: [splunk_hec, dynatrace] metrics: receivers: [otlphttp] processors: [batch] exporters: [splunk_hec, dynatrace] logs: receivers: [otlphttp] processors: [batch] exporters: [splunk_hec, dynatrace]</LI-CODE><P><BR />If your not using the splunk otel collector, you could also possibly try and fudge a heavy forwarder to send to the open pipeline by using the HEC configuration.&nbsp;<BR />be the guineapig&nbsp;<span class="lia-unicode-emoji" title=":grinning_face:">😀</span><BR /><BR />Enjoy</P> Tue, 15 Jul 2025 21:20:20 GMT https://community.dynatrace.com/t5/Automations/Splunk-Observability-platform-integration-with-Dynatrace/m-p/281606#M2273 gopher 2025-07-15T21:20:20Z