Description
Part 1: Splunk Architecture, Splunk SPL(Search Processing Language) and Splunk Knowledge ObjectsGoal: In this module, readers will be given a detailed idea about current splunk architecture.They will learn how to fire splunk queries using splunk SPL(Search Processing Language) and will look into all the modules provided by splunk to analyze data and will cover all modules necessary to pass power user exam which covers splunk knowledge objects in detail.This module is basic module where we create base for candidate to pass splunk admin exam.Chapter 1: Overview Of SplunkChapter 2: Splunk Search Processing LanguageChapter 3: Macros, Field Extraction and Field Aliases Chapter 4: Tags, Lookups and Correlating EventsChapter 5: Datamodels, Pivot and CIM in SplunkChapter 6: Knowledge Manager and Dashboard in SplunkChapter 7: Splunk User/Power User Exam set
Part 2: Splunk Data Administration and System AdministrationGoal: In this module data & system administration are designed in a way that will focus on very important topics that will help candidates to pass splunk admin exam.We will study the roles of a splunk admin. In this module, we will understand the concepts behind splunk Licenses and role management, configuring splunk forwarders, clustering in splunk, getting advanced data input and updating .conf file.
Chapter 8: Splunk Licenses, Indexes and role ManagementChapter 9: Machine Data using Splunk forwarder and clusteringChapter 10: Splunk Advanced Data InputsChapter 11: Splunk Advanced .Conf file and DiagChapter12: Splunk Admin Exam set
Part 3: Advanced SplunkGoal: In this part we will explore some features that are very useful for splunk admins in day to day life like infrastructure planning with search head clustering, troubleshooting in splunk, Advanced Deployment, Roles of splunk architect and splunk best practices . By the end of this module, readers will gain a more advanced insight of splunk. Chapter 13: Infrastructure planning with Indexer and Search Head ClusteringChapter 14: Troubleshooting in SplunkChapter 15: Advanced Deployment in SplunkChapter 16: Advanced SplunkChapter 17: Final Practice setChapter 18: Setting up a Splunk Environment with AWS
Author: Deep Mehta
Publisher: Apress
Published: 03/25/2021
Pages: 430
Binding Type: Paperback
Weight: 1.74lbs
Size: 10.00h x 7.00w x 0.93d
ISBN13: 9781484266687
ISBN10: 1484266684
BISAC Categories:
- Computers | Security | General
- Mathematics | Probability & Statistics | General
Part 2: Splunk Data Administration and System AdministrationGoal: In this module data & system administration are designed in a way that will focus on very important topics that will help candidates to pass splunk admin exam.We will study the roles of a splunk admin. In this module, we will understand the concepts behind splunk Licenses and role management, configuring splunk forwarders, clustering in splunk, getting advanced data input and updating .conf file.
Chapter 8: Splunk Licenses, Indexes and role ManagementChapter 9: Machine Data using Splunk forwarder and clusteringChapter 10: Splunk Advanced Data InputsChapter 11: Splunk Advanced .Conf file and DiagChapter12: Splunk Admin Exam set
Part 3: Advanced SplunkGoal: In this part we will explore some features that are very useful for splunk admins in day to day life like infrastructure planning with search head clustering, troubleshooting in splunk, Advanced Deployment, Roles of splunk architect and splunk best practices . By the end of this module, readers will gain a more advanced insight of splunk. Chapter 13: Infrastructure planning with Indexer and Search Head ClusteringChapter 14: Troubleshooting in SplunkChapter 15: Advanced Deployment in SplunkChapter 16: Advanced SplunkChapter 17: Final Practice setChapter 18: Setting up a Splunk Environment with AWS
Author: Deep Mehta
Publisher: Apress
Published: 03/25/2021
Pages: 430
Binding Type: Paperback
Weight: 1.74lbs
Size: 10.00h x 7.00w x 0.93d
ISBN13: 9781484266687
ISBN10: 1484266684
BISAC Categories:
- Computers | Security | General
- Mathematics | Probability & Statistics | General
About the Author
Deep Mehta is a AWS Certified Associate Architect, Docker Certified Associate, Certified Splunk Architect (ongoing), and Certified Splunk User, Power User, and Admin. He's worked on the Splunk platform since 2017 having experience consulting in the telecommunication, aviation, and healthcare industries. Apart from being passionate about big data technologies, he also loves playing squash and badminton.