SPLUNK
Machine data makes up for more than ___% of the data accumulated by organizations.
- Answer 90%
Machine data is only generated by web servers.
1. True
2. False - Answer False
Machine Data is always structured. (T/F) - Answer False
Search requests are processed by the ___________.
1. Forwarders
2. Indexers
3. Search Heads - Answer Indexers
In most Splunk deployments, ________ serve as the primary way data is supplied for
indexing.
1. Search Heads
2. Forwarders
3. Local Files - Answer Forwarders
A single-instance deployment of Splunk Enterprise handles:
1. Input
2. Parsing
3. Indexing
4. Searching - Answer Input
Parsing
Indexing
Searching
Which of these is not a main component of Splunk?
1. Search and investigate
2. Collect and index data
3. Compress and archive
4. Add knowledge - Answer Compress and Archive
Which function is not a part of a single instance deployment?
1. Parsing
, 2. Indexing
3. Clustering
4. Searching - Answer Clustering
What are the three main default roles in Splunk Enterprise?
1. Power
2. Manager
3. Admin
4. King
5. User - Answer 1. Power
2. User
3. Admin
You can launch and manage apps from the home app. (T/F) - Answer True
The password for a newly installed Splunk instance is:
1. Created when you install Splunk Enterprise.
2. Randomly generated.
3. Available from the splunk.com website.
4. Your email address. - Answer Created when you install Splunk Enterprise.
_________ define what users can do in Splunk.
1. Roles
2. Tokens
3. Disk permissions - Answer Roles
This role will only see their own knowledge objects and those that have been shared
with them.
1. Admin
2. User
3. Power - Answer User
Splunk knows where to break the event, where the time stamp is located and how to
automatically create field value pairs using these.
1. Source types
2. File names
3. Line breaks - Answer Source types
Splunk uses ________ to categorize the type of data being indexed. - Answer
Sourcetypes
Machine data makes up for more than ___% of the data accumulated by organizations.
- Answer 90%
Machine data is only generated by web servers.
1. True
2. False - Answer False
Machine Data is always structured. (T/F) - Answer False
Search requests are processed by the ___________.
1. Forwarders
2. Indexers
3. Search Heads - Answer Indexers
In most Splunk deployments, ________ serve as the primary way data is supplied for
indexing.
1. Search Heads
2. Forwarders
3. Local Files - Answer Forwarders
A single-instance deployment of Splunk Enterprise handles:
1. Input
2. Parsing
3. Indexing
4. Searching - Answer Input
Parsing
Indexing
Searching
Which of these is not a main component of Splunk?
1. Search and investigate
2. Collect and index data
3. Compress and archive
4. Add knowledge - Answer Compress and Archive
Which function is not a part of a single instance deployment?
1. Parsing
, 2. Indexing
3. Clustering
4. Searching - Answer Clustering
What are the three main default roles in Splunk Enterprise?
1. Power
2. Manager
3. Admin
4. King
5. User - Answer 1. Power
2. User
3. Admin
You can launch and manage apps from the home app. (T/F) - Answer True
The password for a newly installed Splunk instance is:
1. Created when you install Splunk Enterprise.
2. Randomly generated.
3. Available from the splunk.com website.
4. Your email address. - Answer Created when you install Splunk Enterprise.
_________ define what users can do in Splunk.
1. Roles
2. Tokens
3. Disk permissions - Answer Roles
This role will only see their own knowledge objects and those that have been shared
with them.
1. Admin
2. User
3. Power - Answer User
Splunk knows where to break the event, where the time stamp is located and how to
automatically create field value pairs using these.
1. Source types
2. File names
3. Line breaks - Answer Source types
Splunk uses ________ to categorize the type of data being indexed. - Answer
Sourcetypes
