When writing searches in Splunk, which of the following is true about Booleans?

When writing searches in Splunk, which of the following is true about Booleans?A . They must be lowercase.B . They must be uppercase.C . They must be in quotations.D . They must be in parentheses.View AnswerAnswer: B

September 22, 2019 No Comments READ MORE +

How are events displayed after a search is executed?

How are events displayed after a search is executed?A . In chronological order.B . Randomly by default.C . In reverse chronological order.D . Alphabetically according to field name.View AnswerAnswer: C

September 21, 2019 No Comments READ MORE +

When editing a dashboard, which of the following are possible options? (select all that apply)

When editing a dashboard, which of the following are possible options? (select all that apply)A . Add an output.B . Export a dashboard panel.C . Modify the chart type displayed in a dashboard panel.D . Drag a dashboard panel to a different location on the dashboard.View AnswerAnswer: C

September 21, 2019 1 Comment READ MORE +

Which search string only returns events from hostWWW3?

Which search string only returns events from hostWWW3?A . host=*B . host=WWW3C . host=WWW*D . Host=WWW3View AnswerAnswer: B

September 20, 2019 No Comments READ MORE +

Which command is used to review the contents of a specified static lookup file?

Which command is used to review the contents of a specified static lookup file?A . lookupB . csvlookupC . inputlookupD . outputlookupView AnswerAnswer: C

September 20, 2019 No Comments READ MORE +

After running a search, what effect does clicking and dragging across the timeline have?

After running a search, what effect does clicking and dragging across the timeline have?A . Executes a new search.B . Filters current search results.C . Moves to past or future events.D . Expands the time range of the search.View AnswerAnswer: C Explanation: Reference: https://docs.splunk.com/Documentation/Splunk/7.2.6/Search/Usethetimeline

September 20, 2019 2 Comments READ MORE +

Which of the following represents the Splunk recommended naming convention for dashboards?

Which of the following represents the Splunk recommended naming convention for dashboards?A . Description_Group_ObjectB . Group_Description_ObjectC . Group_Object_DescriptionD . Object_Group_DescriptionView AnswerAnswer: C

September 18, 2019 No Comments READ MORE +

When editing a dashboard, which of the following are possible options? (select all that apply)

When editing a dashboard, which of the following are possible options? (select all that apply)A . Add an output.B . Export a dashboard panel.C . Modify the chart type displayed in a dashboard panel.D . Drag a dashboard panel to a different location on the dashboard.View AnswerAnswer: C

September 18, 2019 No Comments READ MORE +

Which of the following constraints can be used with the top command?

Which of the following constraints can be used with the top command?A . limitB . usepercC . addtotalsD . fieldcountView AnswerAnswer: A

September 18, 2019 No Comments READ MORE +

Which of the following constraints can be used with the top command?

Which of the following constraints can be used with the top command?A . limitB . usepercC . addtotalsD . fieldcountView AnswerAnswer: A Explanation: Reference: https://answers.splunk.com/answers/339141/how-to-use-top-command-or-stats-with-sortĀ­results.html

September 18, 2019 No Comments READ MORE +