ExamGecko
Search Search Login
Home Home / Splunk / SPLK-1001

Splunk SPLK-1001 Practice Test - Questions Answers, Page 11

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which all time unit abbreviations can you include in Advanced time range picker? (Choose seven.)
Which of the following is a metadata field assigned to every event in Splunk?
Beginning parentheses is automatically highlighted to guide you on the presence of complimenting parentheses.
It is not possible for a single instance of Splunk to manage the input, parsing and indexing of machine.
Which of the following is an accurate definition of fields within Splunk?
In the Search and Reporting app, which is a default selected field?
What are the three main Splunk components?
Which search will return the 15 least common field values for the dest_ip field?
Selected fields are a set of configurable fields displayed for each event.
NOT status = 100:

Question 101

Report
Export
Collapse

Which time range picker configuration would return real-time events for the past 30 seconds?

A.
Preset - Relative: 30-seconds ago
A.
Preset - Relative: 30-seconds ago
Answers
B.
Relative - Earliest: 30-seconds ago, Latest: Now
B.
Relative - Earliest: 30-seconds ago, Latest: Now
Answers
C.
Real-time - Earliest: 30-seconds ago, Latest: Now
C.
Real-time - Earliest: 30-seconds ago, Latest: Now
Answers
D.
Advanced - Earliest: 30-seconds ago, Latest: Now
D.
Advanced - Earliest: 30-seconds ago, Latest: Now
Answers
Suggested answer: C

Question 102

Report
Export
Collapse

What is one benefit of creating dashboard panels from reports?

A.
Any newly created dashboard will include that report.
A.
Any newly created dashboard will include that report.
Answers
B.
There are no benefits to creating dashboard panels from reports.
B.
There are no benefits to creating dashboard panels from reports.
Answers
C.
It makes the dashboard more efficient because it only has to run one search string.
C.
It makes the dashboard more efficient because it only has to run one search string.
Answers
D.
Any change to the underlying report will affect every dashboard that utilizes that report.
D.
Any change to the underlying report will affect every dashboard that utilizes that report.
Answers
Suggested answer: C

Question 103

Report
Export
Collapse

Which of the following statements about case sensitivity is true?

A.
Both field names and field values ARE case sensitive.
A.
Both field names and field values ARE case sensitive.
Answers
B.
Field names ARE case sensitive; field values are NOT.
B.
Field names ARE case sensitive; field values are NOT.
Answers
C.
Field values ARE case sensitive; field names ARE NOT.
C.
Field values ARE case sensitive; field names ARE NOT.
Answers
D.
Both field names and field values ARE NOT case sensitive.
D.
Both field names and field values ARE NOT case sensitive.
Answers
Suggested answer: B

Question 104

Report
Export
Collapse

What does the rare command do?

A.
Returns the least common field values of a given field in the results.
A.
Returns the least common field values of a given field in the results.
Answers
B.
Returns the most common field values of a given field in the results.
B.
Returns the most common field values of a given field in the results.
Answers
C.
Returns the top 10 field values of a given field in the results.
C.
Returns the top 10 field values of a given field in the results.
Answers
D.
Returns the lowest 10 field values of a given field in the results.
D.
Returns the lowest 10 field values of a given field in the results.
Answers
Suggested answer: A

Question 105

Report
Export
Collapse

Which Boolean operator is always implied between two search terms, unless otherwise specified?

A.
OR
A.
OR
Answers
B.
NOT
B.
NOT
Answers
C.
AND
C.
AND
Answers
D.
XOR
D.
XOR
Answers
Suggested answer: C

Question 106

Report
Export
Collapse

What does the values function of the stats command do?

A.
Lists all values of a given field.
A.
Lists all values of a given field.
Answers
B.
Lists unique values of a given field.
B.
Lists unique values of a given field.
Answers
C.
Returns a count of unique values for a given field.
C.
Returns a count of unique values for a given field.
Answers
D.
Returns the number of events that match the search.
D.
Returns the number of events that match the search.
Answers
Suggested answer: B

Question 107

Report
Export
Collapse

A field exists in search results, but isn't being displayed in the fields sidebar. How can it be added to the fields sidebar?

A.
Click All Fields and select the field to add it to Selected Fields.
A.
Click All Fields and select the field to add it to Selected Fields.
Answers
B.
Click Interesting Fields and select the field to add it to Selected Fields.
B.
Click Interesting Fields and select the field to add it to Selected Fields.
Answers
C.
Click Selected Fields and select the field to add it to Interesting Fields.
C.
Click Selected Fields and select the field to add it to Interesting Fields.
Answers
D.
This scenario isn't possible because all fields returned from a search always appear in the fields sidebar.
D.
This scenario isn't possible because all fields returned from a search always appear in the fields sidebar.
Answers
Suggested answer: A

Question 108

Report
Export
Collapse

In the fields sidebar, which character denotes alphanumeric field values?

A.
#
A.
#
Answers
B.
%
B.
%
Answers
C.
a
C.
a
Answers
D.
a#
D.
a#
Answers
Suggested answer: B

Question 109

Report
Export
Collapse

Which of the following searches will return results where fail, 400, and error exist in every event?

A.
error AND (fail AND 400)
A.
error AND (fail AND 400)
Answers
B.
error OR (fail and 400)
B.
error OR (fail and 400)
Answers
C.
error AND (fail OR 400)
C.
error AND (fail OR 400)
Answers
D.
error OR fail OR 400
D.
error OR fail OR 400
Answers
Suggested answer: C

Question 110

Report
Export
Collapse

Which of the following is the most efficient filter for running searches in Splunk?

A.
Time
A.
Time
Answers
B.
Fast mode
B.
Fast mode
Answers
C.
Sourcetype
C.
Sourcetype
Answers
D.
Selected Fields
D.
Selected Fields
Answers
Suggested answer: A
Total 246 questions
Go to page: of 25
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms