Home > Vendors > splunk > splk-mvf

Share

SPLK-MVF - Multivalue Fields

This three-hour course is for power users who want to become experts on searching and manipulating multivalue data. Topics will focus on using multivalue eval functions and multivalue commands to create, evaluate, and analyze multivalue data.

Duration: 3.0 hours

Enquire Now

Start learning today!

Click Hereto customize your Training

Objectives

  • What are Multivalue Fields
  • Creating Multivalue Fields
  • Evaluating Multivalue Fields
  • Analyzing Multivalue Fields

Content

Topic 1 – What are Multivalue Fields?

  • Understand multivalue fields
  • Define self-describing data
  • Understand how JSON data is handled in Splunk
  • Use the spath command to interpret self-describing data
  • Use mvzip and mvexpand commands to manipulate multivalue fields
  • Convert single-value fields to multivalue fields with specific commands and functions

Topic 2 – Creating Multivalue Fields

  • Creating multivalue fields with the makemv command and the split function of the eval command

Topic 3 – Evaluating Multivalue Fields

  • Use the mvcount, mvindex, and mvfilter eval functions to evaluate multivalue fields

Topic 4 – Manipulating Multivalue Data

  • Use the mvsotr, mvzip, mvjoin, mvmap, and mvappend eval functions and the mvexpand command to analyze multivalue data

Audience

Search Experts Knowledge Managers

Prerequisites

To be successful, students should have a solid understanding of the following:

  • How Splunk works
  • Creating Search queries

Certification

product-certification

Course Benefits

product-benefits
  • Career growth
  • Broad Career opportunities
  • Worldwide recognition from leaders
  • Up-to Date technical skills
  • Popular Certification Badges

Splunk Popular Courses

splk-dyd

This course focuses on creating inputs, chain searches, event annotations, and improving dashboard performance.

splk-introdyd

This course focuses on dashboard creation, including prototyping, the dashboard definition, layouts types, adding visualizations, and dynamic coloring.

splk-lls

This course will focus on lookup commands and explore how to use subsearches to correlate and filter data from multiple sources

splk-wtime

This course will focus on searching and formatting time in addition to using time commands and working with time zones.
Enquire Now
 
 
 
 
zswOsz
By clicking "Submit", I agree to the Terms Of Use and Privacy Policy