Complete Splunk Enterprise Certified Admin Course 2023 (NEW)

سرفصل های دوره

A Complete Lab Deployment with Data Onboarding and Custom Use cases:LEARN Splunk from a former Splunk Architect Employee

1. Introduction

1. Introduction

2.1 splunk resources Udemy.rar

2. Getting started with Splunk

3. What does Splunk do

4. Splunk Components at a glance and Architecture Overview

2. Splunk Components more in Depth

1. Splunk Components in Depth

3. Splunk Installation and best practices

1. Splunk Deployment Prerequisites

2. LAB Deploy Splunk on a Linux Machine

3. LAB Spunk Best Practices - Disable Transparent Huge Pages on Linux

4. LAB Spunk Best Practices - Increase ulimit on Linux

5. LAB Spunk Best Practices - Configure Splunk Enterprise to start at boot time

6. LAB Spunk Best Practices - Post Installation Health Check

7. Deploy Splunk on a Windows Machine

4. Splunk Apps and Add-Ons

1. Introduction to Splunk Apps Add-ons and deploying your first App via the web

2. Deploying Splunk Apps Add-ons via the CLI

5. Splunk Configuration Files precedence and Directory Structure

1. Demo Configuration Files structure

2. Understand Splunk configuration Layering ( Global Context vs AppUser Context )

6. Splunk Indexes

1. Introduction to Splunk Indexes

2. Demo Splunk Indexs Structure

3. Splunk Index - Buckets Life Cycle and Retention Policy

4. LAB Splunk Indexes - Add Splunk Index via the web and CLI

5. Splunk Indexes Backup and deletion

6. The Fishbucket Concept in Splunk

7. Splunk User Management

1. Describe Splunk User roles and create Custom ones

2. LAB Integrate Splunk with LDAP

8. Hands-On Labs Deploy and configure Splunk platform in a distributed environment

1. LAB Discuss and deploy the Universal Forwarder on Linux

2. LAB Configure the UF for monitoring input and forward the logs to the Indexer

3. LAB Discuss and configure the Indexer for log receiving

4. LAB Discuss and deploy the Universal Forwarder on a windows machine

5. LAB configure the Indexer and deploy Windows App on the UF and the Indexer

6. LAB Discuss and deploy the Search Head as part of the distributed Architecture

9. data collection methodology

1. discussion on Data Collection Methods in a distributed environment

2. Discussion on Metadata Fields and data flow (continuation )

3. Why Sourcetype Matters

10. Forwarder Deployment Topologies in a Distributed Architecture Design

1. Data consolidation and Load balancing topology (introduction to Event breaking)

2. Discuss forwarding the data based on Routing and filtering

3. Forwarding the data to the Indexing tier via Intermediate Forwarders

4. Discussion on Why using Universal Forwarders over the Heavy Forwarders

11. LAB Introduction to the Deployment Server and Lab Implementation

1. Introduction to the Deployment Server, Deployment Clients and the Server Class

2. LAB Deploy the Deployment Server and the Deployment Clients

12. data inputs

1. Introduction to data inputs ( data collection methodology )

2. LAB Discuss and deploy the Universal Forwarder and set the monitoring inputs

3. LAB Configure the UF to monitor specific files

4. LAB Introduction to file pathname wildcards & host regex & host segment concept

5. LAB Introduction to using whitelist to include files ( monitor inputs )

6. LAB Configure the Firewall to forward the logs to the UF ( Network Input )

7. LAB Discuss and implement Scripted Inputs

8. LAB Discussion and Implementation of the HTTP Event Collector

13. LAB Deploy Splunk Enterprise (Complete LAB Implantation )

1.1 splunk resources Udemy.rar

1. Lab setup Overview

2. LAB Introduction to AWS and Deploy Splunk Instances on AWS

3. Splunk Deployment Walkthrough in a distributed Environment

4. LAB Deploy Splunk Components and forward the logs to the indexing Tier

5. LAB Deploy UFs, IFs (Linux), UF (Windows) & join them to the Deployment Server

6. LAB Deploy Base Apps to the UFs, IFs & UF on Windows via the Deployment Server

7. LAB Implement different use cases on the Universal Forwarders

8. LAB Deploy the heavy forwarder via the DS and forward Fortigate Firewall Logs

14. LAB Data Onboarding Overview ( LAB continuation )

1. LAB Data Onboarding Overview and working with props.conf and transforms.conf

2. LAB Use Data Preview to validate event creation during the parsing phase

3. LAB Data onboarding - field extractions with props.conf

4. LAB Manipulating the Data using SEDCMD in props.conf

5. LAB Manipulating Raw Data and how to mask the data using props and transforms

189,000 تومان

افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: Udemy-Training