Ready to get started?

Learn more about the CData JDBC Driver for Splunk or download a free trial:

Download Now

Pipe Splunk Data in Google Data Fusion

Load the CData JDBC Driver into Google Data Fusion and pipe live Splunk data to any supported data platform.

Google Data Fusion allows users to perform self-service data integration to consolidate disparate data. Uploading the CData JDBC Driver for Splunk enables users to access live Splunk data from within their Google Data Fusion pipelines. While the CData JDBC Driver enables piping Splunk data to any data source natively supported in Google Data Fusion, this article walks through piping data from Splunk to Google BigQuery,

Upload the CData JDBC Driver for Splunk to Google Data Fusion

Upload the CData JDBC Driver for Splunk to your Google Data Fusion instance to work with live Splunk data. Due to the naming restrictions for JDBC drivers in Google Data Fusion, create a copy or rename the JAR file to match the following format -.jar. For example: cdata.jdbc.splunk-2019.jar

  1. Open your Google Data Fusion instance
  2. Click the to add an entity and upload a driver
  3. On the "Upload driver" tab, drag or browse to the renamed JAR file.
  4. On the "Driver configuration" tab:
    • Name: Create a name for the driver (cdata.jdbc.splunk) and make note of the name
    • Class name: Set the JDBC class name: (cdata.jdbc.splunk.SplunkDriver)
  5. Click "Finish"

Pipe Splunk Data in Google Data Fusion

With the JDBC Driver uploaded, you are ready to work with live Splunk data in Google Data Fusion Pipelines.

  1. Navigate to the Pipeline Studio to create a new Pipeline
  2. From the "Source" options, click "Database" to add a source for the JDBC Driver
  3. Click "Properties" on the Database source to edit the properties
    • Set the Label
    • Set Reference Name to a value for any future references (i.e.: cdata-splunk)
    • Set Plugin Type to "jdbc"
    • Set Connection String to the JDBC URL for Splunk. For example:

      jdbc:splunk:5246...;user=MyUserName;password=MyPassword;URL=MyURL;InitiateOAuth=GETANDREFRESH;

      To authenticate requests, set the User, Password, and URL properties to valid Splunk credentials. The port on which the requests are made to Splunk is port 8089.

      The data provider uses plain-text authentication by default, since the data provider attempts to negotiate TLS/SSL with the server.

      If you need to manually configure TLS/SSL, see Getting Started -> Advanced Settings in the data provider help documentation.

      To use the JDBC Driver in Google Data Fusion, you will need to set the RTK property in the JDBC URL. You can view the licensing file included in the installation for information on how to set this property.

      Built-in Connection String Designer

      For assistance in constructing the JDBC URL, use the connection string designer built into the Splunk JDBC Driver. Either double-click the JAR file or execute the jar file from the command-line.

      java -jar cdata.jdbc.splunk.jar

      Fill in the connection properties and copy the connection string to the clipboard.

    • Set Import Query to a SQL query that will extract the data you want from Splunk, i.e.:
      SELECT * FROM DataModels
  4. From the "Sink" tab, click to add a destination sink (we use Google BigQuery in this example)
  5. Click "Properties" on the BigQuery sink to edit the properties
    • Set the Label
    • Set Reference Name to a value like splunk-bigquery
    • Set Projcect ID to a specific Google BigQuery Project ID (or leave as the default, "auto-detect")
    • Set Dataset to a specific Google BigQuery dataset
    • Set Table to the name of the table you wish to insert Splunk data into

With the Source and Sink configured, you are ready to pipe Splunk data into Google BigQuery. Save and deploy the pipeline. When you run the pipeline, Google Data Fusion will request live data from Splunk and import it into Google BigQuery.

While this is a simple pipeline, you can create more complex Splunk pipelines with transforms, analytics, conditions, and more. Download a free, 30-day trial of the CData JDBC Driver for Splunk and start working with your live Splunk data in Google Data Fusion today.