I got some issues with having some logs showing up in Splunk. I managed to get the account login [Fail & Successful] by adding in the PRISM modules but now I need to get the account creation / deletion showing up in Splunk. I can’t seem to find the msg be it account or creation. Is there a need for me to add in other modules as well? I am kinda stuck with this step. Any help would be greatly appreciated.