Winter Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ecus65

Splunk SPLK-1001 - Splunk Core Certified User

Splunk SPLK-1001 Premium Access     Download Demo    
Page: 3 / 8
Total 244 questions

What options do you get after selecting timeline? (Choose four.)

A.

Zoom to selection

B.

Format Timeline

C.

Deselect

D.

Delete

E.

Zoom Out

Which command automatically returns percent and count columns when executing searches?

A.

top

B.

stats

C.

table

D.

percent

Events in Splunk are automatically segregated using data and time.

A.

Yes

B.

No

Which of the following file types is an option for exporting Splunk search results?

A.

PDF

B.

JSON

C.

XLS

D.

RTF

Splunk shows data in __________________.

A.

ASCII Character order.

B.

Reverse chronological order.

C.

Alphanumeric order.

D.

Chronological order.

By default, all users have DELETE permission to ALL knowledge objects.

A.

True

B.

False

Which of the following is the best description of Splunk Apps?

A.

Built only by Splunk employees.

B.

A collection of files.

C.

Only available for download on Splunkbase.

D.

Available on iOS and Android.

When viewing the results of a search, what is an Interesting Field?

A.

A field that appears in any event

B.

A field that appears in every event

C.

A field that appears in the top 10 events

D.

A field that appears in at least 20% of the events

Which statement describes field discovery at search time?

A.

Splunk automatically discovers only numeric fields

B.

Splunk automatically discovers only alphanumeric fields

C.

Splunk automatically discovers only manually configured fields

D.

Splunk automatically discovers only fields directly related to the search results

By default, which role contains the minimum permissions required to have write access to Splunk alerts?

A.

User

B.

Alerting

C.

Power

D.

Admin