Introduction to Splunk Course
1 hour, 52 minutes
Course description
In this course, we will explore some of the features that Splunk Enterprise offers and how to use them. We'll look at what components make the platform work and how we manage these components. How roles and administration are managed, and the security mechanisms that are implemented to protect our data and work within the platform. Lastly, we will go through the troubleshooting process and optimization and check the Splunk Enterprise logs one by one.
Syllabus
Splunk Enterprise troubleshooting and optimization
Video - 00:13:00
In the last video of this course, we will cover basic troubleshooting and optimization, and we will go through the Splunk Enterprise logs one by one, and we will end the module and this course with License Violations.
Splunk Enterprise security
Video - 00:13:00
In this video, we will be exploring the world of Splunk Enterprise security. We will start with user authentication and continue with important topics such as transport security, forwarder security, auditing Splunk activity, SSO with Splunk and LDAP integration.
Splunk Enterprise Users & Administration
Video - 00:18:00
In this video, we will be discussing the five primary personas that use Splunk Enterprise; capacity requirements; and a thorough explanation of the backups. We will analyze the steps of upgrading Splunk Enterprise.
Splunk deployment types
Video - 00:13:00
In this video, we will take a look at Splunk Deployment types. Single-instance deployments and distributed deployments will be the key topics. We will also be learning about Small, Medium and Large Enterprise.
Splunk Enterprise managing components
Video - 00:08:00
In this video, the main topics will be the license master, monitoring console and deployment server. We will take a deep look into the monitoring console and deployment server.
Splunk Enterprise processing components
Video - 00:06:00
In this video, we will dive deeper into forwarders. There are three kinds of forwarders, and each of these forwarders has a part in Splunk Enterprise. We will explain indexers, search heads and deployment servers.
Exploring Splunk Enterprise
Video - 00:31:00
In this video, we will be mainly focusing on uploading data and indexing. We will learn how indexers and uploading works, explore the Add Data page in the Splunk Web and talk about the importance of forwarders.
Splunk Enterprise features
Video - 00:11:00
In this video, we will be discussing Splunk Enterprise features. We will be learning about the dashboard and visualizations of data, how we monitor and report data and utilization of metrics data to boost search performance. We will end the module by exploring Splunk Search Processing Language (SPL).
Unlock 7 days of free training
- 1,400+ hands-on courses and labs
- Certification practice exams
- Skill assessments
Plans & pricing
Infosec Skills Personal
$299 / year
- 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Custom certification practice exams (e.g., CISSP, Security+)
- Skill assessments
- Infosec peer community support
Infosec Skills Teams
$799 per license / year
- Team administration and reporting
- Dedicated client success manager
-
Single sign-on (SSO)
Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
-
Integrations via API
Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
- 190+ role-guided learning paths and assessments (e.g., Incident Response)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Create and assign custom learning paths
- Custom certification practice exams (e.g., CISSP, CISA)
- Optional upgrade: Guarantee team certification with live boot camps
Learn about scholarships and financing with
Award-winning training you can trust
