Home / Splunk / SPLK-1005

Question list

List of questions

Question 1

(0)

A monitor has been created in inputs. con: for a directory that contains a mix of file types. How would a Cloud Admin fine-tune assigned sourcetypes for different files in the directory during the

Question 2

(0)

Windows Input types are collected in Splunk via a script which is configurable using the GUI. What is this type of input called?

Question 3

(0)

The following sample log event shows evidence of credit card numbers being present in the transactions. loc file. Which of these SEDCM3 settings will mask this and other suspected credit card num

Question 4

(0)

Which of the following is a correct statement about Universal Forwarders?

Question 5

(0)

Which of the following is true when integrating LDAP authentication?

Question 6

(0)

A Splunk Cloud administrator is looking to allow a new group of Splunk users in the marketing department to access the Splunk environment and view a dashboard with relevant data. These users need to

Question 7

(0)

Files from multiple systems are being stored on a centralized log server. The files are organized into directories based on the original server they came from. Which of the following is a recommende

Question 8

(0)

In which file can the SH0ULD_LINEMERCE setting be modified?

Question 9

(0)

What is the recommended approach to collect data from network devices?

Question 10

(0)

When a forwarder phones home to a Deployment Server it compares the check-sum value of the forwarder's app to the Deployment Server's app. What happens to the app If the check-sum values do not matc

Question 80 - SPLK-1005 discussion

Given the following set of files, which of the monitor stanzas below will result in Splunk monitoring all of the files ending with .log?

Files:

/var/log/www1/secure.log

/var/log/www1/access.log

/var/log/www2/logs/secure.log

/var/log/www2/access.log

/var/log/www2/access.log.1

[monitor:///var/log/*/*.log]

[monitor:///var/log/.../*.log]

[monitor:///var/log/*/*]

[monitor:///var/log/.../*]

Show Answer

asked 13/11/2024

Kurt Woodfin

43 questions

Your answer: A B C D

0 comments

Sorted by