Login
Remember
Register
ScieMce
Find your answers, solutions and more...
We made it much easier for you to find exactly what you're looking for on Sciemce. Enjoy our search engine "Clutch."
Save a GPA. Donate your notes with us.
Loading...
Computer Science & Information Technology - Programming, Quizlet 1
1
What is the purpose of using a by clause with the stats command?
in
Computer Science & Information Technology
A. To group the results by one or more fields.
B. To compute numerical statistics on each field.
C. To specify how the values in a list are delimited.
D. To partition the input data based on the split-by fields.
programming
Answer: A. To group the results by one or more fields.
2
How can search results be kept longer than 7 days?
in
Computer Science & Information Technology
A. By scheduling a report.
B. By creating a link to the job.
C. By changing the job settings.
D. By changing the time range picker to more than 7 days.
programming
Answer: A. By scheduling a report.
3
Which search will return the 15 least common field values for the dest_ip field?
in
Computer Science & Information Technology
A. sourcetype=firewall | rare num=15 dest_ip
B. sourcetype=firewall | rare last=15 dest_ip
C. sourcetype=firewall | rare count=15 dest_ip
D. sourcetype=firewall | rare limit=15 dest_ip
programming
Answer: D. sourcetype=firewall | rare limit=15 dest_ip
4
What is the default lifetime of every Splunk search job?
in
Computer Science & Information Technology
A. All search jobs are saved for 10 days
B. All search jobs are saved for 10 hours
C. All search jobs are saved for 10 weeks
D. All search jobs are saved for 10 minutes
programming
Answer: D. All search jobs are saved for 10 minutes
5
When is the pipe character, I, used in search strings?
in
Computer Science & Information Technology
A. Before clauses. For example: stats sum(bytes) | by host
B. Before commands. For example: | stats sum(bytes) by host
C. Before arguments. For example: stats sum| (bytes) by host
D. Before functions. For example: stats |sum(bytes) by host
programming
Answer: B. Before commands. For example: | stats sum(bytes) by host
6
In the Fields sidebar, what does the number directly to the right of the field name indicate?
in
Computer Science & Information Technology
A. The value of the field
B. The number of values for the field
C. The number of unique values for the field
D. The numeric non-unique values of the field
programming
Ans; C. The number of unique values for the field
7
How can results from a specified static lookup file be displayed?
in
Computer Science & Information Technology
A. lookup command
B. inputlookup command
C. Settings > Lookups > Input
D. Settings > Lookups > Upload
programming
Answer: B. inputlookup command
8
Which of the following is a metadata field assigned to every event in Splunk?
in
Computer Science & Information Technology
A. host
B. owner
C. bytes
D. action
programming
Ans: A. host
9
Assuming a user has the capability to edit reports, which of the following are editable?
in
Computer Science & Information Technology
A. Acceleration, schedule, permissions
B. The report's name, schedule, permissions
C. The report's name, acceleration, schedule
D. The report's name, acceleration, permissions
programming
Answer: A. Acceleration, schedule, permissions
10
Where does Licensing meter happen?
in
Computer Science & Information Technology
A. Indexer
B. Parsing
C. Heavy Forwarder
D. Input
programming
Ans: A. Indexer
11
Splunk extracts fields from event data at index time and at search time.
in
Computer Science & Information Technology
A. True
B. False
programming
Ans: A. True
12
What is Search Assistant in Splunk?
in
Computer Science & Information Technology
A. It is only available to Admins.
B. Such feature does not exist in Splunk.
C. Shows options to complete the search string.
programming
Answer: C. Shows options to complete the search string.
13
Universal forwarder is recommended for forwarding the logs to indexers.
in
Computer Science & Information Technology
a. true
b. false
programming
Answer: a. true
14
Which search string matches only events with the status_code of 404?
in
Computer Science & Information Technology
A. status_code!=404 B. status_code>=400 C. status_code<=404 D. status_code>403 status_code<405
programming
Answer: D. status_code>403 status_code<405
15
What is the primary use for the rare command?
in
Computer Science & Information Technology
A. To sort field values in descending order.
B. To return only fields containing five of fewer values.
C. To find the least common values of a field in a dataset.
D. To find the fields with the fewest number of values across a dataset.
programming
Answer: C. To find the least common values of a field in a dataset.
