SPLK-1002 V3

When you mouse over and click to add a search term this (these. Boolean operator(s) is (are. not implied. (Select all that apply).A . ORB . ( )C . ANDD . NOTView AnswerAnswer: ABD Explanation: When you mouse over and click to add a search term from the Fields sidebar...

Which of the following is NOT a stats function:A . sumB . addtotalsC . countD . avgView AnswerAnswer: B Explanation: The stats command is used to calculate summary statistics for your search results such as count, sum, avg, min, max and more2. The stats command supports various functions that you...

When using the Field Extractor (FX), which of the following delimiters will work? (select all that apply)A . TabsB . PipesC . ColonsD . SpacesView AnswerAnswer: A, B, D Explanation: Reference: https://docs.splunk.com/Documentation/Splunk/8.0.3/Knowledge/FXSelectMethodstep https://community.splunk.com/t5/Splunk-Search/Field-Extraction-Separate-on-Colon/m-p/29751 The Field Extractor (FX) is a tool that helps you extract fields from your data using delimiters...

When a search returns __________, you can view the results as a list.A . a list of eventsB . transactionsC . statistical valuesView AnswerAnswer: C

Which of the following statements describes this search? sourcetype=access_combined I transaction JSESSIONID | timechart avg (duration)A . This is a valid search and will display a timechart of the average duration, of each transaction event.B . This is a valid search and will display a stats table showing the maximum...

Based on the macro definition shown below, what is the correct way to execute the macro in a search string? A . Convert_sales (euro, , 79)”B . Convert_sales (euro, , .79)C . Convert_sales ($euro,$$,s79$D . Convert_sales ($euro, $$,S,79$)View AnswerAnswer: B Explanation: Reference: https://docs.splunk.com/Documentation/Splunk/8.0.3/Knowledge/Usesearchmacros The correct way to execute the macro...

Which of the following are required to create a POST workflow action?A . Label, URI, search string.B . XMI attributes, URI, name.C . Label, URI, post arguments.D . URI, search string, time range picker.View AnswerAnswer: C Explanation: POST workflow actions are custom actions that send a POST request to a...

Which of the following search control will not re-rerun the search? (Select all that apply.)A . zoom outB . selecting a bar on the timelineC . deselectD . selecting a range of bars on the timelinesView AnswerAnswer: B, C, D Explanation: The timeline is a graphical representation of your search...

What does the transaction command do?A . Groups a set of transactions based on time.B . Creates a single event from a group of events.C . Separates two events based on one or more values.D . Returns the number of credit card transactions found in the event logs.View AnswerAnswer: B...

Which group of users would most likely use pivots?A . UsersB . ArchitectsC . AdministratorsD . Knowledge ManagersView AnswerAnswer: A Explanation: Reference: https://docs.splunk.com/Documentation/Splunk/8.0.3/Pivot/IntroductiontoPivot A pivot is a tool that allows you to create reports and dashboards using data models without writing any SPL commands2. You can use pivots to explore,...