Splunkのトレーニング + 認定
Splunk Fundamentals 3
- 無料コース
-
ラーニングパス
- ユーザー向けコース
- Splunk 管理者向けコース
- Splunk Cloud お客様向けコース
-
Splunk アーキテクト向けコース
- 概要
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Creating Dashboards with Splunk
- Splunk Fundamentals 3
- Advanced Searching and Reporting
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Troubleshooting Splunk Enterprise
- Splunk Enterprise Cluster Administration
- Architecting Splunk Enterprise Deployments
- Administering Splunk Enterprise Security
- アプリケーション開発者向けコース
- Enterprise Security 管理者向けコース
- Enterprise Security エンドユーザー向けコース
- IT Service Intelligence 管理者向けコース
- IT Service Intelligence エンドユーザー向けコース
- Phantom のお客様向けコース
-
認定トラック
- Splunk Core Certified User
- Splunk Core Certified Power User
- Splunk Enterprise Certified Architect
- Splunk Enterprise Certified Admin
- Splunk Certified Developer
- Splunk Enterprise Security Certified Admin
- Splunk IT Service Intelligence Certified Admin
-
Splunk Core Certified Consultant
- 概要
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Architecting Splunk Enterprise Deployments
- Troubleshooting Splunk Enterprise
- Splunk Enterprise Cluster Administration
- Splunk Enterprise Practical Lab
- Creating Dashboards with Splunk
- Advanced Searching and Reporting
-
コース
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- Splunk Fundamentals 3
- Advanced Searching and Reporting
- Creating Dashboards with Splunk
- Advanced Dashboards and Visualizations
- Building Splunk Apps
- Splunk for Analytics and Data Science
- Splunk Infastructure Overview
- Splunk Enterprise System Administration
- Splunk Enterprise Data Administration
- Troubleshooting Splunk Enterprise
- Splunk Enterprise Cluster Administration
- Splunk Cloud Administration
- Architecting Splunk Enterprise Deployments
- Splunk Deployment Practical Lab
- Developing with Splunk's REST API
- Administering Splunk Enterprise Security
- Using Splunk Enterprise Security
- Implementing Splunk IT Service Intelligence
- Using Splunk IT Service Intelligence
- Splunk User Behavior Analytics
- Administering Phantom
- Working with Metrics in Splunk
- Developing Phantom Playbooks
- Implementing Splunk SmartStore
- Splunk Workload Management
-
ビデオ
- All Videos
- Splunk Cloud Tutorial
- Installing Splunk Enterprise on Linux
- Installing Splunk Enterprise on Windows
- Getting Data In to Splunk Enterprise (Linux)
- Getting Data In (Windows)
- Getting Data In with Forwarders
- Basic Search in Splunk Enterprise
- Create a Dashboard in Splunk Enterprise
- Splunk Certification Candidate Journey
- Creating Alerts in Splunk Enterprise
- Program Guide + FAQ
-
- ファクトシートをダウンロード
Course Description
This course focuses on additional search commands as well as advanced use of knowledge objects. Major topics include advanced statistics and eval commands, advanced lookup topics, advanced alert actions, using regex and erex to extract fields, using spath to work with self-referencing data, creating nested macros and macros with event types, and accelerating reports and data models.
Instructor-led Training Schedule
Instructor-on-demand
Have 30-day access to content, labs, live chat and a 20-minute scheduled session with an instructor.
Course Prerequisites
- Splunk Fundamentals 1
- Splunk Fundamentals 2
Course Topics
- Advanced Statistical Commands
- Advanced eval Commands
- Advanced Lookups
- Alert Actions
- Advanced Field Creation and Management
- Working with Self-Describing Data and Files
- Advanced Macros
- Using Acceleration Options
Course Objectives
Module 1 – Exploring Statistical Commands
- Performing statistical analysis with functions of the stat
- command
- Using fieldsummary
- Using appendpipe
- Using eventstats
- Using streamstats
Module 2 – Exploring eval Command Functions
- Using conversion functions
- Using data and time functions
- Using string functions
- Using comparison and conditional functions
- Using informational functions
- Using statistical functions
- Using mathematical functions
- Using cryptographic functions
Module 3 – Exploring Lookups
- Including and excluding events based on lookup values
- Using KV Store lookups
- Using external lookups
- Using geospatial lookups
- Using database lookups
- Understanding best practices for lookups
Module 4 – Exploring Alerts
- Referencing lookups in alerts
- Outputting alert results to a lookup
- Logging and indexing searchable alert events
- Using a webhook alert action
Module 5 – Advanced Field Creation and Management
- Using regex
- Using the erex command
- Using the rex command
- Identifying regex best practices
Module 6 – Working with Self-Describing Data and Files
- Using the spath command
- Using the eval command with the spath function
- Extracting fields from table-formatted events with multikv
Module 7 – Advanced Search Macros
- Using nested search macros
- Previewing search macros before executing
- Using tags and event types in search macros
Module 8 – Using Acceleration Options: Reports and Summary Indexing
- Using report acceleration
- Using summary indexing
Module 9 – Using Acceleration Options: Data Models and tsidx Files
- Exploring data models using the datamodel command
- Using data model acceleration
- Working with tsidx files using the tstats command