Overview

Details

The Splunk Add-on for AppDynamics enables you to configure data inputs to collect and correlate data from Splunk AppDynamics REST APIs. Splunk AppDynamics is an application performance monitoring platform for hybrid and on-premises applications.
The add-on provides modular inputs to collect data on application performance, business transaction performance, infrastructure performance, and health rule violations from Splunk AppDynamics. Use the add-on to correlate Splunk AppDynamics data with your other machine data (such as logs, wire data, server data, and infrastructure data) in the Splunk platform. The add-on also provides dashboards to monitor and troubleshoot add-on performance.

The Splunk Add-on for AppDynamics contains seven input types:

High Level Status
Database Metrics
Hardware Metrics
Analytics Search
Secure Application Data
Events Data
Custom Metrics
Application BT Snapshots
Controller Audit Records
Controller License Usage

This TA is required for the Content Pack for Splunk AppDynamics https://docs.splunk.com/Documentation/CPAppDynamics/latest/CP/About

Splunk Add-on for AppDynamics

To learn more about the add-on, see the documentation at https://docs.splunk.com/Documentation/AppD/latest/AddOn/About.

Release notes

v3.1.4: Minor bug fixes, Changed the self signed search support to be a hidden config option in the ./default/splunk_ta_appdynamics_settings.conf called "verify_ssl" You need to change this setting from True to False in that file to support self signed ssl certificates.
v3.1.3: Converted custom checkbox tree to the new UCC checkboxtree, fixed a bug in adding analytics configurations when analytics is empty, added scripts to allow for customers to support non signed ssl certificates on an AppDynamics Controller (./bin/enabled_self_signed_cert_support.sh), fixed a bug in processing attack data from secureapp, cleaned up a vacuously true error when trying to flush an empty backlog
v3.1.2: Fixed an error when running on splunk v10, BT status was returning bad data after the last minor release, and Custom Data Input Validation was to strict and not allowing valid metric paths that happened to have no data, that is fixed to allow valid metrics, so long as a metric id exists.
v3.1.1: Removed the recently added support for self signed ssl certificates on the controller. Splunk Cloud does not allow TAs that support this capability.
v3.1.0: Minor update to the last release. Added 3 new input types: Application Snapshots, Controller Audit Logs, and Controller License Usage. Added missing support for proxy connections. Corrected missing references to configured timeout limits for http requests. Some other minor bug fixes. This version also includes improvements designed to work with Splunk Enterprise Security, using ingested data to provide application security insights with Secure Application. If you see anything that doesn't seem right, please let us know.
v3.0.0: Major rewrite of the technical add-on. Previous inputs and configurations will need to be manually migrated. The new version includes support for high level status of Applications, Databases, Security, Business Transactions and more. Configuration is greatly simplified and where possible selections are all generated from data within your Splunk AppDynamics Controller. This version has been written to be augmented with a future ITSI Content Pack designed specifically to make use of the data ingested.
v2.0.8: Last of the legacy versions, this has been updated to correct an authentication issue with the latest controller versions and the old TA. This version is still unsupported, but the fix here was pretty simple and will allow for longer transition timelines for customers with complex environments.

Prerequisites

Splunk AppDynamics collector URL (host and port)
Splunk AppDynamics API key and secret, with permissions to read data

Installation

To learn more about installing the add-on, see https://docs.splunk.com/Documentation/AppD/latest/AddOn/Install.

Supported inputs with permissions

The Splunk Add-on for AppDynamics contains seven input types:
- High Level Status (read access to the needed data)
- Database Metrics (read access to databases)
- Hardware Metrics (read access to applications)
- Analytics Search (analytics api key permissions)
- Secure Application Data (secureapp read access)
- Events Data (read access to applications)
- Custom Metrics (read access to applications)
- Application Snapshots (read access to applications)
- Controller Audit Logs (account owner role)
- Controller License Usage (account owner role)

Create searches and view logs

Once the Splunk Add-on for AppDynamics is installed and configured, you can execute searches. For more details, see https://docs.splunk.com/Documentation/AppD/latest/AddOn/Search.

To view the logs for this add-on, see https://docs.splunk.com/Documentation/AppD/latest/AddOn/Troubleshoot#View_logs.

To Support Self Signed Controller Certificates

Edit the <Splunk Home>/Splunk_TA_AppDynamics/default/splunk_ta_appdynamics_settings.conf Modify the attribute named "verify_ssl" You need to change this setting from True to False in that file to support self signed ssl certificates. Splunk does not allow SSL validation to be optional, because random numbers can not be trusted for some reason.

Release Notes

Version 3.1.4

June 18, 2025

Minor bug fixes, added appdlinks spl command to decorate log observer connect data with deeplinks back to the AppDynamics controllers. use "| appdlinks" to add links to that log observer connect search. Changed the self signed search support to be a hidden config option in the ./default/splunk_ta_appdynamics_settings.conf called "verify_ssl" You need to change this setting from True to False in that file to support self signed ssl certificates.

Version 3.1.3

May 21, 2025

Fixed some minor issues and input configuration descriptions to be more clear, based on feedback, also some more: * fixed some secure app input bugs * moved from the custom events checkbox tree to the new ucc featured one, much prettier * updated some analytics permissions checks on config

Version 3.1.2

March 18, 2025

fixed two issues: * BT status was returning bad data after the last minor release. * Custom Data Input Validation was to strict and not allowing valid metric paths that happened to have no data, that is fixed to allow valid metrics, so long as a metric id exists.

Version 2.0.8

March 6, 2025

This patch version of the unsupported v2 of the TA contains a fix to the authentication handlers to allow the old TA to keep working

Version 3.0.0

Feb. 4, 2025

https://docs.splunk.com/Documentation/AppD/3.0.0/AddOn/About

Version 2.0.7

June 25, 2024

Added Health-Rules API Input
Various improvements to documentation
Minor typo and bug fixes
Fix for sourcetype naming

Full change log here:
https://github.com/splunk/splunk_TA_AppDynamics/compare/v2.0.1...v2.0.6

20,282

Downloads

Share Subscribe

Version

Built by

Splunk Works

Contributors

Tom Martin
David Connett
Tapan Shah
Isha Gandhi
John Southerland
Balasubrahmanyam Pillalamarri
John Southerland

Support

Developer Supported

Contact Developer Questions on Splunk Answers Flag as inappropriate

App Contents: Inputs