최신 SPLK-2003 무료덤프 - Splunk Phantom Certified Admin
Without customizing container status within SOAR, what are the three types of status for a container?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Which of the following queries would return all artifacts that contain a SHA1 file hash?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
What is the main purpose of using a customized workbook?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Phantom supports multiple user authentication methods such as LDAP and SAML2. What other user authentication method is supported?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
When analyzing events, a working on a case, significant items can be marked as evidence. Where can ail of a case's evidence items be viewed together?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
A user wants to get the playbook results for a single artifact. Which steps will accomplish the?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
Which Phantom API command is used to create a custom list?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
Configuring SOAR search to use an external Splunk server provides which of the following benefits?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Which of the following applies to filter blocks?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
Which of the following expressions will output debug information to the debug window in the Visual Playbook Editor?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)