The Complete Splunk Core Certified User Course - Splk-1001

Complete material and sample questions required to pass the Splunk Core Certified User exam, SPLK-1001

What you'll learn

Material required to pass the Splunk Core Certified User exam.

Splunk Components, Installation, Web UI, Apps, Users and Roles.

Using Fields to Search in Splunk.

Getting Data into Splunk.

Basic Searching in Splunk.

Splunk Search Language Fundamentals.

Basic Transforming Commands.

Creating Reports and Dashboards.

Creating and Using Lookups.

Creating Scheduled Reports and Alerts.

Requirements

No prior knowledge of Splunk required.

"The Complete Splunk Essentials Course" (by Rylkim Solutions) on Udemy is recommended.

Description

Hello and welcome to the Splunk Core Certified User Course. This course covers all the material with sample questions required to pass the Splunk Core Certified User exam. This course has no pre-requisites, and is the first step towards becoming a Splunk Core Certified Power User and subsequently a Splunk Certified Admin. The course structure is based on Splunk's official exam blueprint covering Splunk Basics, Basic Searching, Using Fields in Searches, Search Language Fundamentals, Basic Transforming Commands, Creating Reports and Dashboards, Creating and Using Lookups, Creating Scheduled Reports and Alerts.The course is divided into 9 modules. All sections are covered with a clear explanation of concepts followed by demonstrations where applicable. These demonstrations are concatenated with concepts in short videos for better understanding, and ease of reviewing discrete sections of the course. Exam tips have also been included when needed to point out aspects that are mostly likely to appear in your exam.The tutorial data is based on Splunk's online documentation as well as real-time event generated data. We'll show you how to index this data in your own single instance deployment of Splunk so you can follow along with the exercises in this Course. You should end up with a deployment of Splunk with knowledge objects such as reports, alerts, lookups, dashboards created as part of the Course. You can further use your deployment to practice as needed before taking your exam. In most of the course, you'll be representing an Engineer that's getting instructions from their Manager and transforming these into Splunk knowledge that helps get actionable insights from your data.Your instructor has 15 years of IT industry experience in roles that involve getting actionable insights from different data sources, holds 5 Splunk Certifications and has the ability to transform information into a form that is easy to consume, and provide more clarity. This course is based off more than 8 years of direct experience with Splunk, combined with Certifications. The material is organized to demystify Splunk, encourage, and get you going with this very useful centralized log management platform.Good Luck in your Splunk Journey!

Overview

Section 1: Introduction

Lecture 1 Welcome and Introduction

Lecture 2 About Splunk Core Certified User Course

Section 2: Module 1: Splunk Basics

Lecture 3 Module Overview

Lecture 4 What is Splunk?

Lecture 5 Splunk Components

Lecture 6 Splunk Installation

Lecture 7 Splunk Web User Interface (UI)

Lecture 8 Splunk Apps

Lecture 9 Home App

Lecture 10 Search & Reporting App

Lecture 11 Users and Roles

Section 3: Module 2: Getting Data into Splunk

Lecture 12 Module Overview

Lecture 13 Ways to Ingest Data Into Splunk

Lecture 14 Splunk Index Time Process

Lecture 15 Configuring Data Inputs

Lecture 16 Adding Training Data

Section 4: Module 3: Basic Searching in Splunk

Lecture 17 Module Overview

Lecture 18 Overview of Search & Reporting App

Lecture 19 Search with Keywords and Phrases

Lecture 20 Use Wildcards

Lecture 21 Use Boolean Operators

Lecture 22 Use Search Assistant

Lecture 23 Identify Contents of Search Results

Lecture 24 Setting Search Time Range

Lecture 25 Events Timeline

Lecture 26 Manage Search Jobs

Lecture 27 View Search History

Section 5: Module 4: Using Fields in Searches

Lecture 28 Module Overview

Lecture 29 What are Fields?

Lecture 30 Using the Fields Sidebar

Lecture 31 Using Fields in Searches

Lecture 32 Boolean Operators

Lecture 33 Comparison Operators

Lecture 34 Difference between != and NOT

Lecture 35 Search Modes

Lecture 36 Search Best Practices

Section 6: Module 5: Search Language Fundamentals

Lecture 37 Module Overview

Lecture 38 Search Language Components, Syntax and Pipeline

Lecture 39 Search Pipeline Readability

Lecture 40 fields Command

Lecture 41 table and rename Commands

Lecture 42 sort Command

Lecture 43 dedup Command

Section 7: Module 6: Basic Transforming Commands

Lecture 44 Module Overview

Lecture 45 What are Transforming Commands?

Lecture 46 Using the Stats Command

Lecture 47 Stats count Function

Lecture 48 Stats distinct_count Function

Lecture 49 Stats sum and avg Functions

Lecture 50 Stats list and values Functions

Lecture 51 Combining Functions

Lecture 52 Using the top Command

Lecture 53 Using the rare Command

Lecture 54 Formatting Statistics Tables

Lecture 55 Formatting Visualizations

Section 8: Module 7: Creating Reports and Dashboards

Lecture 56 Module Overview

Lecture 57 What are Reports and Dashboards?

Lecture 58 Naming Reports and Dashboards

Lecture 59 Creating a Report

Lecture 60 Run or Edit a Report

Lecture 61 Creating a Dashboard

Lecture 62 Editing a Dashboard

Lecture 63 Clone or Export a Dashboard

Lecture 64 Setting a Default Dashboard in Splunk Home

Section 9: Module 8: Creating and Using Lookups

Lecture 65 Module Overview

Lecture 66 What is a Lookup?

Lecture 67 Types of Lookup

Lecture 68 Creating a CSV Lookup

Lecture 69 Creating a Lookup Definition

Lecture 70 The inputlookup Command

Lecture 71 Create a CSV lookup File from Search

Lecture 72 The lookup Command

Lecture 73 Creating Automatic Lookups

Lecture 74 Time Based Lookups

Section 10: Module 9: Creating Scheduled Reports and Alerts

Lecture 75 Module Overview

Lecture 76 What are Scheduled Reports and Alerts?

Lecture 77 Creating a Scheduled Report

Lecture 78 Manage Scheduled Reports

Lecture 79 Creating Alerts

Lecture 80 Trigger Actions

Lecture 81 View and Edit Alerts

Section 11: Practice Test

Anyone with no knowledge or experience with Splunk.,Have some basic knowledge and experience with Splunk Web.,Want to pass your first Splunk Certification.,Planning to take the Splunk Core Certified Power User and Splunk Certified Admin.