| Edition |
1. |
| Description |
1 online resource |
|
text file |
| Summary |
Annotation Master the art of getting the maximum out of your machine data using SplunkAbout This Book A practical and comprehensive guide to the advanced functions of Splunk, including the new features of Splunk 6.3 Develop and manage your own Splunk apps for greater insight from your machine data Full coverage of high-level Splunk techniques including advanced searches, manipulations, and visualizationWho This Book Is ForThis book is for Splunk developers looking to learn advanced strategies to deal with big data from an enterprise architectural perspective. It is expected that readers have a basic understanding and knowledge of using Splunk Enterprise. What You Will Learn Find out how to develop and manage apps in Splunk Work with important search commands to perform data analytics on uploaded data Create visualizations in Splunk Explore tweaking Splunk Integrate Splunk with any pre-existing application to perform data crunching efficiently and in real time Make your big data speak with analytics and visualizations using Splunk Use SDK and Enterprise integration with tools such as R and TableauIn DetailMaster the power of Splunk and learn the advanced strategies to get the most out of your machine data with this practical advanced guide. Make sense of the hidden data of your organization the insight of your servers, devices, logs, traffic and clouds. Advanced Splunk shows you how. Dive deep into Splunk to find the most efficient solution to your data problems. Create the robust Splunk solutions you need to make informed decisions in big data machine analytics. From visualizations to enterprise integration, this well-organized high level guide has everything you need for Splunk mastery. Start with a complete overview of all the new features and advantages of the latest version of Splunk and the Splunk Environment. Go hands on with uploading data, search commands for basic and advanced analytics, advanced visualization techniques, and dashboard customizing. Discover how to tweak Splunk to your needs, and get a complete on Enterprise Integration of Splunk with various analytics and visualization tools. Finally, discover how to set up and use all the new features of the latest version of Splunk. Style and approachThis book follows a step by step approach. Every new concept is built on top of its previous chapter, and it is full of examples and practical scenarios to help the reader experiment as they read. |
| Contents |
Cover; Copyright; Credits; About the Author; Acknowledgements; About the Reviewer; www.PacktPub.com; Table of Contents; Preface; Chapter 1: What's new in Splunk 6.3?; Splunk's architecture; The need for parallelization; Index parallelization; Search parallelization; Pipeline parallelization; The search scheduler; Summary parallelization; Data integrity control; Intelligent job scheduling; The app key-value store; System requirements; Uses of the key-value store; Components of the key-value store; Managing key-value store collections via REST; Examples; Replication of the key-value store. |
|
Splunk Enterprise SecurityEnabling HTTPS for Splunk Web; Enabling HTTPS for the Splunk forwarder; Securing a password with Splunk; The access control list; Authentication using SAML; Summary; Chapter 2: Developing an Application on Splunk; Splunk apps and technology add-ons; What is a Splunk app?; What is a technology add-on?; Developing a Splunk app; Creating the Splunk application and technology add-on; Packaging the application; Installing a Splunk app via Splunk Web; Installing the Splunk app manually; Developing a Splunk add-on; Building an add-on; Installing a technology add-on. |
|
Managing Splunk apps and add-onsSplunk apps from the app store; Summary; Chapter 3: On-Boarding Data in Splunk; Deep diving into various input methods and sources; Data sources; Structured data; Web and cloud services; IT operations and network security; Databases; Application and operating system data; Data input methods; Files and directories; Network sources; Windows data; Adding data to Splunk-new interfaces; HTTP Event Collector and configuration; HTTP Event Collector; Configuration via Splunk Web; Managing the Event Collector token; The JSON API format; Authentication; Metadata. |
|
Event dataData processing; Event configuration; Character encoding; Event line breaking; Timestamp configuration; Host configuration; Configuring a static host value -- files and directories; Configuring a dynamic host value -- files and directories; Configuring a host value -- events; Managing event segmentation; Improving the data input process; Summary; Chapter 4: Data Analytics; Data and indexes; Accessing data; The index command; The eventcount command; The datamodel command; The dbinspect command; The crawl command; Managing data; The input command; The delete command; The clean command. |
| Local Note |
eBooks on EBSCOhost EBSCO eBook Subscription Academic Collection - North America |
| Subject |
Big data.
|
|
Big data. |
|
Data mining.
|
|
Data mining. |
|
Database management.
|
|
Database management. |
| Genre/Form |
Electronic books.
|
| ISBN |
1785881213 (electronic book) |
|
9781785881213 (electronic book) |
|
9781785884351 |
|
1785884352 |
| Standard No. |
9781785884351 |
|
