Splunk SPLK-1001 Practice Test - Questions Answers, Page 18
Question list
List of questions
Related questions
Events in Splunk are automatically segregated using data and time.
A.
Yes
B.
No
Splunk Parses data into individual events, extracts time, and assigns metadata.
A.
False
B.
True
Which of the statements is correct regarding click and drag option in timeline?
A.
The new result after selecting the range by dragging filters the events and displays the most recent first.
B.
There is no functionality like click and drag in Splunk's timeline.
C.
Using this option executes a new query.
D.
This doesn't execute a new query
Which of the statements are correct? (Choose three.)
A.
Zoom to selection: Narrows the time range and re-executes the search.
B.
Zoom to selection: Narrows the time range and doesn't re-executes the search.
C.
Format Timeline: Hides or shows the timeline in different views.
D.
Zoom-Out: Expands the time focus and doesn't re-executes the search.
E.
Zoom-out: Expands the time focus and re-executes the search.
There are three different search modes in Splunk (Choose three.):
A.
Automatic
B.
Smart
C.
Fast
D.
Verbose
Select the statements that are true for timeline in Splunk (Choose four.):
A.
Timeline shows distribution of events specified in the time range in the form of bars.
B.
Single click to see the result for particular time period.
C.
You can click and drag across the bar for selecting the range.
D.
This is default view and you can't make any changes to it.
E.
You can hover your mouse for details like total events, time and date.
Keywords are highlighted when you mouse over search results and you can click this search result to (Choose three.):
A.
Open new search.
B.
Exclude the item from search.
C.
None of the above.
D.
Add the item to search
You can view the search result in following format (Choose three.):
A.
Table
B.
Raw
C.
Pie Chart
D.
List
Question