Detailed Course Outline
Module 1 – What are Fields?
- Define fields and field auto-extraction
- Explore the Fields sidebar
- Add fields to the Selected Fields list
- Explore and generate reports from the Fields window
Module 2 – What is Field Discovery?
- Understand Field Discovery
- Explore search modes and their effect on search results
Module 3 – Using Fields in Searches
- Use fields correctly in basic searches
- Use fields with operators
- Use the rename command
- Use the fields command to improve search performance
Module 4 – Comparing Temporary versus Persistent Fields
- Differentiate between temporary and persistent fields
- Create temporary fields with the eval command
- Extract temporary fields with the erex and rex commands
Module 5 – Enriching Data
- Understand how fields from lookups, calculated fields, field aliases, and field extractions enrich data