HOT
blank

Splunk – Beginner to Architect

Business

Rating4.6
Enroll Now

Splunk – Beginner to Architect, available at $24.99, has an average rating of 4.55, with 147 lectures, based on 3554 reviews, and has 22777 subscribers.

You will learn about Build Highly Available Clustering Architectures Design and Create Dashboards to detect anomalies Implementing Splunk in Docker Containers Troubleshooting and Industry Best Practices in Managing Splunk This course is ideal for individuals who are Individuals who are looking to have solid foundation in Splunk. It is particularly useful for Individuals who are looking to have solid foundation in Splunk.

Enroll now: Splunk – Beginner to Architect

Summary

Title: Splunk – Beginner to Architect

Price: $24.99

Average Rating: 4.55

Number of Lectures: 147

Number of Published Lectures: 113

Number of Curriculum Items: 147

Number of Published Curriculum Objects: 113

Original Price: $24.99

Quality Status: approved

Status: Live

What You Will Learn

  • Build Highly Available Clustering Architectures
  • Design and Create Dashboards to detect anomalies
  • Implementing Splunk in Docker Containers
  • Troubleshooting and Industry Best Practices in Managing Splunk

Who Should Attend

  • Individuals who are looking to have solid foundation in Splunk.

Target Audiences

  • Individuals who are looking to have solid foundation in Splunk.

Splunk  – Beginner to Architect is a course specifically designed for beginners who intends to master the infrastructure side of Splunk.

This course starts from absolute scratch, and step by step, we build a solid foundation in Splunk to master various aspects related to writing SPL queries, building dashboards, deploying a distributed Splunk architectures, Troubleshooting, Access controls, as well as building highly available clustered setup for Splunk.

We also discuss the traditional and the newer Splunk deployment models, both via the RPM-based approach and the newer Docker containers approach, which provide benefits of deploying Splunk in any platform, including local laptops just within two minutes. This allows quick testing as well as quicker deployments within production environments.

Individuals, post completing this course, will have a solid understanding of Splunk components as well as be able to deploy production level Splunk clusters in their organizations that are highly available and can handle traffic at scale.

With a beginner-friendly course, tons of practicals, easy-to-understand videos, and great Support from our Instructor in case of doubts, this course is all you need to build a solid foundation in Splunk.

With this interesting set of learnings and practicals, I look forward to seeing you in this course.

Course Curriculum

Chapter 1: Getting Started

Lecture 1: Introduction to the Course

Lecture 2: Download Links – Tutorial Data, Samples and Logs

Lecture 3: Our Community

Chapter 2: Introduction to Splunk & Setting Up Labs

Lecture 1: Introduction to Splunk

Lecture 2: Installation Methods for Splunk

Lecture 3: Document – MSSP

Lecture 4: Creating Splunk Account

Lecture 5: Launching Infrastructure for Splunk

Lecture 6: Installing Splunk in Linux

Lecture 7: Document – Splunk Install Commands for Linux

Lecture 8: Installing Splunk in Windows

Lecture 9: Introduction to Docker Containers – New

Lecture 10: Installation Methods for Docker

Lecture 11: Installing Docker in Linux

Lecture 12: Document – Linux Installation Commands

Lecture 13: Installing Docker Desktop

Lecture 14: Document – Docker Desktop

Lecture 15: Deploying Splunk Docker Container

Lecture 16: Document – Deploying Splunk Container Commands

Lecture 17: Notes – Domain 1

Chapter 3: Getting started with Splunk

Lecture 1: Importing Data in Splunk

Lecture 2: Sample Tutorial Logs

Lecture 3: Parsing Authentication Logs

Lecture 4: Security Use-Case – Finding Attack Vectors

Lecture 5: Basics of Search

Lecture 6: Splunk Search Assistant

Lecture 7: Splunk Reports

Lecture 8: Splunk Report – Email Clarification (Followup)

