From the course: Integrating Splunk with Microsoft Purview
Join today to access over 24,900 courses taught by industry experts.
Challenge: Create a dashboard - Splunk Tutorial
From the course: Integrating Splunk with Microsoft Purview
Challenge: Create a dashboard
(upbeat music) - [Instructor] Let's do a challenge. In this challenge, we'll create a dashboard of the results generated from the Microsoft Purview audit log search result on Splunk. Start by opening the exercise folder, and you should find this query. You can copy and paste this query on the search field in your Splunk enterprise for parsing, searching, and visualization. Next, extract the field with date_minute report. Filter your search query results with a fail asterisk to generate only failed activity results. Then finally, extract the date_minute report and save the visualized report in the dashboard. At the end of this challenge, you should be able to understand the simple steps in creating a dashboard from a search result.
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
Splunk in Microsoft Purview and its benefits2m 24s
-
(Locked)
Integrate M365 add-on with Splunk5m 22s
-
(Locked)
Azure integration with Splunk8m 38s
-
(Locked)
Splunk search and visualization5m
-
(Locked)
Splunk dashboard2m 36s
-
(Locked)
How to add sample data in Splunk4m 56s
-
(Locked)
Challenge: Create a dashboard59s
-
(Locked)
Solution: Create a dashboard2m 19s
-
-
-
-