Solved: What are the steps to fully enable ES in a company...

danielbb · ‎08-06-2019

We have ES installed and we managed to map a couple of our indexes to the proper data models (using the tags) which we accelerated and then the corresponding dashboards show data and it does look impressive ; -)

So, we started the process. Now I wonder what we need to do to fully enable ES here.

starcher · ‎08-06-2019

I would recommend you begin with the ES training on using and administering it. ES is a platform application there is no simple list of steps.

https://www.splunk.com/en_us/training/courses/using-splunk-enterprise-security.html
https://www.splunk.com/en_us/training/courses/administering-splunk-enterprise-security.html

View solution in original post

starcher · ‎08-06-2019

I would recommend you begin with the ES training on using and administering it. ES is a platform application there is no simple list of steps.

https://www.splunk.com/en_us/training/courses/using-splunk-enterprise-security.html
https://www.splunk.com/en_us/training/courses/administering-splunk-enterprise-security.html

danielbb · ‎08-07-2019

Thank you @starcher.

starcher · ‎08-07-2019

The docs on ES are also good. skimming them is helpful https://docs.splunk.com/Documentation/ES/5.3.0/Admin/Formatassetoridentitylist

danielbb · ‎08-07-2019

Thank you!!

What are the steps to fully enable ES in a company?

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

.conf24 | Registration Open!

ICYMI - Check out the latest releases of Splunk Edge Processor