Getting to Know Splunk: The Hands-On Administration Guide
- 4 hours on-demand video
- 2 downloadable resources
- Full lifetime access
- Access on mobile and TV
- Certificate of Completion
Get your team access to 4,000+ top Udemy courses anytime, anywhere.Try Udemy for Business
- Building a development Splunk environment from scratch on a Linux server
- Onboarding data into Splunk
- Understanding the importance of the Common Information Model (CIM)
- Normalizing data using Splunk apps
- Developing basic reports and dashboards using your new Splunk instance
- Understanding why leaving systems exposed to the Internet is a bad idea
- No previous (administrator or user) Splunk experience is necessary. The purpose of this course is to begin at the fundamentals, so you can get started and advance your skills from there.
- You will need a computer with a web browser and SSH client, as well as a Linux instance to use as your Splunk host. An Amazon Web Services (AWS) Ubuntu image will mirror the instructor examples in the lab activities - and I'll provide steps to duplicate my environment for you to use if you want.
- Familiarity with Linux command line is a plus, though not a requirement. I’ll be walking you through the steps as we go.
It's time for you to learn how to navigate Splunk and dominate big data!
Are your log files attempting to overthrow you? Have you heard of Splunk, but don't know how to wield it for the greater good of your data, or that of your enterprise? Have you used Splunk, but want to learn how to set it up and build it out properly? If so, this class is for you.
In this course, Tom will be teaching you how to get started with Splunk from the ground up. You'll learn the basics of Splunk terminology, along with how to use the Splunk web interface to find the data you're looking for. You'll build your own Splunk environment, add and normalize data to the Common Information Model (CIM), create dashboards, and find events in your data. Finally, you'll gain some more advanced searching techniques that will be particularly beneficial to those in network, security, and system administration roles.
This course is unique in that it does not require you to have a pre-existing Splunk environment - you'll actually be building and administering the Splunk system you will use to complete the lab activities.
- Anyone looking to get started with Splunk administration.
- If you have used Splunk for searching but have never brought in data or installed the software.
- Individuals responsible for administering a Splunk environment but don't have much experience with running this software.
Welcome to this course! This section will introduce the course and establish expectations for your learning outcomes. Go ahead and download a copy of the slides now so that you have them for reference later.
This section will introduce the goals and methodologies for this course. You'll need a Splunk account, and a Linux machine to complete the lab activities. If you're interested in using an Amazon Web Services (AWS) virtual machine for this course, see the last lecture in this section for a demonstration on how to get this set up.
The labs for this class are are designed around an Amazon Web Services (AWS) Linux environment. No experience with AWS? No problem. This optional section will show you how to set up an environment within AWS that will work for completing the labs within the course. If you have worked with AWS before, or are using a virtual machine on a different platform, feel free to skip this section.