최신 SPLK-1002 무료덤프 - Splunk Core Certified Power User

문제1

Which of the following is the correct way to use the data model command to search field in the data model within the web dataset?

A. | Search datamodel web web | filed web*

B. Datamodel=web | search web | filed web*

C. | datamodel web search | filed web *

D. | datamodel web web field | search web*

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제2

A calculated field may be based on which of the following?

A. Fields generated within a search string

B. Regular expressions

C. Extracted fields

D. Lookup tables

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제3

Which syntax is used to represent an argument in a macro definition?

A. "argument"

B. %argument%

C. $argument$

D. 'argument'

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Which of the following statements are true for this search? (Select all that apply.) SEARCH: sourcetype=access* |fields action productld status

A. limits the fields are extracted

B. returns a table with 3 columns

C. users the table command to improve performance

D. is looking for all events that include the search terms: fields AND action AND productld AND status

정답: A

문제5

Which of the following statements about tags is true?

A. Tags can make your data more understandable.

B. Tags are case insensitive.

C. Tags are created at index time.

D. Tags are searched by using the syntax tag: : <fieldneme>

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제6

When using the transaction command, how are evicted transactions identified?

A. Max_txn field is set to O, or false.

B. Txn_field is set to 1, or true.

C. open_txn field is set to 1, or true.

D. Closed_txn field is set to o, or false.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제7

Which of the following statements describes Search workflow actions?

A. Search workflow actions cannot be configured with a search string that includes the transaction command

B. Search workflow actions can be configured as scheduled searches,

C. The user can define the time range of the search when created the workflow action.

D. By default. Search workflow actions will run as a real-time search.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제8

What happens to the original field name when a field alias is created?

A. The original field name is italicized to indicate that it is not an alias.

B. The original field name is replaced by the field alias within the index.

C. The original field name still exists in the index but is not visible to the user at search time.

D. The original field name is not affected by the creation of a field alias.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제9

Which of the following data model are included In the Splunk Common Information Model (CIM) add-on? (select all that apply)

A. User permissions

B. Alerts

C. Email

D. Database

정답: B,C,D

설명: (DumpTOP 회원만 볼 수 있음)

문제10

When using multiple expressions in a single eval command, which delimiter is used?

A. , (comma)

B. / (forward slash)

C. I (pipe)

D. : (colon)

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제11

A space is an implied _____ in a search string.

A. OR

B. ()

C. NOT

D. AND

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제12

Which of the following statements describes macros?

A. A macro is a reusable search string that must contain the full search.

B. A macro is a reusable search string that must have a fixed time range.

C. A macro Is a reusable search string that may have a flexible time range.

D. A macro Is a reusable search string that must contain only a portion of the search.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제13

The gauge command:

A. creates a single-value visualization

B. creates a radial gauge visualization

C. allows you to set colored ranges for a single-value visualization

정답: C

최신 SPLK-1002 무료덤프 - Splunk Core Certified Power User

우리와 연락하기

유용한 링크

최신 업데이트