Home

Home / Splunk / SPLK-3002

Question list

List of questions

Question 1

(0)

Which of the following is a recommended best practice for service and glass table design?

Question 2

(0)

Which of the following are deployment recommendations for ITSI? (Choose all that apply.)

Question 3

(0)

What are valid considerations when designing an ITSI Service? (Choose all that apply.)

Question 4

(0)

Anomaly detection can be enabled on which one of the following?

Question 5

(0)

After a notable event has been closed, how long will the meta data for that event remain in the KV Store by default?

Question 6

(0)

Which of the following is a best practice for identifying the most effective services with which to start an iterative ITSI deployment?

Question 7

(0)

When creating a custom deep dive, what color are services/KPIs in maintenance mode within the topology view?

Question 8

(0)

Which deep dive swim lane type does not require writing SPL?

Question 9

(0)

Which of the following items apply to anomaly detection? (Choose all that apply.)

Question 10

(0)

Which of the following is a best practice when configuring maintenance windows?

Open VPLUS File

Convert VPLUS to PDF

Related questions

Which of the following are the default ports that must be configured on Splunk to use ITSI?

There are two departments using ITSI. Finance and Sales. Analysts in each department should not be allowed to see each other's services. What are the role configuration steps required to accomplish this?

Which of the following statements is accurate when using multiple policies?

When in maintenance mode, which of the following is accurate?

Besides creating notable events, what are the default alert actions a correlation search can execute? (Choose all that apply.)

ITSI Saved Search Scheduling is configured to use realtime_schedule = 0. Which statement is accurate about this configuration?

When troubleshooting KPI search performance, which search names in job activity identify base searches?

Which of the following is a good use case for creating a custom module?

When working with a notable event group in the Notable Events Review dashboard, which of the following can be set at the individual or group level?

There are two Smart Mode configuration settings that control how fields affect grouping. Which of these is correct?

Question 44 - SPLK-3002 discussion

Report

Which capabilities are enabled through ''teams''?

A.

Teams allow searches against the itsi_summary index.

B.

Teams restrict notable event alert actions.

C.

Teams restrict searches against the itsi_notable_audit index.

D.

Teams allow restrictions to service content in UI views.

Show Answer

asked 23/09/2024

Venkat Burri

43 questions

User

Your answer: A B C D

0 comments

Sorted by

Leave a comment first