100%(1)1 out of 1 people found this document helpful
This preview shows page 10 - 13 out of 13 pages.
40.In the fields sidebar, which character denotes alphanumeric field values? A. # B. % C. a D. a# Answer:B 41.What is the main requirement for creating visualizations using the Splunk UI? 42.What syntax is used to link key/value pairs in search strings?
KillTestThe safer , easier way to help you pass any IT exams.10/ 1143.What user interface component allows for time selection? 44.Which of the following searches will return results where fail, 400, and error exist in every event? A. error AND (fail AND 400) B. error OR (fail and 400) C. error AND (fail OR 400) D. error OR fail OR 400 Answer:C 45.When placed early in a search, which command is most effective at reducing search execution time? 46.Which of the following is the most efficient filter for running searches in Splunk? 47.How does Splunk determine which fields to extract from data? 48.Which of the following file types is an option for exporting Splunk search results? A. PDF B. JSON
KillTestThe safer , easier way to help you pass any IT exams.11/ 11Explanation:Reference: 49.What syntax is used to link key/value pairs in search strings? 50.Which search string returns a filed containing the number of matching events and names that field Event Count? 51.Which search would return events from the access_combinedsourcetype? 52.Which of the following index searches would provide the most efficient search performance? A. index=* B. index=web OR index=s* C. (index=web OR index=sales) D. *index=sales AND index=web* Answer:A 53.What is a suggested Splunk best practice for naming reports?