Splunk Fundamentals#1 Study Guide questions and answers 2023
Splunk Fundamentals#1 Study Guide questions and answers 2023Creating Searches and Saving Results: Selected fields are displayed ______each event in the search results. a) below b) interesting fields c) other fields d) above a) below Creating Searches and Saving Results: Search terms are not case sensitive. a) True b) False a) True Creating Searches and Saving Results: These two searches will NOT return the same results. SEARCH 1:login failure SEARCH 2: "login failure". a) True b) False a) True Creating Searches and Saving Results: A space is an implied _____ in a search string. a) OR b) AND c) () d) NOT b) AND Creating Searches and Saving Results: You can not specify a relative time range, such as 45 seconds ago, for a search. a) True b) False b) False Creating Searches and Saving Results: Historical searches provide a static snapshot of events at a given time. a) True b) False a) True Creating Searches and Saving Results: Using the export function, you can export a maximum of 2000 results. a) True b) False b) False Creating Searches and Saving Results: Which of the following search control will not re-rerun the search? (Select all that apply.) a) zoom out b) selecting a bar on the timeline c) deselect d) selecting a range of bars on the timelines b) selecting a bar on the timeline c) deselect d) selecting a range of bars on the timelines Creating Searches and Saving Results: Highlighted search terms indicate _________ search results in Splunk. a)Display as selected fields. b)Sorted c)Charted based on time d)Matching d)Matching Creating Searches and Saving Results: The Splunk search language does not support wildcards. a)True b)False b)False Creating Searches and Saving Results: The Splunk search language supports the + wildcard. a)True b)False b)False Creating Searches and Saving Results: When you mouse over and click to add a search term this (these) Boolean operator(s) is(are) not implied. (Select all that apply). a)OR b)( ) c)AND d)NOT b)( ) Creating Searches and Saving Results: The time range specified for a historical search defines the ____________. a)Amount of data shown on the timeline as data streams in b)Amount of data fetched from index matching that time range c)Time range for the static results b)Amount of data fetched from index matching that time range Creating Searches and Saving Results: Historical searches provide a static snapshot of events at a given time. a)True b)False a)True Creating Searches and Saving Results: Using the export function, you can export search results as __________.( Select all that apply) a)Xml b)Json c)Html d)A php file a)Xml b)Json Creating Searches and Saving Results: Using the export function, you can export a maximum of 2000 results. a)True b)False b)False Using Fields and Tags: These kinds of fields are identified in you data at INDEX time. a) Data-specific fields b) Default fields b) Default fields Using Fields and Tags: Default fields are not added to every event in SPLUNK at INDEX time. a) True b) False b) False Using Fields and Tags: The fields sidebar does not show________. (Select all that apply.) a) interesting fields b) selected fields c) all extracted fields c) all extracted fields
Written for
- Institution
- Splunk
- Course
- Splunk
Document information
- Uploaded on
- March 13, 2023
- Number of pages
- 13
- Written in
- 2022/2023
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
-
splunk fundamentals1 study guide questions and answers 2023
-
creating searches and saving results selected fields are displayed each event in the search results a below b interesting fields c
Document also available in package deal
