Overview
This 60-minute self-paced course is designed to give a high-level overview of the capabilities and functionality of Splunk On-Call. You’ll learn needed terminology such as profile policy, rotations, shifts, escalation policies, and schedules. These are used to configure On-Call to respond promptly and accurately to alerts ingested from other Splunk products or third-party integrations. You’ll learn to use schedules to create rotations and escalation policies to define the notification sequence that suits your needs. You’ll learn the options you have for notification and tools for investigation as well as responding to an event.
Who should attend
- Dev/Ops Engineers
- Business/IT Analysts
- Executive leaders
Prerequisites
- Familiar with Splunk On-Call
Outline
Module 1 – Getting Started in On-Call
- Describe Splunk On-Call concepts and terminology: Users and Teams, On-call schedules, Rotations and shifts, Escalation policies
Module 2 – Configure Your Paging Policies
- Update user profile by Adding contact methods
- Update user profile by Creating your personal and custom paging policies for notification preferences
Module 3 – Viewing On-Call Schedule and Schedule Overrides
- See where to view your on-call schedule
- Take appropriate actions for on-call coverage
Module 4 – Investigating and Responding to Incidents
- Know how and where you respond to an incident
- Explore the available incident investigation tools
Module 5 – Course Review
- Understanding ITSI terminology
- Exploring Use Cases through different roles