- All Exams Instant Download
Which of the following authentication types requires scripting in Splunk?
Which of the following authentication types requires scripting in Splunk?A . ADFSB . LDAPC . SAMLD . RADIUSView AnswerAnswer: D
In a distributed environment, which Splunk component is used to distribute apps and configurations to the other Splunk instances?
In a distributed environment, which Splunk component is used to distribute apps and configurations to the other Splunk instances?A . IndexerB . DeployerC . ForwarderD . Deployment serverView AnswerAnswer: D Explanation: Reference: https://docs.splunk.com/Documentation/Splunk/8.0.5/Updating/Updateconfigurations
Which is a valid stanza for a network input?
Which is a valid stanza for a network input?A . [udp://172.16.10.1:9997] connection = dns sourcetype = dnsB . [any://172.16.10.1:10001] connection_host = ip sourcetype = webC . [tcp://172.16.10.1:9997] connection_host = web sourcetype = webD . [tcp://172.16.10.1:10001] connection_host = dns sourcetype = dnsView AnswerAnswer: C Explanation: Reference: https://docs.splunk.com/Documentation/SplunkCloud/8.0.2006/Data/Bypassautomaticsourcetypeassignment
Which Splunk component requires a Forwarder license?
Which Splunk component requires a Forwarder license?A . Search headB . Heavy forwarderC . Heaviest forwarderD . Universal forwarderView AnswerAnswer: B
Which of the following statements describe deployment management? (select all that apply)
Which of the following statements describe deployment management? (select all that apply)A . Requires an Enterprise licenseB . Is responsible for sending apps to forwarders.C . Once used, is the only way to manage forwardersD . Can automatically restart the host OS running the forwarder.View AnswerAnswer: A
What action is required to enable forwarder management in Splunk Web?
What action is required to enable forwarder management in Splunk Web?A . Navigate to Settings > Server Settings > General Settings, and set an App server port.B . Navigate to Settings > Forwarding and receiving, and click on Enable Forwarding.C . Create a server class and map it to a...
Which Splunk component consolidates the individual results and prepares reports in a distributed environment?
Which Splunk component consolidates the individual results and prepares reports in a distributed environment?A . IndexersB . ForwarderC . Search headD . Search peersView AnswerAnswer: C
In which scenario would a Splunk Administrator want to enable data integrity check when creating an index?
In which scenario would a Splunk Administrator want to enable data integrity check when creating an index?A . To ensure that hot buckets are still open for writes and have not been forced to roll to a cold stateB . To ensure that configuration files have not been tampered with...
Where can scripts for scripted inputs reside on the host file system? (select all that apply)
Where can scripts for scripted inputs reside on the host file system? (select all that apply)A . $SFLUNK_HOME/bin/scriptsB . $SPLUNK_HOME/etc/apps/binC . $SPLUNK_HOME/etc/system/binD . $S?LUNK_HOME/etc/apps/<your_app>/bin_View AnswerAnswer: A,C,D
When running a real-time search, search results are pulled from which Splunk component?
When running a real-time search, search results are pulled from which Splunk component?A . Heavy forwarders and search peersB . Heavy forwardersC . Search headsD . Search peersView AnswerAnswer: C Explanation: Reference: https://docs.splunk.com/Documentation/Splunk/8.2.1/Search/Restrictrealtimesearch
