home

Mobile Endpoint Security

Mobile Endpoint SecuritySecurity Service Edge
Mobile Endpoint SecuritySecurity Service Edge

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Show Contents

Mobile Endpoint Security

Lookout Splunk App Integration

Reviewing the Event Feed

A custom script runs every 60 seconds to retrieve events from the Lookout Cloud that are associated with the API key provided during configuration, without the need to query the API endpoint yourself. All such events have a source value of lookout:



If you are reviewing events from more than one tenant, use the value of the entName field to distinguish between them.

Note:

NOTE: All eventTime values in JSON are returned in Coordinated Universal Time (UTC), and list the time that Lookout generated the event. The value in the Time column is the timestamp that Splunk generates when Lookout pushes a set of events to Splunk.

Last updated: November 20, 2024

lookout-footer

Legal Privacy Policy Cookie Policy Transparency Report Compliance Info Compliance Info (Gov)

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.