Splunk Fundamentals 1

Course Objectives
 

Module 1 – Introducing Splunk

• Understand the uses of Splunk
• Define Splunk Apps
• Learn basic navigation in Splunk

Module 2 – Searching

• Run basic searches
• Use autocomplete to help build a search
• Set the time range of a search
• Identify the contents of search results
• Refine searches
• Use the timeline
• Work with events
• Control a search job
• Save search results

Module 3 – Using Fields in Searching

• Understand fields
• Use fields in searches
• Use the fields sidebar
• Use search modes (fast, verbose, and smart)

Module 4 – Creating Reports and Dashboards

• Save a search as a report
• Edit reports
• Create reports that display statistics (tables)
• Create reports that display visualizations (charts)
• Create a dashboard
• Add a report to a dashboard
• Edit a dashboard

Module 5 – Splunk's Search Language Fundamentals

• Understand the search pipeline
• Understand search syntax concepts
• Use the following commands to perform searches: tables, rename, fields, dedup, sort

Module 6 – Using basic Transforming Commands

• The top command
• The rare command
• The stats command

Module 7 – Creating and Using Lookups

• Describe lookups 
• Examine a lookup file example
• Create a lookup file and create a lookup definition
• Configure an automatic lookup
• Use the lookup in searches

Module 8 – Creating Alerts and Scheduled Reports

• Describe scheduled reports
• Configure scheduled reports
• Describe alerts
• Create alerts
• View fired alerts

Module 9 – Creating and Using Macros

• Describe macros
• Create and use a basic macro
• Define arguments and variables for a macro
• Add and use arguments with a macro

Module 10 – Creating Data Models

• Describe the relationship between data models and pivot
• Identify data model attributes
• Create a data model
• Use a data model in pivot