Splunk Tech Talks
Deep-dives for technical practitioners.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
New Article

Save Time with Intermediate Splunk Search Skills

melissap
Splunk Employee
Splunk Employee
‎03-09-2021 10:43 AM

View our Platform Tech Talk: Save Time with Intermediate Splunk Search Skills  

(view in My Videos)

 

Ramping up on Splunk? Search is one of the most important topics for users looking to get the most out of Splunk. Splunk’s powerful search capabilities allow you to search and investigate your data, regardless of its structure, to find the needle in your data haystack. You can really start to make Splunk work for you if you know proper SPL syntax and how to filter your search before you execute it. Structure your Splunk searches to get the right results the first time. Use eval and statistics commands to enrich and analyze your data. Create actionable search products from your results like lookup tables and KVStore collections to store for continued use.

Tune in to learn about:

  • Search Syntax and Filtering
  • Eval and Stats Commands
  • Data outputs including Lookup Tables and KVStore collections

 

0 Karma
4 Comments
fredd
Explorer
‎03-15-2021 04:23 AM

Are these webinars going to be recorded? If not, are we allowed to record them?

0 Karma
melissap
Splunk Employee
Splunk Employee
‎03-15-2021 11:26 AM

Hi @fredd. Yes, these are recorded. Sign up and you will receive the recording the day after the live airing.

0 Karma
melissap
Splunk Employee
Splunk Employee
‎03-16-2021 11:03 AM

Here is a question that was asked during the live Tech Talk:

Q: Question on the priority of scheduled searches. Is there a way to prioritize searches for a certain user/role over other searches? I understand ad hoc historical searches takes precedence by default, how to change this to get certain user's scheduled searches highest priority?
 
A: See Workload Management feature where you use cgroups etc to setup priorities and schedules for searches https://docs.splunk.com/Documentation/Splunk/8.1.2/Workloads/Aboutworkloadmanagement
0 Karma
melissap
Splunk Employee
Splunk Employee
‎03-16-2021 11:12 AM

Here are additional resources for you to continue on your Journey.

 

Take the training starting with Free Splunk Fundamentals

Check out Search Documentation

Read the Search Best Practices Blog

Ask your questions in the Search section

 

0 Karma
Get Updates on the Splunk Community!

Announcing Scheduled Export GA for Dashboard Studio

We're excited to announce the general availability of Scheduled Export for Dashboard Studio. Starting in ...

Extending Observability Content to Splunk Cloud

Watch Now!   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to leverage ...

More Control Over Your Monitoring Costs with Archived Metrics GA in US-AWS!

What if there was a way you could keep all the metrics data you need while saving on storage costs?This is now ...