diff --git a/deployment-apps/Splunk_TA_api-renault/local/props.conf b/deployment-apps/Splunk_TA_api-renault/local/props.conf
new file mode 100644
index 00000000..50da2beb
--- /dev/null
+++ b/deployment-apps/Splunk_TA_api-renault/local/props.conf
@@ -0,0 +1,2 @@
+[_json]
+TRANSFORMS-set=json_transform
\ No newline at end of file
diff --git a/deployment-apps/Splunk_TA_api-renault/local/transforms.conf b/deployment-apps/Splunk_TA_api-renault/local/transforms.conf
new file mode 100644
index 00000000..74643a3e
--- /dev/null
+++ b/deployment-apps/Splunk_TA_api-renault/local/transforms.conf
@@ -0,0 +1,3 @@
+[extract-fields]
+REGEX = \{\"(?<json_data>[^\"]+)\"\}
+FORMAT = $1::$json_data
\ No newline at end of file