Splunk 9.x enterprise certified admin guide : ace the Splunk Enterprise Certified Admin exam with the help of this comprehensive prep guide

Splunk 9.x enterprise certified admin guide ace the Splunk Enterprise Certified Admin exam with the help of this comprehensive prep guide

The IT sector's appetite for Splunk and skilled Splunk developers continues to surge, offering more opportunities for developers with each passing decade. If you want to enhance your career as a Splunk Enterprise administrator, then Splunk 9.x Enterprise Certified Admin Guide will not only aid...

Descripción completa

Detalles Bibliográficos
Otros Autores: Yarlagadda, Srikanth, author (author)
Formato: Libro electrónico
Idioma:Inglés
Publicado: Birmingham, England : Packt Publishing [2023]
Edición:First edition
Materias:
Big data > Data processing.
Data mining.
Automatic data collection systems.
Electronic data processing.
Ver en Biblioteca Universitat Ramon Llull:https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009764836006719
Tabla de Contenidos:
  • Cover
  • Title Page
  • Copyright and Credit
  • Dedicated
  • Contributors
  • Table of Contents
  • Preface
  • Part 1: Splunk System Administration
  • Chapter 1: Getting Started with the Splunk Enterprise Certified Admin Exam
  • Introducing the certification exam
  • The weightage of topics in the exam
  • Introducing the exam's test pattern
  • True or false category
  • Single-answer category
  • Multiple-choice category
  • What is Splunk Enterprise?
  • Introducing Splunk Enterprise 9.x features
  • Understanding Splunk components
  • Processing components
  • Management components
  • Splunk Validated Architectures (SVAs)
  • Single-server deployment
  • Distributed non-clustered deployment
  • Distributed cluster deployment and SHC - single-site
  • Distributed clustered deployment and SHC - multi-site
  • Splunk installation - standalone
  • Installation system requirements
  • Installation steps
  • Summary
  • Self-assessment
  • Reviewing the answers
  • Chapter 2: Splunk License Management
  • Introducing license types
  • The Splunk Enterprise Trial license
  • The Splunk Free license
  • The Forwarder license
  • The Splunk Enterprise license
  • The Splunk Enterprise infrastructure license
  • Splunk Developer license
  • Understanding license warnings and violations
  • How licensing works
  • Installing, managing, and monitoring licenses
  • Adding a license
  • License groups, stacks, and pools
  • License manager and license peers
  • License usage and alerting
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 3: Users, Roles, and Authentication in Splunk
  • Users
  • Creating a new user
  • Roles
  • Creating a new role
  • Authentication methods
  • Native Splunk
  • LDAP
  • SAML
  • MFA
  • Scripted authentication
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 4: Splunk Forwarder Management
  • Introducing the universal forwarder.
  • Configuring the Deployment Server
  • Configuring serverclass
  • Installing the universal forwarder
  • Installation in Windows OS
  • Installation in Linux OS
  • Configuring forwarding
  • Configuring deploymentclient
  • Forwarder monitoring
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 5: Splunk Index Management
  • Understanding Splunk indexes
  • Understanding buckets
  • Creating Splunk indexes
  • Splunk Web
  • CLI
  • indexes.conf explained
  • Backing up indexes
  • Monitoring Splunk indexes
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 6: Splunk Configuration Files
  • Understanding conf files
  • File format and access
  • Structure and syntax
  • Config layering and inheritance
  • Default stanzas and global settings
  • Merging multiple conf files
  • Understanding conf file precedence
  • Search-time precedence
  • Index-time precedence
  • Troubleshooting conf files using the btool command
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 7: Exploring Distributed Search
  • Understanding distributed search
  • Search head and indexer clustering overview
  • Search head clustering
  • Indexer clustering
  • Configuring distributed search
  • The Splunk CLI
  • Splunk Web
  • Understanding knowledge bundles
  • Knowledge bundle replication
  • Summary
  • Self-assessment
  • Reviewing answers
  • Part 2: Splunk Data Administration
  • Chapter 8: Getting Data In
  • Understanding Splunk data inputs
  • Understanding metadata fields
  • Source types
  • Data indexing phases
  • Input
  • Parsing
  • Indexing
  • Splunk Web - Add Data feature
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 9: Configuring Splunk Data Inputs
  • File and directory monitoring
  • Handling network data input
  • TCP and UDP input
  • Discussing scripted inputs
  • Understanding HEC input
  • Configuring HEC
  • Sending data to HEC.
  • Exploring Windows inputs
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 10: Data Parsing and Transformation
  • Parsing phase settings
  • props.conf settings
  • Transformation settings - transforms.conf
  • Data anonymization
  • Overriding source types
  • Index re-routing
  • Dropping unwanted events
  • Splunk Web data preview
  • Creating the source type definition
  • Data masking
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 11: Field Extractions and Lookups
  • Understanding fields and lookups
  • Fields
  • Lookups
  • Creating search-time field extractions
  • Delimited data extractions
  • Unstructured data extractions
  • Creating index-time field extractions
  • Structured data extractions
  • Unstructured data extractions
  • Creating lookups
  • CSV lookups
  • KV Store lookups
  • Summary
  • Self-assessment
  • Reviewing answers
  • Chapter 12: Self-Assessment Mock Exam
  • Mock exam questions
  • Reviewing answers
  • Index
  • Other Books You May Enjoy.

Ejemplares similares