How do I learn Splunk administration?
Had an old coworker hit me up a week ago. He took a job as a SOC analyst where part of his job is going to be supporting Splunk. He's a smart guy but Splunk is more complex than it looks. Given I've also been asked a few times on how to certify on Splunk Admin I thought I might as well break down and start a video series on Splunk Administration.
I produced two videos to help him on his journey and I hope they help you.
Install of Splunk Enterprise on CentOS7, VirtualBox and firewalld
Stand Alone Lab Housekeeping firewall and ports https://www.youtube.com/watch?v=qPcZhGQIWSk
Let me know what you think?