This Enterprise Security Administrators: Splunk Fundamentals 2 picks up where Splunk 6.6 Fundamentals Part 1 leaves off, focusing on more advanced searching and reporting commands as well as on the creation of knowledge objects. Scenario-based examples and hands-on challenges coach you step-by-step the creation of difficult searches, reports, and charts.
Major topics involve using transforming the commands and visualizations, filtering and the formatting results, correlating events, creating knowledge objects, using field aliases and the calculated fields, creating tags and the event types, using macros, making workflow actions and data models, and normalizing data with the Common Interface Model (CIM).
This 4 virtual-day course focuses on additional SPL commands, using field aliases and calculated fields, creating tags and the event types, using macros, creating workflow actions and the data models, and normalizing data with the CIM.
-
Module 1 - Introduction
-
Module 2 - Beyond Search Fundamentals
-
Module 3 - Using Transforming Commands for Visualizations
-
Module 4 - Using Mapping and Single Value Commands
-
Module 5 - Filtering and Formatting Results
-
Module 6 - Correlating Events
-
Module 7 - Introduction to Knowledge Objects
-
Module 8 - Creating and Managing Fields
-
Module 9 - Creating Field Aliases and Calculated Fields
-
Module 10 - Creating Tags and Event Types
-
Module 11 - Creating and Using Macros
-
Module 12 - Creating and Using Workflow Actions
-
Module 13 - Creating Data Models
-
Module 14 - Using the Common Information Model (CIM) Add-On
0.00 average based on 0 ratings