Splunk Enterprise 8.1 System Administration

Splunk Enterprise 8.1 System Administration

Splunk Enterprise 8.1 System Administration

Upcoming Classes

Online

Instructor-led online training

Location Jun 2021 Jul 2021 Aug 2021 Sep 2021 Oct 2021 Nov 2021 Dec 2021
EMEA - Central European Time - Virtual (French) Jun 21 – Jun 22
 Sep 13 – Sep 14
EMEA UK Time - Virtual Jun 21 – Jun 22
Jun 28 – Jun 29
 Jul 5 – Jul 6
Jul 5 – Jul 6
Jul 12 – Jul 13
Jul 19 – Jul 20
Jul 19 – Jul 20
Jul 26 – Jul 27
 Aug 2 – Aug 3
Aug 9 – Aug 10
Aug 9 – Aug 10
Aug 16 – Aug 17
Aug 23 – Aug 24
Aug 23 – Aug 24
Aug 31 – Sep 1
 Sep 6 – Sep 7
Sep 6 – Sep 7
Sep 13 – Sep 14
Sep 20 – Sep 21
Sep 20 – Sep 21
Sep 27 – Sep 28
 Oct 4 – Oct 5
Oct 11 – Oct 12
Oct 11 – Oct 12
Oct 25 – Oct 26
Oct 25 – Oct 26
APAC Singapore - Virtual Jun 28 – Jun 29
 Jul 12 – Jul 13
Jul 26 – Jul 27
 Aug 9 – Aug 10
Aug 23 – Aug 24
 Sep 6 – Sep 7
Sep 20 – Sep 21
 Oct 4 – Oct 5
Oct 25 – Oct 26
AMER Pacific Time - Virtual Jul 12 – Jul 13
Jul 19 – Jul 20
Jul 26 – Jul 27
 Aug 2 – Aug 3
Aug 16 – Aug 17
Aug 30 – Aug 31
 Sep 9 – Sep 10
Sep 13 – Sep 14
Sep 20 – Sep 21
Sep 27 – Sep 28
 Oct 4 – Oct 5
Oct 11 – Oct 12
Oct 25 – Oct 26
AMER Eastern Time - Virtual Jul 12 – Jul 13
Jul 12 – Jul 14
Jul 19 – Jul 20
Jul 26 – Jul 27
 Aug 2 – Aug 3
Aug 9 – Aug 10
Aug 13
Aug 16 – Aug 17
Aug 17 – Aug 18
Aug 23 – Aug 24
Aug 30 – Aug 31
 Sep 7 – Sep 8
Sep 13 – Sep 14
Sep 20 – Sep 21
Sep 27 – Sep 28
 Oct 4 – Oct 5
Oct 11 – Oct 12
Oct 25 – Oct 26
AMER Central Time - Virtual (Spanish) Oct 4 – Oct 5

Australia

Location Jun 2021 Jul 2021 Aug 2021 Sep 2021 Oct 2021 Nov 2021 Dec 2021
Ingeniq - Online Jul 12 – Jul 13
 Aug 9 – Aug 10
 Sep 13 – Sep 14
 Oct 11 – Oct 12

Japan

Location Jun 2021 Jul 2021 Aug 2021 Sep 2021 Oct 2021 Nov 2021 Dec 2021
Japan Third Party Co.,Ltd. Aug 23 – Aug 24
 Oct 18 – Oct 19
 Dec 13 – Dec 14

Summary

This 2 virtual day course is designed for system administrators who are responsible for managing the Splunk Enterprise environment. The course provides the fundamental knowledge of Splunk license manager, indexers and search heads. It covers configuration, management, and monitoring core Splunk Enterprise components.

Description

  • Splunk Deployment Overview
  • License Management
  • Splunk Apps
  • Splunk Configuration Files
  • Users, Roles, and Authentication
  • Getting Data In
  • Distributed Search

Duration

2 Days

Objectives

Module 1 - Splunk Server Deployment

  • Provide an overview of Splunk
  • Identify Splunk components
  • Identify the types of Splunk deployments
  • List the steps to install Splunk
  • Use Splunk CLI commands

Module 2 - Splunk Server Monitoring

  • Enable the Monitoring Console
  • Identify Splunk license types
  • Describe license violations
  • Add and remove licenses
  • Use Splunk Diag

Module 3 - Splunk Apps

  • Describe Splunk apps and add-ons
  • Install an app on a Splunk instance
  • Manage app accessibility and permissions

Module 4 - Splunk Configuration Files

  • Describe Splunk configuration directory structure
  • Understand configuration layering process
  • Use btool to examine configuration settings

Module 5 - Splunk Indexes

  • Learn how Splunk indexes function
  • Identify the types of index buckets
  • Adding and working with indexes
  • Overview of metrics index
  • Monitor indexes with Monitoring Console

Module 6 - Splunk Index Management

  • Manage indexes with Splunk web
  • Describe indexes.conf options
  • Monitor indexes with Monitoring Console (MC)
  • Customize index retention policies
  • Back of indexes
  • Delete events from an index
  • Restore frozen buckets

Module 7 - Splunk User Management

  • Add Splunk users using native authentication
  • Describe user roles in Splunk
  • Create a custom role
  • Manage users in Splunk

Module 8 - Configuring Basic Forwarding

  • Identify forwarder configuration steps
  • Configure a Universal Forwarder
  • Identify forwarder configuration files

Module 9 - Distributed Search

  • Describe how distributed search works
  • Explain the roles of the search head and search peers
  • List search head scaling options

 

Prerequisites

Required:

  • Splunk Fundamentals 1
  • Splunk Fundamentals 2

 

Onsite Training

For groups of three or more

Request Quote

Public Training

EMEA - Central European Time - Virtual (French)

EMEA UK Time - Virtual

APAC Singapore - Virtual

AMER Pacific Time - Virtual

AMER Eastern Time - Virtual

Chatswood, NSW

Tokyo

AMER Central Time - Virtual (Spanish)


Don't see a date that works for you?

Request Class

© 2005- Splunk Inc. All rights reserved.
Splunk>, Listen to Your Data, The Engine for Machine Data, Splunk Cloud, Splunk Light and SPL are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners. © Splunk Inc. All rights reserved.