Splunk Architect Master's Training course detail
Description
RCS course Splunk Architect master’s certification program as a organize have to made by manufacturing expert. And give a 360 level preparation in Splunk. This course is type of gain knowledge Splunk raising and organized, by the side of Splunk security intelligence enterprise management ( SIEM) and The training helps in such as integrate and prescription, search index, construction, detail, customized the Splunk system, identify and explore to generate a secure structure for Splunk (SIEM).
What will you learn
Key Features
- 46 Hrs Instructor-led Training
- 80 Hrs Project Work & Exercises
- Flexible Schedule
- 24 x 7 Lifetime Support & Access
- Certification and Job Assistance
Lessons
- 21 Lessons
Introduction to Splunk and Splunk developer roles and responsibilities
Writing Splunk query for search, auto complete to build a search, time range, refine search, working with events, identifying the contents of search, and controlling a search job
Hands-on Exercise - Write a basic search query
What is a Field, how to use Fields in search, deploying Fields Sidebar and Field Extractor for REGEX field extraction and delimiting Field Extraction using FX
Hands-on Exercise – Use Fields in Search, use Fields Sidebar, use Field Extractor (FX) and delimit field Extraction using FX
Writing Splunk query for search, sharing, saving, scheduling and exporting search results
Hands-on Exercise – Schedule a search, save a search result and share and export a search result
How to create alerts, understanding alerts and viewing fired alerts.
Hands-on Exercise –Create an alert in Splunk and view the fired alerts
Describe and configure scheduled reports
Introduction to Tags in Splunk, deploying Tags for Splunk search, understanding event types and utility and generating and implementing event types in search
Hands-on Exercise – Deploy tags for Splunk search and generate and implement event types in search
What is a Macro and what are variables and arguments in Macros
Hands-on Exercise –First, you define a Macro with arguments and then use variables with in it
Creating get, post and search workflow actions
Hands-on Exercise – Create get, post and search workflow actions
Studying the search command, the general search practices, what is a search pipeline, how to specify indexes in search, highlighting the syntax and deploying the various search commands like fields, tables, sort, rename, rex and erex
Hands-on Exercise –Steps to create a search pipeline, search index specification, how to highlight syntax, using the auto complete feature and deploying the various search commands like sort, fields, tables, rename, rex and erex.
Using top, rare and stats commands
Hands-on Exercise – Use top, rare and stats commands
Using following commands and their functions: addcoltotals, addtotals,top, rare and stats
Hands-on Exercise – Create reports using following commands and their functions: addcoltotals and addtotals.
iplocation, geostats, geom and addtotals commands
Hands-on Exercise – Track IP using iplocation and get geo data using geostats
Explore the available visualizations, create charts and time charts, omit null values and format results
Hands-on Exercise – Create time charts, omit null values and format results
Calculating and analyzing results, value conversion, roundoff and format values, using the eval command, conditional statements and filtering calculated search results
Hands-on Exercise – Calculate and analyze results, perform conversion on a data value, roundoff numbers, use the eval command, write conditional statements and apply filters on calculated search results
How to search the transactions, creating report on transactions, grouping events using time and fields and comparing transactions with stats
Hands-on Exercise – Generate report on transactions and group events using fields and time
Learning data lookups, examples and lookup tables, defining and configuring automatic lookups and deploying lookups in reports and searches
Hands-on Exercise – Define and configure automatic lookups and deploy lookups in reports and searches
Creating search charts, reports and dashboards, editing reports and dashboards and adding reports to dashboards
Hands-on Exercise – Create search charts, reports and dashboards, edit reports and dashboards andadd reports to dashboards
Working with raw data for data extraction, transformation, parsing and preview
Hands-on Exercise – Extract useful data from raw data, perform transformation and parse different values and preview
Describe pivot, relationship between data model and pivot, select a data model object, create a pivot report, create in stant pivot from a search and add a pivot report to dashboard
Hands-on Exercise – Select a data model object, create a pivot report, create instant pivot from a search and add a pivot report to dashboard
What is a Splunk CIM and using the CIM Add-On to normalize data
Hands-on Exercise – Use the CIM Add-On to normalize data