Splunk SPLK-1002 Splunk Core Certified Power User Online Training
Splunk SPLK-1002 Online Training
The questions for SPLK-1002 were last updated at Nov 19,2024.
- Exam Code: SPLK-1002
- Exam Name: Splunk Core Certified Power User
- Certification Provider: Splunk
- Latest update: Nov 19,2024
Which of the following Statements about macros is true? (select all that apply)
- A . Arguments are defined at execution time.
- B . Arguments are defined when the macro is created.
- C . Argument values are used to resolve the search string at execution time.
- D . Argument values are used to resolve the search string when the macro is created.
What is required for a macro to accept three arguments?
- A . The macro’s name ends with (3).
- B . The macro’s name starts with (3).
- C . The macro’s argument count setting is 3 or more.
- D . Nothing, all macros can accept any number of arguments.
Which of the following statements describes POST workflow actions?
- A . POST workflow actions are always encrypted.
- B . POST workflow actions cannot use field values in their URI.
- C . POST workflow actions cannot be created on custom sourcetypes.
- D . POST workflow actions can open a web page in either the same window or a new.
Which of the following searches show a valid use of macro? (Select all that apply)
- A . index=main source=mySource oldField=* |’makeMyField(oldField)’| table _time newField
- B . index=main source=mySource oldField=* | stats if(‘makeMyField(oldField)’) | table _time newField
- C . index=main source=mySource oldField=* | eval newField=’makeMyField(oldField)’| table _time newField
- D . index=main source=mySource oldField=* | "’newField(‘makeMyField(oldField)’)’" | table _time newField
Which of the following workflow actions can be executed from search results? (select all that apply)
- A . GET
- B . POST
- C . LOOKUP
- D . Search
Which of the following is the correct way to use the data model command to search field in the data model within the web dataset?
- A . | datamodel web search | filed web *
- B . | Search datamodel web web | filed web*
- C . | datamodel web web field | search web*
- D . Datamodel=web | search web | filed web*
Which of the following searches will return events contains a tag name Privileged?
- A . Tag= Priv
- B . Tag= Pri*
- C . Tag= Priv*
- D . Tag= Privileged
Which of the following statements describes this search?
sourcetype=access_combined I transaction JSESSIONID | timechart avg (duration)
- A . This is a valid search and will display a timechart of the average duration, of each transaction event.
- B . This is a valid search and will display a stats table showing the maximum pause among transactions.
- C . No results will be returned because the transaction command must include the startswith and endswith options.
- D . No results will be returned because the transaction command must be the last command used in the search pipeline.
Calculated fields can be based on which of the following?
- A . Tags
- B . Extracted fields
- C . Output fields for a lookup
- D . Fields generated from a search string
Based on the macro definition shown below, what is the correct way to execute the macro in a search string?
- A . Convert_sales (euro, , 79)”
- B . Convert_sales (euro, , .79)
- C . Convert_sales ($euro,$$,s79$
- D . Convert_sales ($euro, $$,S,79$)
Latest SPLK-1002 Dumps Valid Version with 168 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
