SPLK-1001

When a Splunk search generates calculated data that appears in the Statistics tab. in what formats can the results be exported?A . CSV, JSON, PDFB . CSV, XML JSONC . Raw Events, XML, JSOND . Raw Events, CSV, XML, JSONView AnswerAnswer: D

What user interface component allows for time selection?A . Time summaryB . Time range pickerC . Search time pickerD . Data source time statisticsView AnswerAnswer: B

Which of the following is a Splunk internal field?A . _rawB . hostC . _hostD . indexView AnswerAnswer: A

All components are installed and administered in Splunk Enterprise on-premise.A . TrueB . FalseView AnswerAnswer: A

Which component of Splunk is primarily responsible for saving data?A . Search HeadB . Heavy ForwarderC . IndexerD . Universal ForwarderView AnswerAnswer: C

How do you add or remove fields from search results?A . Use field +to add and field -to remove.B . Use table +to add and table -to remove.C . Use fields +to add and fields Cto remove.D . Use fields Plus to add and fields Minus to remove.View AnswerAnswer: C

The default host name used in Inputs general settings can not be changed.A . FalseB . TrueView AnswerAnswer: A

What does the stats command do?A . Automatically correlates related fieldsB . Converts field values into numerical valuesC . Calculates statistics on data that matches the search criteriaD . Analyzes numerical fields for their ability to predict another discrete fieldView AnswerAnswer: C

Creating Data Models: Object ATTRIBUTES do not define ___________.A . a base search for the objectB . fields for the objectView AnswerAnswer: A

It is mandatory for the lookup file to have this for an automatic lookup to work.A . Source typeB . At least five columnsC . TimestampD . Input filedView AnswerAnswer: D