Splunk Enterprise Managed Services
Crest helped Autodesk to improve their Splunk uptime while reducing their Administration costs by 60%.
Home > Case Studies > Splunk Enterprise Managed Services
Executive Summary
Crest helped Autodesk to improve their Splunk uptime while reducing their Administration costs by 60%.
A multi-billion dollar NASDAQ-listed American multinational computer software company headquartered in San Jose, California has historically focused upon the creation of multimedia and creativity software products, with a more recent foray towards digital marketing software.
Business Challenge
The client had purchased a large Splunk license to monitor their infrastructure, applications, and security for its product portfolio. Despite having it deployed with the help of Splunk’s Professional Services with the right architecture, Day 2 operations were a huge challenge. There were frequent outages and as a result, Splunk was not being able to provide the consistent Operational Intelligence as intended.
Customer Solution
After Crest Data took responsibility of maintaining their entire Splunk infrastructure, following changes were made to ensure a stable infrastructure with consistent reliable data:
Setup change management process in place
Created Knowledge Base for the client so that information is captured in a searchable format
Provided basic training to Splunk users within the IT organization on how to get basic things done
Integrated Splunk with ServiceNow and Zenoss to ensure that tickets are created from Splunk Alerts
Migrated Splunk Login to Active Directory for SSO
Created custom visualization dashboards for various Splunk users as per their need
Optimized search queries to improve Splunk performance by a factor of 5X
Configure multiple applications including Enterprise Security, NetApp ONTAP, DNS Analytics, FireEye, Bit9, Splunk SOS, etc.
The Crest Difference
When the organization approached Crest Data for providing Day 2 Support in monitoring & administrating their Splunk infrastructure, the entire Splunk infrastructure had been down for almost an entire week after upgrade to Splunk Enterprise 6.3.