16
Which search string is the most efficient?
in
Computer Science & Information Technology
A. "failed password"
B. "failed password"*
C. index=* "failed password"
D. index=security "failed password"
programming
Answer: D. index=security "failed password"
17
Which command is used to validate a lookup file?
in
Computer Science & Information Technology
A. | lookup products.csv
B. inputlookup products.csv
C. | inputlookup products.csv
D. | lookup_definition products.csv
programming
Answer: C. | inputlookup products.csv
18
How can another user gain access to a saved report?
in
Computer Science & Information Technology
A. The owner of the report can edit permissions from the Edit dropdown.
B. Only users with an Admin or Power User role can access other users' reports.
C. Anyone can access any reports marked as public within a shared Splunk deployment.
D. The owner of the report must clone the original report and save it to their user account.
programming
Answer: A. The owner of the report can edit permissions from the Edit dropdown.
19
Which of the following fields is stored with the events in the index?
in
Computer Science & Information Technology
A. user
B. source
C. location
D. sourceIp
programming
Answer: B. source
20
Which of the following is the recommended way to create multiple dashboards displaying data from the same search?
in
Computer Science & Information Technology
A. Save the search as a report and use it in multiple dashboards as needed.
B. Save the search as a dashboard panel for each dashboard that needs the data.
C. Save the search as a scheduled alert and use it in multiple dashboards as needed.
D. Export the results of the search to an XML file and use the file as the basis of the dashboards.
programming
Answer: D. Export the results of the search to an XML file and use the file as the basis of the dashboards.
21
Which of the following is an option after clicking an item in search results?
in
Computer Science & Information Technology
A. Saving the item to a report.
B. Adding the item to the search.
C. Adding the item to a dashboard.
D. Saving the Search to a JSON file.
programming
Answer: B. Adding the item to the search.
22
When a Splunk search generates calculated data that appears in the Statistics tab, in what formats can the results be exported?
in
Computer Science & Information Technology
A. CSV, JSON, PDF
B. CSV, XML, JSON
C. Raw Events, XML, JSON
D. Raw Events, CSV, XML, JSON
programming
Answer: B. CSV, XML, JSON
23
When viewing the results of a search, what is an Interesting Field?
in
Computer Science & Information Technology
A. A field that appears in any event.
B. A field that appears in every event.
C. A field that appears in the top 10 events.
D. A field that appears in at least 20% of the events.
programming
Answer: D. A field that appears in at least 20% of the events.
24
What can be included in the All Fields option in the sidebar?
in
Computer Science & Information Technology
A. Dashboards
B. Metadata only
C. Non-interesting fields
D. Field descriptions
programming
Answer: C. Non-interesting fields
25
What are the steps to schedule a report?
in
Computer Science & Information Technology
A. After saving the report, click Schedule.
B. After saving the report, click Event Type.
C. After saving the report, click Scheduling.
D. After saving the report, click Dashboard Panel.
programming
Answer: A. After saving the report, click Schedule.
26
In a deployment with multiple indexes, what will happen when a search is run and an index is not specified in the search string?
in
Computer Science & Information Technology
A. No events will be returned.
B. Splunk will prompt you to specify an index.
C. All non-indexed events to which the user has access will be returned.
D. Events from every index searched by default to which the user has access will be returned.
programming
Answer: D. Events from every index searched by default to which the user has access will be returned.
