Splunk Enterprise Administration: Monitoring and Creating Inputs

In this course you'll learn different techniques and input methods that Splunk Enterprise offers for data ingestion in a secure, reliable and consistent manner from diverse sources and in various formats.
Course info
Level
Intermediate
Updated
Jun 18, 2020
Duration
2h 31m
Table of contents
Course Overview
Introduction
Monitoring Files and Directories
Getting Data from Network Sources
Getting Windows Data In
Scripted Inputs
The HTTP Event Collector (HEC)
Configuring Inputs
Description
Course info
Level
Intermediate
Updated
Jun 18, 2020
Duration
2h 31m
Description

Being able to ingest data in any format from diverse sources is the key feature a log aggregation tool like Splunk should possess. In this course, Splunk Enterprise Administration: Monitoring and Creating Inputs, you'll learn all the data input methods that Splunk offers. First, you'll explore how to monitor files and directories in Splunk. Next, you'll discover how to configure and deploy scripts, network inputs and Splunk HTTP event Collector for data ingestion. Finally, you'll learn how to override default fields and timestamp extraction at index time. When you're finished with this course, you'll have the skills and knowledge of monitoring and creating inputs required for administering data on-boarding process in Splunk.

About the author
About the author

Muhammad Awan is a Senior Splunk Admin in working in Public Sector. Has been associated with Splunk and data science related technologies for a decade. Splunk Certified Admin and Splunk Certified Power User. Microsoft Certified Solutions Exert and Microsoft Certified Solutions Associate (Office 365) MCSA (Messaging).

More from the author
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
[Autogenerated] Hi, everyone. My name is Mohammed Awan and welcome to my Coz Flank Enterprise Administration monitoring and creating inputs. I'm a senior Splunk administrator and the technical lead at a government sector organization in this girl's, we're going to learn in detail different techniques and input methods that Splunk enterprise offers in order to get better in from diverse sources in various prom. It's in a secure, reliable and consistent manner. Some off the major topics that will cover include monitoring files and directories, getting better from network sources, deploying scripted inputs, ingesting Windows specific events and using HDTV event collector for agent less monitoring. We'll also briefly touch some advanced topics like people feels overriding and timestamp extraction towards the end of the scores. By the end off this goes, you'll know how to select best suitable method off data input in Splunk enterprise according to the situation, as well as configuring and customizing it for optimal performance and output. Before beginning the course, you should be familiar with basic Splunk administrative tasks as well as possess some knowledge off Splunk architecture. I hope you'll join me on this journey to learn data input methods in Splunk enterprise with the Splunk Enterprise Administration monitoring and creating import scores at plural side