Splunk Tips and Tricks to Get More Out of Your Data

Splunk pursues a disruptive vision: to make machine data accessible, usable and valuable to everyone. By monitoring and analyzing everything from customer transactions to network activity, Splunk turns machine data into valuable insights—i.e. operational intelligence.

The Splunk blog is your go-to resource for tips and tricks on how to use Splunk to improve your organization’s operational intelligence. These are some of our most popular posts. We’re betting you’ll find something helpful in at least a few of these, no matter what business you’re in:

• Splunk AWS Quick Start: Deploy Your AWS Splunk Environment In Minutes
  “If I told you that a fully operational Splunk Enterprise deployment in AWS could be yours in a matter of minutes, would you be interested? Sit down, relax, and I’ll tell you all you need to know to have a Splunk Enterprise deployment ready to index; fully configured with indexer replication and search head clustering in less than an hour.”

• From API to easy street within minutes
  “30? 20? …15? It all depends on how well you know your third-party API. The point is that polling data from third-party APIs is easier than ever. CIM mapping is now a fun experience. Want to find out more about what I mean?  Read the rest of this blog and explore what’s new in Add-on Builder 2.1.0.”

• Using machine learning for anomaly detection research
  “Historically there have been many in-depth studies around anomaly detection but recently there was a thesis published by Niklas Netz who took a closer look at different ways to spot anomalies specifically with Splunk.”

• Using Syslog-ng with Splunk
  “What is the best practice for getting syslog data into Splunk? The answer is a dedicated syslog server. Below we discuss the installation, configuration and utilization of syslog-ng as the syslog server for Splunk.“

• ldapsearch is your friend
  “Next to an LDAP browser, ldapsearch is your friend when it comes to configuring Splunk, or any other LDAP capable app for that matter, to authenticate against LDAP as it allows you to test out your configuration purely from command-line and then implement once you know it’s working.”

Ready for more how-tos and walkthroughs? Check out the Tips & Tricks category of the Splunk blog. To browse other topics, select the “Categories” menu at the top of the page.

And if you’d like to receive weekly updates with the latest blog posts, subscribe to our weekly email newsletter! You can choose to be notified of all new content, or only posts in the categories you’re most interested in. We won’t email you more than once a week.

Happy Splunking!

----------------------------------------------------
Thanks!
Richard Brewer-Hay