27
At index time, in which field does Splunk store the timestamp value?
in
Computer Science & Information Technology
A. time
B. _time
C. EventTime
D. timestamp
programming
Answer; B. _time
28
How does Splunk determine which fields to extract from data?
in
Computer Science & Information Technology
A. Splunk only extracts the most interesting data from the last 24 hours.
B. Splunk only extracts fields users have manually specified in their data.
C. Splunk automatically extracts any fields that generate interesting visualizations.
D. Splunk automatically discovers many fields based on sourcetype and key/value pairs found in the data.
programming
Answer: D. Splunk automatically discovers many fields based on sourcetype and key/value pairs found in the data.
29
Which of the following file types is an option for exporting Splunk search results?
in
Computer Science & Information Technology
A. PDF
B. JSON
C. XLS
D. RTF
programming
Answer: B. JSON
30
Which of the following is the most efficient filter for running searches in Splunk?
in
Computer Science & Information Technology
A. Time
B. Fast mode
C. Sourcetype
D. Selected Fields
programming
Answer: A. Time
31
Which of the following searches will return results where fail, 400, and error exist in every event?
in
Computer Science & Information Technology
A. error AND (fail AND 400)
B. error OR (fail and 400)
C. error AND (fail OR 400)
D. error OR fail OR 400
programming
Answer: A. error AND (fail AND 400)
32
What is the main requirement for creating visualizations using the Splunk UI?
in
Computer Science & Information Technology
A. Your search must transform event data into Excel file format first.
B. Your search must transform event data into XML formatted data first.
C. Your search must transform event data into statistical data tables first.
D. Your search must transform event data into JSON formatted data first.
programming
Answer: C. Your search must transform event data into statistical data tables first.
33
In the fields sidebar, which character denotes alphanumeric field values?
in
Computer Science & Information Technology
A. #
B. %
C. a
D. a#
programming
Ans: C. a
34
How do you add or remove fields from search results?
in
Computer Science & Information Technology
A. Use field +to add and field -to remove.
B. Use table +to add and table -to remove.
C. Use fields +to add and fields -to remove.
D. Use fields Plus to add and fields Minus to remove.
programming
Answer: C. Use fields +to add and fields -to remove.
35
What does the values function of the stats command do?
in
Computer Science & Information Technology
A. Lists all values of a given field.
B. Lists unique values of a given field.
C. Returns a count of unique values for a given field.
D. Returns the number of events that match the search.
programming
Answer: B. Lists unique values of a given field.
36
A collection of items containing things such as data inputs, UI elements, and knowledge objects is known as what?
in
Computer Science & Information Technology
A. An app
B. JSON
C. A role
D. An enhanced solution
programming
Answer: A. An app
37
By default, which of the following fields would be listed in the fields sidebar under interesting Fields?
in
Computer Science & Information Technology
A. host
B. index
C. source
D. sourcetype
programming
Answer: B. index
Welcome to Sciemce, where you can ask questions and receive answers from other members of the community.
Recent Packs
ch 10
25
items
by
Kingrick09
automotive
#8
74
items
by
kooch54071
introduction-to-business
automotives
21
items
by
Kingrick09
automotive
Multicultural Issues in LE
20
items
by
thanasis458
electives-upper-level
2
51
items
by
dagogonz
business-law
kdfne4
19
items
by
dagogonz
business-law
quiz 15
10
items
by
scrumpadoo
american-government-and-politics
mis
76
items
by
alerods22
management-information-systems
Final
31
items
by
j.lopezrojas1
management-information-systems
mis
82
items
by
lara gggggg
management-information-systems
help 2
11
items
by
BillyLuu
social-and-applied-psychology
new
20
items
by
marcustbg
introductory-astronomy
1
6
items
by
nwdr
management
Final Exam
48
items
by
MM1122
automotive
final exam
50
items
by
ehbdehbiefbef
automotive
chapter 10
14
items
by
MM1122
automotive
Research Final
47
items
by
griffs110
correctional
pm
48
items
by
yuny
decision-science
Bossbot
17
items
by
Champ
developmental-psychology
3
18
items
by
isabellaw123
marketing
...
Save a GPA. Donate your notes with us.
