From the course: Splunk Core Certified User (SPLK-1001) Cert Prep
Join today to access over 25,400 courses taught by industry experts.
Module overview - Splunk Tutorial
From the course: Splunk Core Certified User (SPLK-1001) Cert Prep
Module overview
Now, as part of the last two modules, we discussed Splunk installation, and then we went ahead to discuss some of the options that you can use to add data into your Splunk instance. And then after that, we also loaded the tutorial data that we're going to be using for the remainder of this course. Now when you have your data available in Splunk, the first thing that you want to do is to be able to get insights from that data and the first step towards getting insights from the data is being able to search in Splunk. So in this module we are going to discuss how you can perform basic searching in Splunk. So we are going to start with an overview of the search and reporting app. We discussed the search and reporting app before but the overview that we are going to look at here is going to be more focused on the aspects as it relates to how you can search in Splunk and then after that we're going to see how we can search using keywords and phrases, and then we are going to see how we can…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
(Locked)
Module overview1m 41s
-
(Locked)
Overview of search and reporting app2m 56s
-
(Locked)
Search with keywords and phrases12m 27s
-
(Locked)
Use wildcards7m 56s
-
(Locked)
Use boolean operators10m 42s
-
(Locked)
Use search assistant18m 10s
-
(Locked)
Identify contents of search results11m 40s
-
(Locked)
Setting search time range23m 9s
-
(Locked)
Events timeline14m 30s
-
(Locked)
Manage search jobs21m 13s
-
(Locked)
View search history4m 34s
-
(Locked)
-
-
-
-
-
-