I am new to Splunk and tools like it, but I need a tool to use for a project. I was trying to find a tutorial on how to set it up, and run the queries that I need for it to do. The ultimate end goal is that I need to use Splunk to search through IIS files on Windows 2003 for application activity to determine if the applications are inactive or not within a certain time frame. Would someone mind pointing me in the right direction? Thank you!
There is a free online course called Splunk Fundamentals 1 that rocks:
There is also the Splunk Search Tutorial, which you can find here:
Thanks! Appreciate the help. I found the tutorial and the fundamentals 1. The Fundamentals 1 I will need to do at home since video is blocked here. I was playing around with the tutorial using the splunk cloud and it seemed fairly intuitive. It seems my next step may be to browse youtube in my free time for things related to my specific task and/or check out the fundamentals 1 course.
Also, once you are more familiar with searching on Splunk, you can come back and ask a more detailed question. Our community can definitely help you craft specific queries. However, your question will have a better chance of being answered if you have a solid grasp of Splunk basics.
Thanks for posting!