Splunk Training + Certification
Implementing Splunk Data Fabric Search (DFS)
- Free Courses
-
Learning Paths
- Courses for Users
-
Courses for Splunk Administrators
- Overview
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Troubleshooting Splunk Enterprise
- Splunk Enterprise Cluster Administration
- Implementing Splunk SmartStore
- Splunk Workload Management
- Working with Metrics in Splunk
- Implementing Splunk Data Fabric Search (DFS)
- Implementing Splunk Data Stream Processor (DSP)
- Courses for Splunk Cloud Customers
-
Courses for Splunk Architects
- Overview
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Creating Dashboards with Splunk
- Splunk Fundamentals 3
- Advanced Searching and Reporting
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Troubleshooting Splunk Enterprise
- Splunk Enterprise Cluster Administration
- Architecting Splunk Enterprise Deployments
- Courses for App Developers
-
Courses for Enterprise Security Administrators
- Overview
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Creating Dashboards with Splunk
- Splunk Fundamentals 3
- Advanced Searching and Reporting
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Architecting Splunk Enterprise Deployments
- Administering Splunk Enterprise Security
- Courses for Enterprise Security End-Users
- Courses for IT Service Intelligence Administrators
- Courses for IT Service Intelligence End-Users
- Courses for Phantom Customers
- Courses for SignalFx Customers
-
Certification Tracks
- Splunk Core Certified User
- Splunk Core Certified Power User
- Splunk Core Certified Advanced Power User
- Splunk Enterprise Certified Admin
- Splunk Enterprise Certified Architect
- Splunk Certified Developer
- Splunk Enterprise Security Certified Admin
- Splunk IT Service Intelligence Certified Admin
-
Splunk Core Certified Consultant
- Overview
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Architecting Splunk Enterprise Deployments
- Troubleshooting Splunk Enterprise
- Splunk Enterprise Cluster Administration
- Splunk Deployment Practical Lab
- Splunk Fundamentals 3
- Creating Dashboards with Splunk
- Advanced Searching and Reporting
- Core Consultant Labs
- Services Core Implementation
- Splunk Phantom Certified Admin
-
Courses
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Splunk Fundamentals 3
- Advanced Searching and Reporting
- Creating Dashboards with Splunk
- Advanced Dashboards and Visualizations
- Building Splunk Apps
- Splunk for Analytics and Data Science
- Splunk Infrastructure Overview
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Troubleshooting Splunk Enterprise
- Splunk Enterprise Cluster Administration
- Splunk Cloud Administration
- Architecting Splunk Enterprise Deployments
- Working with Metrics in Splunk
- Implementing Splunk SmartStore
- Splunk Workload Management
- Splunk Deployment Practical Lab
- Implementing Splunk Data Stream Processor (DSP)
- Developing with Splunk's REST API
- Administering Splunk Enterprise Security
- Using Splunk Enterprise Security
- Implementing Splunk IT Service Intelligence
- Using Splunk IT Service Intelligence
- Splunk User Behavior Analytics
- Administering Phantom
- Developing Phantom Playbooks
- Advanced Phantom Implementation
- SignalFx Fundamentals Series (eLearning)
- Infrastructure Monitoring Using SignalFx
- Using SignalFx to Monitor Microservices-based Applications
- Automation Using the SignalFx API
- Sending Custom Metrics to SignalFx
- Advanced Monitoring of Microservices Applications Using SignalFx
- Implementing Splunk Data Fabric Search (DFS)
- Services Core Implementation
- Core Consultant Labs
-
Videos
- All Videos
- Splunk Cloud Tutorial
- Installing Splunk Enterprise on Linux
- Installing Splunk Enterprise on Windows
- Getting Data In to Splunk Enterprise (Linux)
- Getting Data In (Windows)
- Getting Data In with Forwarders
- Basic Search in Splunk Enterprise
- Create a Dashboard in Splunk Enterprise
- Splunk Certification Candidate Journey
- Creating Alerts in Splunk Enterprise
-
- Program Guide + FAQ
- Download Fact Sheet
Course Description
This 2-day course is designed for the experienced Splunk system administrators who are looking to manage massive dataset searches using DFS.This hands-on class is designed to provide the essential knowledge for DFS to scale Splunk search capabilities beyond the default limits.The course covers deployment use cases, configurations, DFS search commands, monitoring, and troubleshooting of the implementation.
Instructor-led Training Schedule
Course Prerequisites
Required:
Advanced Searching and Reporting Splunk Cluster Administration
Recommended:
Troubleshooting Splunk Enterprise Splunk Workload Management Architecting Splunk Enterprise Deployments
Course Topics
- Introduction to Splunk Data Fabric Search
- Implement DFS for Big Data Analysis
- Implement DFS for Federated Searches
- Monitoring and managing DFS environment
Course Objectives
Module 1 – Introduction to DFS
- Describe a classic Splunk distributed search flow
- Review Splunk Enterprise deployment options and search
challenges - List key attributes that limit Splunk search jobs
- Describe the benefits of DFS
- Understand new DFS terminology
Module 2 – Implement DFS for Big Data Analysis
- List deployment requirements for DFS Big Data Analysis
- Enable DFS for Big Data Analysis searches
- Run DFS Big Data Analysis searches
- Investigate DFS job details
Module 3 – Implement DFS for Federated Searches
- List deployment requirements for federated searches
- Enable DFS for federated searches
- Run DFS federated search jobs
- Investigate federated search job details
Module 4 – Monitoring and managing DFS Environment
- Monitor DFS environment
- Troubleshoot invalid searches
- List common security mistakes