Home > Vendors > splunk > splk-mvf

Share

SPLK-MVF - Multivalue Fields

This three-hour course is for power users who want to become experts in searching and manipulating multi-value data. Topics will focus on using multi-value Eval functions and multi value commands to create, evaluate, and analyze multi-value data.

Duration: 3.0 hours

Enquire Now

Start learning today!

Click Hereto customize your Training

Objectives

  • What are Multi-value Fields?
  • Create Multi-value Fields
  • Evaluate Multi-value Fields
  • Analyze Multi-value Fields

Content

Topic 1 – What are Multi-value Fields?

  • Define multi-value fields
  • Define self-describing data
  • Understand how JSON data is handled in Splunk
  • Use the spath command to interpret self-describing data
  • Manipulate multi-value fields with mv zip and mv expand
  • Convert single-value fields to multi-value fields with specific commands and functions

Topic 2 – Create Multi-value Fields

  • Create multi-value fields with the make mv command and the split function of the eval command

Topic 3 – Evaluate Multi-value Fields

  • Use the mv count, mv index, and mv filter eval functions to evaluate multi-value fields

Topic 4 – Analyze Multi-value Data

  • Use the mv sort, mv zip, mv join, mv map, and mv append eval functions and the mv expand command to analyze multi-value data

Audience

  • Splunk Administrator
  • Developer
  • User
  • Knowledge Manager
  • Architect

Prerequisites

To be successful, students should have completed the following courses:

  • Search Under the Hood

Certification

product-certification

Course Benefits

product-benefits
  • Career growth
  • Broad Career opportunities
  • Worldwide recognition from leaders
  • Up-to Date technical skills
  • Popular Certification Badges

Splunk Popular Courses

splk-sefs

This "Fast Start" course covers over 60 commands and functions and prepares students to be search experts.

splk-iiss

This course prepares security practitioners to use SOAR to respond to security incidents.

splk-dyd

This course focuses on creating inputs, chain searches, event annotations, and improving dashboard performance.

splk-introdyd

This course focuses on dashboard creation, including prototyping, the dashboard definition, layouts types, adding visualizations, and dynamic coloring.
Enquire Now
bskFyl
By clicking "Submit", I agree to the Terms Of Use and Privacy Policy