SPLK-1005 V1

What is the name of the configuration file where you can specify the source type for a data input?A . limits.conf B. props.conf C. inputs.conf D. transforms.confView AnswerAnswer: B

Which configuration file needs to be edited to configure the universal forwarder to act as a deployment client?A . deploymentclient.conf B. server.conf C. outputs.conf D. inputs.confView AnswerAnswer: A

Which Windows-specific input type allows Splunk software to read special Windows log files such as the DNS debug server log?A . MonitorNoHandle B. Windows Event Log C. Windows Registry D. Windows Management Instrumentation (WMI)View AnswerAnswer: D

What is the name of the default field that stores the timestamps in UNIX time when data is indexed?A . _time B. _timestamp C. _date D. _epochView AnswerAnswer: A

Which type of forwarder is a full Splunk Enterprise instance that can run apps and add-ons?A . Universal forwarder B. Heavy forwarder C. Deployment server D. Search headView AnswerAnswer: B

Which file processor can be used to index files that are not actively written to or updated?A . Monitor B. MonitornoHandle C. Upload D. None of the aboveView AnswerAnswer: A

Which feature of forwarders can prevent data loss in case of network failure or congestion?A . Data compression B. SSL security C. Configurable buffering D. Persistent queuesView AnswerAnswer: D

What is the main advantage of self-service Splunk Cloud over managed Splunk Cloud in terms of cost and control?A . Self-service Splunk Cloud costs more to get started and maintain but allows your organization total control in setup and security configurations. B. Self-service Splunk Cloud costs less to get started...

What is the name of the tab in Splunk Web where you can set the indexes that a role can access?A . Inheritance B. Capabilities C. Indexes D. RestrictionsView AnswerAnswer: C

Which setting in inputs.conf can be used to specify the interval at which the script runs for a scripted input?A . interval B. frequency C. schedule D. cronView AnswerAnswer: A