Certifications
This course is part of the following Certifications:
Prerequisites
To be successful, students should have a solid understanding of the following:
- Fundamentals 1 (Retired)
- Fundamentals 2 (Retired)
Or the following single-subject modules:
- What is Splunk? (Retired)
- Intro to Splunk (ITS)
- Using Fields (SUF)
- !SP-IKO
- Creating Knowledge Objects (CKO)
- Creating Field Extractions (CFE)
Course Objectives
- Splunk Cloud overview
- User Authentication and Authorization
- Index Management and Data Retention
- Splunk configuration files
- Cloud Ingestion – Using Splunk forwarders
- Forwarder management
- Data inputs in detail
- Cloud Ingestion – Use API, Scripted, HEC and Applications
- Event Parsing with data preview
- Manipulating raw data
- Installing and managing applications
- Problem isolation and working with Splunk Cloud support
Course Content
This 4-day (18 hour) hands-on course prepares new Splunk administrators to manage users and get data in Splunk Cloud. Topics include data inputs and forwarder configuration, data management, user accounts, and basic monitoring and problem isolation. The course provides administrators with the skills, knowledge and best practices for data management and system configuration for data collection and ingestion in a Splunk Cloud environment to maintain a productive Splunk SaaS deployment.
**Should not be taken in conjunction with the Transitioning to Splunk Cloud course.**
Please note that classes may run across four days, consisting of 4.5 hour sessions each day.