- All Exams Instant Download
Which of the following searches would return events with failure in index netfw or warn or critical in index netops?
Which of the following searches would return events with failure in index netfw or warn or critical in index netops?A . (index=netfw failure) AND index=netops warn OR criticalB . (index=netfw failure) OR (index=netops (warn OR critical))C . (index=netfw failure) AND (index=netops (warn OR critical))D . (index=netfw failure) OR index=netops OR...
When running searches, command modifiers in the search string are displayed in what color?
When running searches, command modifiers in the search string are displayed in what color?A . RedB . BlueC . OrangeD . HighlightedView AnswerAnswer: C
When displaying results of a search, which of the following is true about line charts?
When displaying results of a search, which of the following is true about line charts?A . Line charts are optimal for single and multiple series.B . Line charts are optimal for single series when using Fast mode.C . Line charts are optimal for multiple series with 3 or more columns.D...
What is the correct syntax to count the number of events containing a vendor_action field?
What is the correct syntax to count the number of events containing a vendor_action field?A . count stats vendor_actionB . count stats (vendor_action)C . stats count (vendor_action)D . stats vendor_action (count)View AnswerAnswer: C
What does the values function of the stats command do?
What does the values function of the stats command do?A . Lists all values of a given field.B . Lists unique values of a given field.C . Returns a count of unique values for a given field.D . Returns the number of events that match the search.View AnswerAnswer: C
Which of the following are common constraints of the top command?
Which of the following are common constraints of the top command?A . limit, countB . limit, showpercentC . limits, countfieldD . showperc, countfieldView AnswerAnswer: A
What is one benefit of creating dashboard panels from reports?
What is one benefit of creating dashboard panels from reports?A . Any newly created dashboard will include that report.B . There are no benefits to creating dashboard panels from reports.C . It makes the dashboard more efficient because it only has to run one search string.D . Any change to...
Which of the following is a Splunk search best practice?
Which of the following is a Splunk search best practice?A . Filter as early as possible.B . Never specify more than one index.C . Include as few search terms as possible.D . Use wildcards to return more search results.View AnswerAnswer: A
What determines the scope of data that appears in a scheduled report?
What determines the scope of data that appears in a scheduled report?A . All data accessible to the User role will appear in the report.B . All data accessible to the owner of the report will appear in the report.C . All data accessible to all users will appear in...
What must be done before an automatic lookup can be created? (select all that apply)
What must be done before an automatic lookup can be created? (select all that apply)A . The lookup command must be used.B . The lookup definition must be created.C . The lookup file must be uploaded to Splunk.D . The lookup file must be verified using the inputlookup command.View AnswerAnswer:...
