Configuration

Splunk

• Change the definition of the kaspersky_index macro to the index where you Kaspersky data is indexed.