Flex Index Preview
Best For
Splunk Cloud Customers with need for storing large amounts of data for forensic and compliance use cases
Project Description
Splunk’s Flex Index is a new storage tier in Splunk Cloud that provides a cost-effective option for high volumes of data requiring forensic and investigative searches, data exploration, and correlation with higher value data. To create a Flex Index, Splunk Cloud administrators simply select a “Flex Index” type in the process of creating their index. Once created, data can flow into a Flex Index through standard data ingestion paths, including forwarders and HTTP Event Collector, among others. It can be queried through the Splunk search UI or REST API by specifying the index name, and can be easily correlated with data in other indexes. Flex Index storage and workload utilization can be seen by viewing the Cloud Monitoring Console.