Splunk Training and Developer

29,219

This is an Edutech Skills program in Splunk apparatus that incorporates Splunk engineer and Splunk organization preparing. As a feature of this Splunk course, you will deal with looking, sharing, saving Splunk results, making labels, producing reports and graphs, introducing and designing Splunk, checking, scaling and ordering enormous volumes of searches and examining it utilizing the Splunk device.

What will you learn in this Splunk training course?

  1. Introduction to Splunk architecture
  2. Installation and configuration of the Splunk tool
  3. Splunk search, cloud and log management
  4. Deploying Splunk visualization, reports and charts
  5. Managing users and indexes on Splunk
  6. Splunk data analysis, calculation and format
  7. Splunk database lookup, execution and security
  8. Splunk log analyzer for web log analysis

Who should take up Splunk online training course?

  • Software Developers and System Administrators
  • Search Analysts, Database Experts and Administrators

What are the prerequisites for taking up this training course?

Knowledge of Data Analytics concepts is beneficial but not essential for taking this Splunk course.

Why should you take up Splunk certification training course?

Splunk is the most popular tool used for parsing huge volumes of machine-generated data and deriving valuable insights from it. This Edutech Skills instructor-led and self-paced training in Splunk Developer and Splunk Administration is your passport to working in the Splunk domain in order to gain a definitive edge when it comes to deploying Splunk in mission-critical applications in the real world in top MNCs and commanding big salaries in the process.

Module 1 – Splunk Development Concepts

1.1 Introduction to Splunk and Splunk developer roles and responsibilities

Module 2 – Basic Searching

2.1 Writing Splunk query for search
2.2 Auto-complete to build a search
2.3 Time range
2.4 Refine search
2.5 Working with events
2.6 Identifying the contents of search
2.7 Controlling a search job

Hands-on Exercise –
Write a basic search query

Module 3 – Using Fields in Searches

3.1 What is a Field
3.2 How to use Fields in search
3.3 Deploying Fields Sidebar and Field Extractor for REGEX field extraction
3.4 Delimiting Field Extraction using FX

Hands-on Exercise –

  1. Use Fields in Search
  2. Use Fields Sidebar
  3. Use Field Extractor (FX)
  4. Delimit field Extraction using FX

Module 4 – Saving and Scheduling Searches

4.1 Writing Splunk query for search, sharing, saving, scheduling and exporting search results

Hands-on Exercise –

  1. Schedule a search
  2. Save a search result
  3. Share and export a search result

Module 5: Creating Alerts

5.1 How to create alerts
5.2 Understanding alerts
5.3 Viewing fired alerts

Hands-on Exercise –

  1. Create an alert in Splunk
  2. View the fired alerts

Module 6 – Scheduled Reports

6.1 Describe and configure scheduled reports

Module 7 – Tags and Event Types

7.1 Introduction to Tags in Splunk
7.2 Deploying Tags for Splunk search
7.3 Understanding event types and utility
7.4 Generating and implementing event types in search

Hands-on Exercise –

  1. Deploy tags for Splunk search
  2. Generate and implement event types in search

Module 8 – Creating and Using Macros

8.1 What is a Macro
8.2 What are variables and arguments in Macros

Hands-on Exercise –

  1. First, you define a Macro with arguments and then use variables with in it

Module 9 – Workflow

9.1 Creating get, post and search workflow actions

Hands-on Exercise –

  1. Create get, post and search workflow actions

Module 10 – Splunk Search Commands

10.1 Studying the search command
10.2 The general search practices
10.3 What is a search pipeline
10.4 How to specify indexes in search
10.5 Highlighting the syntax
10.6 Deploying the various search commands like fields, tables, sort, rename, rex and erex

Hands-on Exercise –

  1. Steps to create a search pipeline
  2. Search index specification
  3. How to highlight syntax
  4. Using the auto complete feature
  5. Deploying the various search commands like sort, fields, tables, rename, rex and erex.

Module 11 – Transforming Commands

11.1 Using top, rare and stats commands

Hands-on Exercise –

  1. Use top, rare and stats commands

Module 12 – Reporting Commands

12.1 Using following commands and their functions: addcoltotals, addtotals, top, rare and stats

Hands-on Exercise –

  1. Create reports using following commands and their functions: addcoltotals and addtotals

Module 13 – Mapping and Single Value Commands

13.1 iplocation, geostats, geom and addtotals commands

Hands-on Exercise –

  1. Track IP using iplocation and get geo data using geostats

Module 14 – Splunk Reports and Visualizations

14.1 Explore the available visualizations
14.2 Create charts and time charts
14.3 Omit null values and format results

Hands-on Exercise –

  1. Create time charts
  2. Omit null values
  3. Format results

Module 15 – Analyzing, Calculating and Formatting Results

15.1 Calculating and analyzing results
15.2 Value conversion
15.3 Roundoff and format values
15.4 Using the eval command
15.5 Conditional statements
15.6 Filtering calculated search results

Hands-on Exercise –

  1. Calculate and analyze results
  2. Perform conversion on a data value
  3. Roundoff numbers
  4. Use the eval command
  5. Write conditional statements
  6. Apply filters on calculated search results

Module 16 – Correlating Events

16.1 How to search the transactions
16.2 Creating report on transactions
16.3 Grouping events using time and fields
16.4 Comparing transactions with stats

