Confirm that you can reach the Splunk Servers at https://deployment.splunk.uic.edu:8443 or telnet deployment.splunk.uic.edu port 8089 and inputs1.illinoischicago.splunkcloud.com:9997.
Download Splunk Universal Forwarder for windows from https://uofi.app.box.com/splunk ( we are doing our best to keep the package up-to-date). You can also get it from Splunk at https://www.splunk.com/en_us/download/universal-forwarder.html?locale=en_us
Official Splunk page https://docs.splunk.com/Documentation/Forwarder/9.0.1/Forwarder/InstallaWindowsuniversalforwarderfromaninstaller
msiexec.exe /i "C:\TEMP\splunkforwarder-9.1.1-64e843ea36b1-x64-release.msi" WINEVENTLOG_APP_ENABLE=0 WINEVENTLOG_SEC_ENABLE=0 WINEVENTLOG_SYS_ENABLE=0 WINEVENTLOG_FWD_ENABLE=0 WINEVENTLOG_SET_ENABLE=0 AGREETOLICENSE=Yes SERVICESTARTTYPE=auto DEPLOYMENT_SERVER="deployment.splunk.uic.edu:8089" /norestart /l*v "%windir%\Logs\splunkUF_9.1.1.log" /quiet
Double-click the MSI file to start the installation.
The first screen of the installer should pop-up. Select the Check this box to accept the License Agreement check box and the check box for A Splunk Cloud instance.
Click Install to proceed with the installation. The installer runs and displays the Installation Completed dialog box. The universal forwarder automatically starts.
From Windows Control Panel, confirm that the SplunkForwarder service runs.
SplunkForwarder