Hi all,
Is it possible to configure universal forwarder in one machine that collect logs from all other domain machines rather than installing UF on each machines,
Thanks.
Yes, it is possible, but there are considerations. Splunk has a document on the subject. See https://docs.splunk.com/Documentation/Splunk/8.2.3/Data/ConsiderationsfordecidinghowtomonitorWindows...
Thanks for your reply, Its appreciated.
Can you please share some helping document of System Center Configuration Manager (SCCM) or or a third party distribution solution such as Puppet., the tool used to collect logs .
I do no have such documentation, but I'm sure Google does.