Splunk Administration Training - Listen to YOUR DATA
Learn from Mr. Vimal Daga - Industry Expert (Splunk Sr. Consultant & Corporate Trainer) with Real Time Use Cases & Industry best practices Learn Splunk to enhance your skill sets on Operational Intelligence and gain insights to surge your business growth. As part of the training you will work on searching, sharing, saving Splunk results, creating tags, generating reports and charts, installing and configuring Splunk, monitoring, scaling and indexing large volumes of searches and analyzing it using the Splunk tool.
| Sr. No. | Status | Training Venue | Batch Schedule | Payment |
|---|---|---|---|---|
| 1 | Registration Open | Bangalore | Training Dates : 26th Jan, 18 To 28th Jan, 18 Time (IST) : Time (IST) : 09:00 am - 5:00 pm (IST) | Register now |
| 2 | Successfully Completed | Bangalore | Training Dates : 09th October, 17 To 11th October, 17 Time (IST) : Time (IST) : 10:00 am - 6:00 pm (IST) | Closed |
| 3 | Successfully Completed | Bangalore | Training Dates : 19th August, 17 To 21st August, 17 Time (IST) : Time (IST) : 10:00 am - 6:00 pm (IST) | Closed |
| 4 | Successfully Completed | Hyderabad | Training Dates : 21st April, 17 & 23rd April, 17 Time (IST) : 10:00 am - 6:00 pm (IST) | Closed |
| 5 | Successfully Completed | Jaipur | Training Dates : 21st February, 17 To 23rd February, 17 Time (IST) : 10:00 am - 6:00 pm (IST) | Closed |
About Vimal Daga: Vimal combines more than a decade of practical knowledge of evolving technologies, including Linux, Open Source and Security. He maintains a passion of learning new dimensions of technology, understanding breakthrough ideas and connecting common men with new media.
Splunk Consulting, Architect, SIEM, Administration, Developing and Training – PwC, WellsFargo, JP Morgan Chase, Deloitte, many more.
More Than 4 years experience in Splunk Entreprise. Deploying large data analytics architectures for customers mainly in the Banking section, Governments and Security companies. Consult and Solutions to Over 30 Splunk projects and over 40 Corporate Batch Trained
Integrating Splunk with Arcsight and Splunk for Security and Risk Analysis including Information Asset Management and SIEM.
- Architecture design and implementation of Splunk solution
- Platform optimization
- Design and implement indexers and search heads Clusters (+migrations)
- Implementing distributed Splunk and ES
- Configuring Splunk heavy forwarders to receive logs using push or pull
- Writing complex correlation searches for data analysis and notable events
- Writing optimized searches for realtime and historical data analysis
- Writing custom apps for field extractions and data normalization
- Developing and deploying customized configuration apps for distributed Splunk
- Writing field extractions for desired fields out of proprietary application data
- Creating reports and correlated alerts for stake holders about application behavior and anomalies
- Data aggregation and summarization by summary indexing and acceleration
- Writing transaction searches and data normalization
- Integrating Splunk with AD servers for ldap authentications or SAML PING FEDERATE, DBs for enrichments, Hadoop servers for parallel processing using Hadoop Connect
- Upgrading stand-alone Splunk to distributed Splunk implementation
- Writing custom inputs, props and transforms to have correct event-breaks, field extractions and transformations
- Strategizing and writing custom configurations for data routing and selective indexing for the location wise forwarders
- Developing interactive dashboards, reports and optimized search queries for users
Splunk is a software platform to search, analyze and visualize the machine-generated data gathered from the websites, applications, sensors, devices etc. which make up your IT infrastructure and business.
Now imagine if you were a SysAdmin trying to figure out what went wrong in your system’s hardware and you stumble upon logs, what would you possibly do? Would you be able to locate in which step your hardware failed you? There is a remote chance that you might be able to figure it out, but even that is only after spending hours in understanding what each word means.
This is where a tool like Splunk comes in handy. You can feed the machine data to Splunk, which will do the dirty work(data processing) for you. Once it processes and extracts the relevant data, you will be able to easily locate where and what the problems were.
- Complex to understand
- In an unstructured format
- Not suitable for making analysis / visualization
This is where a tool like Splunk comes in handy. You can feed the machine data to Splunk, which will do the dirty work (data processing) for you. Once it processes and extracts the relevant data, you will be able to easily locate where and what the problems were.
Forbes says that Big Data related jobs pertaining to unstructured machine data and Internet of Things (IoT) have seen unprecedented growth percentages in excess of 704% globally over the last five years. Specific job roles that promise lucrative Splunk careers include:
- Software Engineer
- Systems Engineer
- Programming Analyst
- Solutions Architect
- Security Engineer
- Technical Services Manager
- Avg. Salary for Splunk Developer: $90,588 PA.
