ExamGecko
Search Search Login
Home Home / Splunk / SPLK-1002

Splunk SPLK-1002 Practice Test - Questions Answers, Page 10

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which tool uses data models to generate reports and dashboard panels without using SPL?
Which syntax is used to represent an argument in a macro definition?
Which are valid ways to create an event type? (select all that apply)
What are the two parts of a root event dataset?
A Splunk app is configured to extract domain names in web service logs and specify them as a field named domain. What workflow action would return an external IP lookup for the field named domain?
If there are fields in the data with values that are ' ' or empty but not null, which of the following would add a value?
The fields sidebar does not show________. (Select all that apply.)
Which delimiters can the Field Extractor (FX) detect? (select all that apply)
What is required for a macro to accept three arguments?
When using timechart, how many fields can be listed after a by clause?

Question 91

Report
Export
Collapse

This function of the stats command allows you to return the sample standard deviation of a field.

A.
stdev
A.
stdev
Answers
B.
dev
B.
dev
Answers
C.
count deviation
C.
count deviation
Answers
D.
by standarddev
D.
by standarddev
Answers
Suggested answer: A

Question 92

Report
Export
Collapse

Which of the following commands will show the maximum bytes?

A.
sourcetype=access_* | maximum totals by bytes
A.
sourcetype=access_* | maximum totals by bytes
Answers
B.
sourcetype=access_* | avg (bytes)
B.
sourcetype=access_* | avg (bytes)
Answers
C.
sourcetype=access_* | stats max(bytes)
C.
sourcetype=access_* | stats max(bytes)
Answers
D.
sourcetype=access_* | max(bytes)
D.
sourcetype=access_* | max(bytes)
Answers
Suggested answer: C

Question 93

Report
Export
Collapse

Which of the following searches will show the number of categoryld used by each host?

A.
Sourcetype=access_* |sum bytes by host
A.
Sourcetype=access_* |sum bytes by host
Answers
B.
Sourcetype=access_* |stats sum(categorylD. by host
B.
Sourcetype=access_* |stats sum(categorylD. by host
Answers
C.
Sourcetype=access_* |sum(bytes) by host
C.
Sourcetype=access_* |sum(bytes) by host
Answers
D.
Sourcetype=access_* |stats sum by host
D.
Sourcetype=access_* |stats sum by host
Answers
Suggested answer: B

Question 94

Report
Export
Collapse

This clause is used to group the output of a stats command by a specific name.

A.
Rex
A.
Rex
Answers
B.
As
B.
As
Answers
C.
List
C.
List
Answers
D.
By
D.
By
Answers
Suggested answer: B

Question 95

Report
Export
Collapse

This function of the stats command allows you to return the middle-most value of field X.

A.
Median(X)
A.
Median(X)
Answers
B.
Eval by X
B.
Eval by X
Answers
C.
Fields(X)
C.
Fields(X)
Answers
D.
Values(X)
D.
Values(X)
Answers
Suggested answer: A

Question 96

Report
Export
Collapse

When a search returns __________, you can view the results as a list.

A.
a list of events
A.
a list of events
Answers
B.
transactions
B.
transactions
Answers
C.
statistical values
C.
statistical values
Answers
Suggested answer: C

Question 97

Report
Export
Collapse

Clicking a SEGMENT on a chart, ________.

A.
drills down for that value
A.
drills down for that value
Answers
B.
highlights the field value across the chart
B.
highlights the field value across the chart
Answers
C.
adds the highlighted value to the search criteria
C.
adds the highlighted value to the search criteria
Answers
Suggested answer: C

Question 98

Report
Export
Collapse

Use this command to use lookup fields in a search and see the lookup fields in the field sidebar.

A.
inputlookup
A.
inputlookup
Answers
B.
lookup
B.
lookup
Answers
Suggested answer: B

Question 99

Report
Export
Collapse

It is mandatory for the lookup file to have this for an automatic lookup to work.

A.
Source type
A.
Source type
Answers
B.
At least five columns
B.
At least five columns
Answers
C.
Timestamp
C.
Timestamp
Answers
D.
Input filed
D.
Input filed
Answers
Suggested answer: D

Question 100

Report
Export
Collapse

These users can create global knowledge objects. (Select all that apply.)

A.
users
A.
users
Answers
B.
power users
B.
power users
Answers
C.
administrators
C.
administrators
Answers
Suggested answer: B, C
Total 291 questions
Go to page: of 30
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms