SPLK-1002無料問題集「Splunk Core Certified Power User」

質問 1

Which statement is true?

（A）Data model are randomly structured datasets.

（B）Pivot is used for creating datasets.

（C）Pivot is used for creating reports and dashboards.

（D）In most cases, each Splunk user will create their own data model.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

Calculated fields can be based on which of the following?

（A）Output fields for a lookup

（B）Tags

（C）Fields generated from a search string

（D）Extracted fields

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Which of the following is true about data sets used in the Pivot tool?

（A）They can only be created by users with the Admin role.

（B）They can only be created from data models.

（C）They can only be created from summary indexes.

（D）They can only be created from saved reports.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

To identify all of the contributing events within a transaction that contains at least one REJECT event, which syntax is correct?

（A）Index=main | transaction sessionid | where transaction=reject''

（B）Index=main | transaction sessionid | whose transaction=reject

（C）Index-main | REJECT trans sessionid

（D）Index-main | transaction sessionid | search REJECT

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which of the following statements about data models and pivot are true? (select all that apply)

（A）Pivot requires users to input SPL searches on data models.

（B）They are both knowledge objects.

（C）Pivot allows the creation of data visualizations that present different aspects of a data model.

（D）Data models are created out of datasets called pivots.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Which of the following statements describes Search workflow actions?

（A）The user can define the time range of the search when created the workflow action.

（B）Search workflow actions can be configured as scheduled searches,

（C）Search workflow actions cannot be configured with a search string that includes the transaction command

（D）By default. Search workflow actions will run as a real-time search.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Which of the following statements are true for this search? (Select all that apply.) SEARCH: sourcetype=access* |fields action productld status

（A）returns a table with 3 columns

（B）limits the fields are extracted

（C）is looking for all events that include the search terms: fields AND action AND productld AND status

（D）users the table command to improve performance

正解：B 解答を投票する

質問 8

The transaction command allows you to __________ events across multiple sources

（A）correlate

（B）persist

（C）duplicate

（D）tag

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

How many ways are there to access the Field Extractor Utility?

（A）3

（B）5

（C）1

（D）4

正解：A 解答を投票する

質問 10

The limit attribute will___________.

（A）override default of 10

（B）override default of 15

（C）override default of 20

（D）only work with top command

正解：A 解答を投票する

質問 11

The fields sidebar does not show________. (Select all that apply.)

（A）selected fields

（B）interesting fields

（C）all extracted fields

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

A macro has another macro nested within it, and this inner macro requires an argument. How can the user pass this argument into the SPL?

（A）An argument can be passed to the outer macro by nesting parentheses.

（B）An argument can be passed through the outer macro.

（C）An argument can be passed to the inner macro by nesting parentheses.

（D）There is no way to pass an argument to the inner macro.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

Which of the following searches will return events containing a tag named Privileged?

（A）tag=Priv*

（B）tag=privileged

（C）tag=Priv

（D）tag=priv*

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Which of the following statements about tags is true? (select all that apply.)

（A）Tags categorize events based on a search.

（B）Tags are based on field/vale pairs.

（C）Tags are case-insensitive.

（D）Tags are designed to make data more understandable.

正解：B、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

The Splunk Common Information Model (CIM) is a collection of what type of knowledge object?

（A）Data models

（B）KV Store

（C）Saved searches

（D）Lookups

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

The stats command will create a _____________ by default.

（A）Pie chart

（B）Table

（C）Report

正解：B 解答を投票する

質問 17

Consider the the following search run over a time range of last 7 days:
index=web sourcetype=access_conbined | timechart avg(bytes) by product_nane Which option is used to change the default time span so that results are grouped into 12 hour intervals?

（A）span=12h

（B）span=12

（C）timespan=12h

（D）timespan=12

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

Which of the following is the correct way to use the data model command to search field in the data model within the web dataset?

（A）| datamodel web search | filed web *

（B）| Search datamodel web web | filed web*

（C）Datamodel=web | search web | filed web*

（D）| datamodel web web field | search web*

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

SPLK-1002 無料問題集「Splunk Core Certified Power User」

弊社を連絡する

関連リンク

トップ試験