Splunk Fundamentals 1 quiz and correct answers 2023

Splunk Fundamentals 1 quiz and correct answers 2023What type of data makes up 90% of data accumulated by most organizations? Machine Data What are the two types of machine data? Structured Unstructured _________ is real time dynamic, business analytics that delivers visibility and insight into data, streaming events, and business operations Operational intelligence What are the 5 main functions of splunk Index data Search and investigate Add Knowledge Monitor & Alert Report & analyze What inspects raw logs to determine what type of data is being consumed indexer What is used to break up the data into events, time stamp the , and normalize the data into consistent format? indexer What main splunk function finds events that contain values across multiple data sources? Search & investigate The ability to add data elements to events to normalize and enrich data for future use is called? Add knowledge What main function of splunk allows for proactively monitoring environments to look for specific conditions and automatically respond with certain actions? Monitor & Alert The ___________ function, uses data stored in the splunk indexers to corollate the data into reports and graphs to allow for deeper analysis Report and analyze What are the three main components of splunk? Indexer Search head Forwarder ____________ processes incoming machine data, stores the data as events Indexers The indexer organizes the data into sets of directories by __________ Age/timestamp Indexes are ________ where the data is stored Directories It is a best practice to split _____a____ by ___b____ Indexes Data type (e.g. web_server_index, security_index) Using multiple indexes allows you to limit access by __________ . User Roles Keeping separate indexes allows you limit access by user roles but it also allows you to keep separate __________. Retention polcies What is used during splunk searches to determine what directories splunk needs to search? Time range