SPLK-CLADM8.2 - Splunk 8.2 Cloud Administration

This 4-day (18 hour) hands-on certification & training course prepares administrators to manage users and get data in Splunk Cloud. Topics include data inputs and forwarder configuration, data management, user accounts, and basic monitoring and problem isolation.

The course provides administrators with the skills, knowledge and best practices for data management and system configuration for data collection and ingestion in a Splunk Cloud environment to maintain a productive Splunk SaaS deployment.

Duration: 4.0 days

Enquire Now

Start learning today!

Click Hereto customize your Training

Objectives

  • Splunk Cloud overview
  • User Authentication and Authorization
  • Index Management and Data Retention
  • Splunk configuration files
  • Cloud Ingestion - Using Spunk forwarders
  • Forwarder management
  • Data inputs in detail
  • Cloud Ingestion - Use API, Scripted, HEC and Applications
  • Event Parsing with data preview
  • Manipulating raw data
  • Installing and managing applications
  • Problem isolation and working with Splunk Cloud support

Content

Module 1 - Splunk Cloud Overview

  • Describe Cloud topology
  • Describe tasks managed by the Splunk cloud administrator
  • List the primary differences between Splunk Cloud and Splunk Enterprise
  • List differences between Self-Service Cloud and Managed Cloud

Module 2 - Index Management

  • Define a Splunk Index
  • Create indexes in cloud
  • Delete data from an index
  • Monitor indexing activities

Module 3 - User Authentication and Authorization

  • Administer Splunk user roles
  • Integrate Splunk with LDAP, Active Directory, or SAML

Module 4 - Splunk Configuration Files

  • Review Splunk Configuration files and directories
  • Review configuration file precedence
  • Review index and search time processes

Module 5 - Cloud Ingestion - Using Splunk Forwarders

  • Review cloud ingestion strategies
  • Understand the role of forwarders in GDI
  • Configure forwarding to Splunk Cloud
  • Monitoring forwarder connectivity
  • Explore optional forwarder settings

Module 6 - Forwarder Management

  • Describe Splunk Deployment Server
  • Explain the use of forwarder management
  • Configure forwarders to be deployment clients
  • Managing forwarders using deployment apps

Module 7 - Monitor Inputs

  • Describe the Splunk process for inputting data
  • Create file and directory monitor inputs
  • Use optional settings for monitor inputs

Module 8 - Cloud Ingestion - Using API, Scripted and HEC Inputs

  • Understand how data is ingested using API
  • Know how to deploy scripted inputs
  • Describe how to use HEC for ingestion

Module 9 - Cloud Ingestion - Application Based Inputs

  • Understand how inputs are managed using in apps or add-ons
  • Describe how customers may use Splunk Stream app
  • Deploy Cloud inputs for use on an IDM

Module 10 - Fine-tuning inputs

  • Describe the default processing that occurs during the input phase
  • Configure input phase options, such as sourcetype fine-tuning and character set encoding

Module 11 - Parsing Phase and Data Preview

  • Describe the default processing that occurs during parsing
  • Optimize and configure event line breaking
  • Explain how timestamps and time zones are extracted or assigned to events
  • Use Data Preview to validate event creation during the parsing phase

Module 12 - Manipulating Raw Data

  • Explain how data transformations are defined and invoked
  • Use transformations with props.conf and transforms.conf to modify raw data
  • Use SEDCMD to modify raw data

Module 13 - Installing and Managing Apps

  • Understand how apps and add-ons are vetted and installed in Cloud
  • Create apps to managing and distribute configurations

Module 14 - Splunk Cloud Support and Troubleshooting

  • Troubleshooting Splunk deployments
  • Collecting data and use diagnostics or monitoring to investigate
  • Overview of how to submit requests with the relevant data for support to troubleshoot

Appendix Explore diagnostic tools and isolation troubleshooting used to investigate and solve issues

Audience

_

Prerequisites

To be successful, students should have a solid understanding of the following courses:

  • Splunk Fundamentals 1
  • Splunk Fundamentals 2

OR the following single-subject courses:

  • What Is Splunk?
  • Intro to Splunk
  • Using Fields
  • Introduction to Knowledge Objects
  • Creating Knowledge Objects
  • Creating Field Extractions

Certification

product-certification

Course Benefits

product-benefits
  • Career growth
  • Broad Career opportunities
  • Worldwide recognition from leaders
  • Up-to Date technical skills
  • Popular Certification Badges

Splunk Popular Courses

splk-dyd

This course focuses on creating inputs, chain searches, event annotations, and improving dashboard performance.

splk-introdyd

This course focuses on dashboard creation, including prototyping, the dashboard definition, layouts types, adding visualizations, and dynamic coloring.

splk-lls

This course will focus on lookup commands and explore how to use subsearches to correlate and filter data from multiple sources

splk-wtime

This course will focus on searching and formatting time in addition to using time commands and working with time zones.
Enquire Now
 
 
 
 
By clicking "Submit", I agree to the Terms Of Use and Privacy Policy