In this comprehensive two-day course, you will learn the essential fundamentals of using Splunk for operational intelligence and machine data analysis. You will become familiar with the Splunk interface, learn how to bring data into the system, and master searching and reporting capabilities. Additionally, you will develop the ability to create alerts and dashboards that help identify problems and track important trends over time. Data models and Pivots are also explored to enhance your analytical capabilities.
Splunk represents an industry leader in operational intelligence and analytics. With Splunk, machine-generated data becomes accessible, usable, and valuable to both IT professionals and business users throughout the organization.
Prerequisites
You should have a general understanding of the Windows operating system interface and basic computer operations.
Splunk Getting Started
- Installing Splunk on your system
- Creating a Splunk App for custom functionality
- Populating data with Eventgen for testing
- Controlling Splunk processes and operations
- Configuring Eventgen for data generation
- Viewing the Destinations app
- Creating your first dashboard for data visualization
Bringing in Data
- Splunk and big data handling capabilities
- Understanding Splunk data sources
- Creating Indexes for data storage
- Understanding buckets and data organization
- Using log files as data input sources
- Understanding Splunk events and fields
- Extracting new fields from raw data
Search Processing Language
- Understanding the anatomy of a search
- Using time modifiers for temporal queries
- Filtering search results effectively
- Using additional search commands
Reporting, Alerts, and Search Optimization
- Data classification with event types
- Data normalization with tags
- Data enrichment with lookups
- Creating and scheduling reports
- Creating alerts for important events
- Applying search and report acceleration
- Understanding scheduling options
- Using summary indexing
Dynamic Dashboarding
- Creating effective dashboards for visualization
- Understanding types of dashboards available
- Using form inputs for interactivity
- Creating a time range input control
- Building static real-time dashboards
- Creating a choropleth map
Data Models and Pivots
- Creating a data model for analysis
- Applying data model acceleration
- Rearranging your dashboard