Catalog > All Topics

Administering Splunk SOAR (SP-ASOAR)

Splunk
1 Days
Download Course Outline
$500.00
Request a Quote
Credit not applicable
Share
Schedule
Export to CSV
    • T88252
    • 1 day
    • 04/27/2026 - 04/27/2026*
    • 9:00 AM
    • (GMT -04:00) Eastern Daylight Time
    • Presented via WebEx
      • VC
        Virtual Classroom
        Attend any of our instructor-led classes virtually regardless of your physical location.
    Enroll Now
      • PC
        Private Class
        Privately train a group of your employees at your facility, virtually, or any of our locations.
    Request
  • LCLive Classroom
    Live Classroom
    Learn and interact with your instructor and peers in-person in our classrooms.
  • VCVirtual Classroom
    Virtual Classroom
    Attend any of our instructor-led classes virtually regardless of your physical location.
  • PCPrivate Class
    Private Class
    Privately train a group of your employees at your facility, virtually, or any of our locations.
  • GTRGuaranteed to Run
    Guaranteed to Run
    GTR classes are guaranteed to run as promised and delivered.

*event may not be applicable to special offers or promotions.

Course Summary
Show All

Description

This 3 hour course prepares IT professionals to configure and manage SOAR.

Objectives

  • SOAR concepts
  • Initial configuration
  • Apps and assets
  • Configuring automation
  • User management
  • Ingesting data
  • Customization and monitoring

Prerequisites

Investigating Incidents with Splunk SOAR

 

Outline

Topic 1 –Initial Configuration

  • Describe SOAR operating concepts
  • Identify documentation and community resources
  • SOAR & Splunk Architecture
  • Product settings
  • Access control
  • Authentication settings
  • Response settings
  • Understanding roles
  • Creating users
  • Managing user access
  • Describe SOAR Automation Broker

Topic 2 – Apps, Assets and Playbooks

  • Add and configure apps and assets
  • Manage playbooks
  • Ingesting Data
  • Labels and tags
  • Event settings

Topic 3 – Customization and Monitoring

  • Create custom severity levels
  • Create custom status levels
  • Add custom fields and CEF settings
  • Create custom workbooks
  • Run reports
  • Use SOAR audit tools
  • Monitor system health