Splunk Administration & Architecture

Description

This course will help professionals to implement Splunk Enterprise into their organizations’ environments. After finishing this course students will know how to install Splunk components and how to configure them in the real world, besides how they will get data into Splunk using the Syslog-ng and universal forwarder. Also, you will find videos about Splunk apps and Splunk cloud.

This course introduces students to what machine data is, and how Splunk can leverage operational intelligence to investigate and respond to incidents in their organizations.

In this course, you will learn the following topics:

· How to install and configure Splunk components. Such as search head, indexer and universal forwarder.

· You will learn to install Syslog-ng and how to forward traffic to Splunk.

· How to forward traffic from Windows and Linux machines to Splunk.

· Install Splunk Add-ons and Apps, such as Microsoft and cisco apps.

· How to upgrade Splunk

· How to build your own Splunk lab and get demo data into it.

· How to get a free Splunk instant and how to get data into the cloud.

This course is very useful for Splunk engineers and admins, and I hope you will enjoy this course, noting that we will keep updating the content and adding topics.

What You Will Learn!

• Install & Configure Splunk
• Understand Splunk Components
• Create the best design for Splunk
• Syslog-ng installation and configuration
• Use Splunk Deployment Server
• Connect Splunk Search head with Indexer
• Get data into Splunk from Network and Security devices "Syslog"
• Get data from using Universal Forwarder
• Splunk Apps and Add-ons
• Use some free Splunk Apps
• Splunk Search Language
• Sending data to Splunk cloud using the universal forwarder

Who Should Attend!

• Information Security Admins
• IT Administrators
• Security Administrators
• Network Engineers
• SOC members

TAKE THIS COURSE