Using Splunk IT Service Intelligence (USISI)

 

Course Overview

This 6-hour course is designed for analyst users who want to use Splunk IT Service Intelligence to manage, analyze, and optimize their IT services. Those who will implement Splunk IT Service Intelligence on behalf of analysts, or will implement Splunk IT Service Intelligence Cloud, please enroll in Implementing Splunk IT Service Intelligence instead.

Prerequisites

To be successful, students should have a working understanding of the following courses:

  • What is Splunk?
  • Intro to Splunk

Optionally:

  • Using Fields
  • Visualizations

Course Objectives

  • IT Service Intelligence features and user interface
  • Monitoring Infrastructure Entities
  • Creating Glass Tables
  • Investigating with Deep Dives
  • Managing Episodes of Notable Event

Outline: Using Splunk IT Service Intelligence (USISI)

Module 1 – Monitoring Services with Service Analyzer

  • Define key service intelligence concepts
  • Describe IT Service Intelligence user roles
  • Examine the IT Service Intelligence user interface
  • Monitor Services with Service Analyzer

Module 2 – Monitoring Entities with Infrastructure Overview

  • Describe what entities are
  • Monitor entity info overviews with Dashboards
  • Monitor entities metrics with the Analytics pane
  • Discover what events the entity is generating

Module 3 – Visualizing Services with Glass Tables

  • Describe glass tables
  • Use glass tables
  • Design glass tables
    • Planning
    • Views
    • Edit mode
      • Top bar controls
      • Configuration bar
      • Visualization types
      • Source
    • Configure glass tables
      • Drilldowns
      • Services and KPIs
      • Ad-hoc searches, including predictive
      • Service swapping

Module 4 – Investigating Issues with Deep Dives

  • Describe deep dive concepts and their relationships
    • Default
    • Custom
    • Lanes
  • Use default deep dives
  • Create and customize new custom deep dives
  • Add and configure lanes
    • Metric lane
    • KPI lane
    • Event lane
  • Customize lane views
    • Bulk actions
    • State and level thresholds
    • Graph rendering
    • Entity and anomaly overlays
    • Overlays as lanes
    • View modules
  • Describe effective workflows for troubleshooting

Module 5 – Managing Episodes

  • Define key episode terms and their relationships
    • Multi-KPI alerts
    • Notable events
    • Episodes as Notable event groupings
  • Describe the episodes workflow
    • Take ownership
    • Change status as needed
    • Comment as needed
  • Work with episodes
    • Episode review
    • Update an episode
    • Investigate details
      • Impact tab
      • Timeline tab
      • Similar Episodes tab
      • Common fields
    • Add comments
    • Search
    • Take action
      • Bi-directional ticketing
      • Reference links
    • Integrations
    • Views and Filters
    • Permissions

Prices & Delivery methods

Online Training

Duration
0.5 days

Price
  • Online Training: CAD 1,035
  • Online Training: US $ 750
  • Splunk Training Units: 75 SPC
Dates and Booking
Request a date
Classroom Training

Duration
0.5 days

Price
  • Canada: CAD 1,035
  • Splunk Training Units: 75 SPC
Dates and Booking
Request a date

Click on town name or "Online Training" to book Schedule

This is an Instructor-Led Classroom course
Instructor-led Online Training:   This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training. If you have any questions about our online courses, feel free to contact us via phone or Email anytime.
This is a FLEX course, which is delivered both virtually and in the classroom.

Europe

Germany

 Online Training Time zone: Central European Summer Time (CEST) Enroll
Online Training Time zone: Central European Summer Time (CEST) Enroll
Online This is a FLEX course. Enroll
Online Training Time zone: Central European Time (CET) Enroll
Online This is a FLEX course. Enroll
Online Training Time zone: Central European Time (CET) Enroll