ExamGecko
Login
Home / Splunk / SPLK-2003 / List of questions
Ask Question

Splunk SPLK-2003 Practice Test - Questions Answers, Page 9

List of questions

Question 81

Report
Export
Collapse

The SOAR server has been configured to use an external Splunk search head for search and searching on SOAR works; however, the search results don't include content that was being returned by search before configuring external search. Which of the following could be the problem?

Become a Premium Member for full access
  Unlock Premium Member

Question 82

Report
Export
Collapse

Which of the following is an advantage of using the Visual Playbook Editor?

Become a Premium Member for full access
  Unlock Premium Member

Question 83

Report
Export
Collapse

A user has written a playbook that calls three other playbooks, one after the other. The user notices that the second playbook starts executing before the first one completes. What is the cause of this behavior?

Become a Premium Member for full access
  Unlock Premium Member

Question 84

Report
Export
Collapse

Where in SOAR can a user view the JSON data for a container?

Become a Premium Member for full access
  Unlock Premium Member

Question 85

Report
Export
Collapse

When assigning an input parameter to an action while building a playbook, a user notices the artifact value they are looking for does not appear in the auto-populated list.

How is it possible to enter the unlisted artifact value?

Become a Premium Member for full access
  Unlock Premium Member

Question 86

Report
Export
Collapse

Which of the following actions will store a compressed, secure version of an email attachment with suspected malware for future analysis?

Become a Premium Member for full access
  Unlock Premium Member

Question 87

Report
Export
Collapse

Without customizing container status within SOAR, what are the three types of status for a container?

Become a Premium Member for full access
  Unlock Premium Member

Question 88

Report
Export
Collapse

Which of the following are the default ports that must be configured on Splunk to allow connections from SOAR?

Become a Premium Member for full access
  Unlock Premium Member

Question 89

Report
Export
Collapse

If no data matches any filter conditions, what is the next block run by the playbook?

Become a Premium Member for full access
  Unlock Premium Member

Question 90

Report
Export
Collapse

How can more than one user perform tasks in a workbook?

Become a Premium Member for full access
  Unlock Premium Member
Total 96 questions
Go to page: of 10
Open VPLUS File
Convert VPLUS to PDF

Related questions

How is it possible to evaluate user prompt results?
Some of the playbooks on the SOAR server should only be executed by members of the admin role. How can this rule be applied?
Which of the following are the steps required to complete a full backup of a Splunk Phantom deployment' Assume the commands are executed from /opt/phantom/bin and that no other backups have been made.
What does a user need to do to have a container with an event from Splunk use context-aware actions designed for notable events?
How can the DECIDED process be restarted?
Which Phantom API command is used to create a custom list?
What are the components of the I2A2 design methodology?
Which of the following can be configured in the ROI Settings?
Which of the following applies to filter blocks?
An active playbook can be configured to operate on all containers that share which attribute?