Splunk Enterprise Data Administration

Splunk Enterprise Data Administration Certification Training Course Overview

The course gives the central learning of Splunk forwarders and techniques to get remote information into Splunk indexers. It covers establishment, design, the executives, observing, investigating of Splunk forwarders and Splunk Deployment Server parts.

Audience:

Anybody inside a specialized job who is associated with the administration of Splunk inside their association or are hoping to become Splunk guaranteed. Past participants have included IT Administrators, DevOps, Security Analysts and Solution Architects.

This course prepares you for Exam Splunk Enterprise Data Adminis. Test your current knowledge Qubits42

Splunk Enterprise Data Administration (16 Hours) Download Course Contents

Live Virtual Classroom 1400
Group Training
01 - 02 Nov GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)
13 - 14 Dec GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)
1-on-1 Training (GTR)
4 Hours
8 Hours
Week Days
Weekend

Start Time : At any time

12 AM
12 PM

GTR=Guaranteed to Run
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request
Special Solutions for Corporate Clients! Click here
Hire Our Trainers! Click here

Course Modules

Module 1: Introduction to Data Administration
  • Splunk overview
  • Identify Splunk data administrator role
Module 2: Getting Data In – Staging
  • List the four phases of Splunk Index
  • List Splunk input options
  • Describe the band settings for an input
Module 3: Configuring Forwarders
  • Understand the role of production Indexers and Forwarders
  • Understand the functionality of Universal Forwarders and Heavy Forwarders
  • Configure Forwarders
  • Identify additional Forwarder options
Module 4: Forwarder Management
  • Explain the use of Forwarder Management
  • Describe Splunk Deployment Server
  • Manage forwarders using deployment apps
  • Configure deployment clients
  • Configure client groups
  • Monitor forwarder management activities
Module 5: Monitor Inputs
  • Create file and directory monitor inputs
  • Use optional settings for monitor inputs
  • Deploy a remote monitor input
Module 6: Network and Scripted Inputs
  • Create network (TCP and UDP) inputs
  • Describe optional settings for network inputs
  • Create a basic scripted input
Module 7: Agentless Inputs
  • Identify Windows input types and uses
  • Understand additional options to get data into Splunk HTTP Event Collector
  • Splunk App for Stream
Module 8: Fine Tuning Inputs
  • Understand the default processing that occurs during input phase
  • Configure input phase options, such as sourcetype fine- tuning and character set encoding
Module 9: Parsing Phase and Data
  • Understand the default processing that occurs during parsing
  • Optimize and configure event line breaking
  • Explain how timestamps and time zones are extracted or assigned to events
  • Use Data Preview to validate event creation during the parsing phase
Module 10: Manipulating Raw Data
  • Explain how data transformations are defined and invoked
  • Use transformations with props.conf and transforms.conf to: Mask or delete raw data as it is being indexed Override sourcetype or host based upon event values Route events to specific indexes based on event content Prevent unwanted events from being index
  • Use SEDCMD to modify raw data
Module 11: Supporting Knowledge Objects
  • Create field extractions
  • Configure collections for KV Store
  • Manage Knowledge Object permissions
  • Control automatic field extraction
Module 12: Creating a Diag
  • Identify Splunk diag
  • Using Splunk diag
Download Course Contents

Request More Information

Course Prerequisites
  • Splunk Fundamentals 1 (Required )
  • Splunk Fundamentals 2 (unequivocally suggested)
  • Splunk System Administration (unequivocally suggested)

 

After completion this course, you will learn following topics:

  • Install and Configure forwarders
  • Get information into a creation situation
  • Maintain and oversee forwarders

Correctly make and look after information sources:

Files

  • Directories
  • Network
  • Scripted
  • Agentless

Understand and work with the information stages

  • Inputs
  • Parsing
  • Indexing

 

Top Trending Technologies

 Cisco Routing and Switching Training & Certification Courses
 Cisco Collaboration Certification Training Courses
 CCNA Certification Training Courses
 Wireless/Cisco Training & Certification Courses
 Cisco Service Provider Training & Certification Courses

FAQ's