- Splunk has a market share of about 36.2%
- Used by top industries across various business Verticals. Ex: General Communication Inc, Booz Allen Hamilton.
-
24 Hours
- IT Employee
- Information Security
- Business Analytics
- Splunk Beginners
- Seeking Domain Change OR Pay rise for employees
- Bigdata Technology
- Splunking: What does it Mean
- How Should Splunk be Configured
- Identifying Splunk Instance Types
- Hardware Recommendations and Indexers
- Hardware Recommendations and Search Heads
- Splunk Install Packages
- Supported Platforms and Browsers
- Splunk Installation
- Splunk Directory Structure
- The Splunk Command Line Interface
- NIX ñ Run Splunk at Boot
- Splunk Windows Services
- Splunk Processes : Splunkd
- Splunk Processes : Splunk Web
- Apps Installed by Default
- System Settings
- Describing General Settings
- Restarting the Server from Splunk Web License Management
- Managing Licenses
- Splunk License Types
- Adding a License
- License Warnings and violations
- What Counts As Daily License Quota
- Viewing Alerts
- License Staking
- Master License Server
- License Pooling Basic Data Input
- Adding an Input With Splunk Web
- How can you tell what App you are in
- Adding your Monitor Input
- Preview Data
- Specify the Source
- Select Host, Sourcetype and Index Managing Apps
- What is an App
- Apps configured by Default
- Viewing All Apps
- Managing Apps
- Installing an App Manually
- Enabling and Disabling Apps
- Deleting an App
- App Permissions Splunk Configuration Files
- Configuration Directories
- Default vs. Local Configuration
- Global Context vs. User or App Context
- Runtime Merging of Configurations
- Configuration Testing Commands
- Using btool
- Reloading Configuration Files After Edit Universal Forwarders
- Forwarders and Indexers
- Benefits of Using Forwarders
- Splunk Universal Forwarder
- Heavy Forwarder
- Configuration Steps
- Configuring the Receiving Port
- Downloading the Universal Forwarder Installer
- Installing Universal Forwarder Manually
- Forwarder Configuration Files
- Defining Target Indexer on the Forwarder
- Testing the Connection
- Automatic Load Balancing
- Caching/Queue Size in outputs.conf
- Indexer Acknowledgement
- Configuring Forwarder Inputs Overview of Inputs
- Typical Data Input Scenarios
- Data Input Types
- Splunk Index Time Process
- Default Metadata Settings
- Understanding Sourcetypes
- Manual vs. Automatic Sourcetyping Overview of Inputs
- Monitoring Files and Directories
- Monitor Input Syntax
- File Pathname Wildcards
- File and Directory Matching
- Using Whitelist to Include Files
- Using Blacklist to Exclude Files Splunk Indexes
- What are Indexes
- Default Index: Main
- Other Preconfigured Indexes
- Why Create Your Own Indexes
- Buckets
- Data Flow through an Index
- Managing Indexes with Splunk Web
- What is indexes.conf
- Flow of Buckets
- Index Replication and Concept Index Maintenance and Optimization
- Viewing Indexing Activity
- Inspecting Buckets ( dbinspect )
- What to Backup
- Backup Recommendation
- Moving an Entire Index: Checklist
- indexes.conf Only Options
- Removing Indexed Data
- Deleting Events
- Cleaning out an Index
- The Fishbucket
- Restoring a Frozen Bucket Users Roles and Authentications
- Managing Users and Roles
- Defining Custom User Roles
- Describing Role Inheritance
- Defining Role Capabilities
- Managing Users in Splunk Manipulating Raw Data
- Modifying the Raw Data
- Splunk Transformation Methods
- Filtering Unwanted Events
- Indexing Phase Details
-
Installing Splunk
- System Administrators to configure and manage Splunk. Topics include installation, configuring data inputs and forwarders, data management, user accounts, licenses, and troubleshooting and monitoring. .
- The focus in this training is the knowledge, best practices, and configuration details for Splunk administration in a medium to large distributed deployment environment.
- Knowledge of Data Analytics concepts is beneficial but not essential.
- Must have good knowledge of system administration.
- Basics of Linux and Windows helps.
- Anyone from the analytics and IT Operations domain will have a short learning curve while attempting the Administration with Splunk course.
Further Information
If you would like to know more about this course please ping us @ :
call us on 0091 9829105960 / 0091 141 2501609
send an email to training@lwindia.com or training@linuxworldindia.org