Lecture 9: Understanding Add-Ons and Apps

Lecture 10: Installing Splunk Add-On for AWS

Lecture 11: Overview of Dashboards and Panels

Lecture 12: Building Dashboard Inputs – Time Range Picker

Lecture 13: Building Dashboard Inputs – Text Box

Lecture 14: Building Dashboard Inputs – Drop down

Lecture 15: Notes – Domain 2

Chapter 4: Splunk Architecture

Lecture 1: Directory Structure of Splunk

Lecture 2: Splunk Configuration Directories

Lecture 3: Splunk Configuration Precedence

Lecture 4: Splunk Configuration Precedence – Apps and Locals

Lecture 5: Introduction to Indexes

Lecture 6: Document – Reference Commands

Lecture 7: Bucket Lifecycle

Lecture 8: Warm to Cold Bucket Migration

Lecture 9: Archiving Data to Frozen Path

Lecture 10: Thawing Process

Lecture 11: Splunk Workflow Actions

Lecture 12: Notes – Domain 3

Chapter 5: Forwarder & User Management

Lecture 1: Overview of Universal Forwarders

Lecture 2: Installing Universal Forwarder in Linux

Lecture 3: Installation Manual – Splunk Universal Forwarder

Lecture 4: Challenges in Forwarder Management

Lecture 5: Introduction to Deployment Server

Lecture 6: Document – Enable Deployment Server

Lecture 7: ServerClass and Deployment Apps

Lecture 8: Document – Connecting to Deployment Server

Lecture 9: Pushing Custom Add-On via Deployment Server

Lecture 10: Document – Commands

Lecture 11: Notes – Domain 4

Chapter 6: Post Installation Activities

Lecture 1: Understanding Regular Expressions

Lecture 2: Regex – Exercise

Lecture 3: Parsing Web Server Logs & Named Group Expression

Lecture 4: Sample – Web Server Logs

Lecture 5: Importance of Source Types

Lecture 6: Interactive Field Extractor (IFX)

Lecture 7: props.conf and transforms.conf

Lecture 8: Sample Log – MySQL Error Logs

Lecture 9: Splunk Event Types

Lecture 10: Tags

Lecture 11: Splunk Events Types Priority and Coloring Scheme

Lecture 12: Splunk Lookups

Lecture 13: Splunk Alerts

Lecture 14: Notes – Domain 5

Chapter 7: Security Primer

Lecture 1: Access Control

Lecture 2: Creating Custom Roles & Capabilities

Lecture 3: Notes – Domain 6

Chapter 8: Distributed Splunk Architecture

Lecture 1: Overview of Distributed Splunk Architecture

Lecture 2: Understanding License Master

Lecture 3: Implementing License Master

Lecture 4: License Pools

Lecture 5: Indexer

Lecture 6: Masking Sensitive Data at Index Time

Lecture 7: Search Head

Lecture 8: Splunk Monitoring Console

Lecture 9: Notes – Domain 7

Chapter 9: Indexer Clustering

Lecture 1: Our Community

Lecture 2: Overview of Indexer Clustering

Lecture 3: Infrastructure for Indexer Cluster

Lecture 4: Configuring Master Indexer

Lecture 5: Configuring Peer Indexers

Lecture 6: Testing Replication Capabilities

Lecture 7: Testing Failover Capabilities

Instructors

Rating Distribution

  • 1 stars: 25 votes
  • 2 stars: 58 votes
  • 3 stars: 306 votes
  • 4 stars: 1313 votes
  • 5 stars: 1852 votes

Frequently Asked Questions


How long do I have access to the course materials?


You can view and review the lecture materials indefinitely, like an on-demand channel.


Can I take my courses with me wherever I go?


Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don’t have an internet connection, some instructors also let their students download course lectures. That’s up to the instructor though, so make sure you get on their good side!

You may also like

Top 10 Relationship Building Courses to Learn in November 2024

Top 10 Storytelling Courses to Learn in November 2024

Top 10 Resilience Training Courses to Learn in November 2024