Winter Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ecus65

Splunk SPLK-1001 - Splunk Core Certified User

Splunk SPLK-1001 Premium Access     Download Demo    
Page: 6 / 8
Total 244 questions

______________ is the default web port used by Splunk.

A.

8089

B.

8000

C.

8080

D.

443

Where does Licensing meter happen?

A.

Indexer

B.

Parsing

C.

Heavy Forwarder

D.

Input

What is Splunk?

A.

Splunk is a software platform to search, analyze and visualize the machine-generated data.

B.

Database management tool.

C.

Security Information and Event Management (SIEM).

D.

Cloud based application that help in analyzing logs.

What are the two most efficient search filters?

A.

_time and host

B.

_time and index

C.

host and sourcetype

D.

index and sourcetype

Fields are searchable name and value pairings that differentiates one event from another.

A.

False

B.

True

Which Boolean operator is always implied between two search terms, unless otherwise specified?

A.

OR

B.

NOT

C.

AND

D.

XOR

The four types of Lookups that Splunk provides out-of-the-box are External, KV Store, Geospatial and which of the following?

A.

Correlated

B.

File-based

C.

Total

D.

Segmented

What can be configured using the Edit Job Settings menu?

A.

Export the results to CSV format

B.

Add the Job results to a dashboard

C.

Schedule the Job to re-run in 10 minutes

D.

Change Job Lifetime from 10 minutes to 7 days.

Selected fields are a set of configurable fields displayed for each event.

A.

True

B.

False

What syntax is used to link key/value pairs in search strings?

A.

action+purchase

B.

action=purchase

C.

action | purchase

D.

action equal purchase