Splunk Power User Fast Start (POWER-U)

Ziele der Schulung

This Power User "Fast Start" course covers over 60 commands, functions, and knowledge objects to provide users with actionable information about searching best practices and knowledge management. Students will learn how to effectively utilize time in searches, work with different time zones, use transforming commands and eval functions to calculate statistics, compare field values with eval functions and eval expressions, manipulate output, normalize fields and field values, correlate and filter data from multiple sources, and create, manage, and share knowledge objects.

This series consists of eight modules with 24 hours of content over 4 days.

• Utilize over 60 commands and functions to transform, manipulate, normalize, correlate, and filter data.

• Filter data using time modifiers and time commands and use formatting functions to accommodate various time formats.

• Calculate statistics using transforming commands and mathematical and statistical eval functions.

• Compare, manipulate, and normalize data using several commands including the all-powerful eval command and an array of statistical, comparison, conditional, and formatting functions.

• Calculate co-occurrence between fields and analyze data from multiple datasets.

• Create, curate, manage and share knowledge objects.

• Working with Time (WWT)

• Statistical Processing (SSP)

• Comparing Values (SCV)

• Result Modification (SRM)

• Correlation Analysis (SCLAS)

• Creating Knowledge Objects (CKO)

• Creating Field Extractions (CFE)

• Data Models (SDM)

Zielgruppe Seminar

• Splunk Administrator

Voraussetzungen

To be successful, students should have a solid understanding of the following:

• How Splunk works
• How to create basic searching and visualizations

Seminarinhalt

Topic 1 – Working with Time

• Formatting Time
• Comparing Index Time versus Search Time
• Using Time Commands
• Working with Time Zones

Topic 2 – Statistical Processing

• What is a Data Series?
• Transforming Data
• Manipulating Data with eval
• Formatting Data

Topic 3 – Comparing Values

• Using eval to Compare
• Filtering with where

Topic 4 – Result Modification

• Manipulating Output
• Modifying Results Sets
• Managing Missing Data
• Modifying Field Values
• Normalizing with eval

Topic 5 – Correlation Analysis

• Calculate Co-Occurrence Between Fields
• Analyze Multiple Datasets

Topic 6 – Intro to Knowledge Objects

• What are Knowledge Objects?
• Knowledge Object Settings
• Managing Knowledge Objects

Topic 7 – Creating Knowledge Objects

• Knowledge Objects and Search-time Operations
• Creating Event Types
• Using Event Type Builder
• Creating Workflow Actions
• Creating Tags and Aliases
• Creating Search Macros

Topic 8 – Creating Field Extractions

• Using the Field Extractor
• Creating Regex Field Extractions
• Creating Delimited Field Extractions

Topic 9 – Data Models

• Introducing Data Model Datasets
• Designing Data Models
• Creating a Pivot
• Accelerating Data Models

Hinweise

Partner

Dieses Seminar bieten wir in Kooperation mit unserem Splunk Learning Partner Fast Lane Institute for Knowledge Transfer GmbH an.

Open Badge für dieses Seminar - Ihr digitaler Kompetenznachweis

Durch die erfolgreiche Teilnahme an einem Kurs bei IT-Schulungen.com erhalten Sie zusätzlich zu Ihrem Teilnehmerzertifikat ein digitales Open Badge (Zertifikat) – Ihren modernen Nachweis für erworbene Kompetenzen.

Ihr Open Badge ist jederzeit in Ihrem persönlichen und kostenfreien Mein IT-Schulungen.com-Konto verfügbar. Mit wenigen Klicks können Sie diesen digitalen Nachweis in sozialen Netzwerken teilen, um Ihre Expertise sichtbar zu machen und Ihr berufliches Profil gezielt zu stärken.

Übersicht: Splunk Schulungen Portfolio

Mehr zu den Vorteilen von Badges

Gesicherte Kurstermine