Hands-on Exercise –

  1. Generate report on transactions
  2. Group events using fields and time

Module 17 – Enriching Data with Lookups

17.1 Learning data lookups
17.2 Examples and lookup tables
17.3 Defining and configuring automatic lookups
17.4 Deploying lookups in reports and searches

Hands-on Exercise –

  1. Define and configure automatic lookups
  2. Deploy lookups in reports and searches

Module 18 – Creating Reports and Dashboards

18.1 Creating search charts, reports and dashboards
18.2 Editing reports and dashboards
18.3 Adding reports to dashboards

Hands-on Exercise –

  1. Create search charts, reports and dashboards
  2. Edit reports and dashboards
  3. Add reports to dashboards

Module 19 – Getting Started with Parsing

19.1 Working with raw data for data extraction, transformation, parsing and preview

Hands-on Exercise –

  1. Extract useful data from raw data
  2. Perform transformation
  3. Parse different values and preview

Module 20 – Using Pivot

20.1 Describe pivot
20.2 Relationship between data model and pivot
20.3 Select a data model object
20.4 Create a pivot report
20.5 Create instant pivot from a search
20.6 Add a pivot report to dashboard

Hands-on Exercise –

  1. Select a data model object
  2. Create a pivot report
  3. Create instant pivot from a search
  4. Add a pivot report to dashboard

Module 21 – Common Information Model (CIM) Add-On

21.1 What is a Splunk CIM
21.2 Using the CIM Add-On to normalize data

Hands-on Exercise –

  1. Use the CIM Add-On to normalize data

Module 22 – Overview of Splunk

22.1 Introduction to the architecture of Splunk
22.2 Various server settings
22.3 How to set up alerts
22.4 Various types of licenses
22.5 Important features of Splunk tool
22.6 The requirements of hardware and conditions needed for installation of Splunk

Module 23 – Splunk Installation

23.1 How to install and configure Splunk
23.2 The creation of index
23.3 Standalone server’s input configuration
23.4 The preferences for search
23.5 Linux environment Splunk installation
23.6 The administering and architecting of Splunk

Module 24 – Splunk Installation in Linux

24.1 How to install Splunk in the Linux environment
24.2 The conditions needed for Splunk
24.3 Configuring Splunk in the Linux environment

Module 25 – Distributed Management Console

25.1 Introducing Splunk distributed management console
25.2 Indexing of clusters
25.3 How to deploy distributed search in Splunk environment
25.4 Forwarder management
25.5 User authentication and access control

Module 26 – Introduction to Splunk App

26.1 Introduction to the Splunk app
26.2 How to develop Splunk apps
26.3 Splunk app management
26.4 Splunk app add-ons
26.5 Using Splunk-base for installation and deletion of apps
26.6 Different app permissions and implementation
26.7 How to use the Splunk app
26.8 Apps on forwarder

Module 27 – Splunk Indexes and Users

27.1 Details of the index time configuration file
27.2 The search time configuration file

Module 28 – Splunk Configuration Files

28.1 Understanding of Index time and search time configuration filesin Splunk
28.2 Forwarder installation
28.3 Input and output configuration
28.4 Universal Forwarder management
28.5 Splunk Universal Forwarder highlights

Module 29 – Splunk Deployment Management

29.1 Implementing the Splunk tool
29.2 Deploying it on the server
29.3 Splunk environment setup
29.4 Splunk client group deployment

Module 30 – Splunk Indexes

30.1 Understanding the Splunk Indexes
30.2 The default Splunk Indexes
30.3 Segregating the Splunk Indexes
30.4 Learning Splunk Buckets and Bucket Classification
30.5 Estimating Index storage
30.6 Creating new Index

Module 31 – User Roles and Authentication

31.1 Understanding the concept of role inheritance
31.2 Splunk authentications
31.3 Native authentications
31.4 LDAP authentications.

Module 32 – Splunk Administration Environment

32.1 Splunk installation, configuration
32.2 Data inputs
32.3 App management
32.4 Splunk important concepts
32.5 Parsing machine-generated data
32.6 Search indexer and forwarder

Module 33 – Basic Production Environment

33.1 Introduction to Splunk Configuration Files
33.2 Universal Forwarder
33.3 Forwarder Management
33.4 Data management, troubleshooting and monitoring

Module 34 – Splunk Search Engine

34.1 Converting machine-generated data into operational intelligence
34.2 Setting up the dashboard, reports and charts
34.3 Integrating Search Head Clustering and Indexer Clustering

Module 35 – Various Splunk Input Methods

35.1 Understanding the input methods
35.2 Deploying scripted, Windows and network
35.3 Agentless input types and fine-tuning them all

Module 36 – Splunk User and Index Management

36.1 Splunk user authentication and job role assignment
36.2 Learning to manage, monitor and optimize Splunk Indexes

Module 37 – Machine Data Parsing

37.1 Understanding parsing of machine-generated data
37.2 Manipulation of raw data
37.3 Previewing and parsing
37.4 Data field extraction
37.5 Comparing single-line and multi-line events

Module 38 – Search Scaling and Monitoring

38.1 Distributed search concepts
38.2 Improving search performance
38.3 Large-scale deployment and overcoming execution hurdles
38.4 Working with Splunk Distributed Management Console for monitoring the entire operation

Module 39 – Splunk Cluster Implementation

39.1 Cluster indexing
39.2 Configuring individual nodes
39.3 Configuring the cluster behavior, index and search behavior
39.4 Setting node type to handle different aspects of cluster like master node, peer node and search head