SPLK-1005 V1

Which option in Splunk web can be used to access the Guided Data On-boarding feature?A . Add data B. Data inputs C. Data summary D. Data modelsView AnswerAnswer: A

Which configuration file parameter can be used to modify line termination settings interactively, using the Set Source Type page in Splunk Web?A . LINE_BREAKER B. SHOULD_LINEMERGE C. BREAK_ONLY_BEFORE D. TRUNCATEView AnswerAnswer: A

Which command can be used to install a universal forwarder on a Linux system?A . splunk install forwarder B. splunk forwarder install C. splunk add forward-server D. splunk enable boot-startView AnswerAnswer: D

Which configuration file needs to be edited to enable local indexing on the forwarder?A . outputs.conf B. inputs.conf C. props.conf D. transforms.confView AnswerAnswer: B

Which configuration file determines how a universal forwarder forwards data to the indexer?A . inputs.conf B. outputs.conf C. props.conf D. transforms.confView AnswerAnswer: B

Which Splunk add-on simplifies the process of getting data into Splunk Cloud Platform from Windows Event Log channels?A . Splunk Add-on for Windows B. Splunk Add-on for Infrastructure C. Splunk Add-on for Active Directory D. Splunk Add-on for DNSView AnswerAnswer: A

What is the name of the dashboard that provides information on incoming data consumption and indexing rate for your Splunk Cloud Platform deployment?A . Indexing Performance B. Indexing Quality C. Indexing Status D. Indexing OverviewView AnswerAnswer: D

Which setting in inputs.conf can be used to specify the command to run the script for a scripted input?A . script B. command C. exec D. runView AnswerAnswer: A

What is the name of the attribute that specifies the sed script for data transformation in the props.conf file?A . SEDCMD B. FORMAT C. DEST_KEY D. TRANSFORMSView AnswerAnswer: A

What is the name of the process that breaks the stream of raw data into individual lines called events?A . Line breaking B. Event annotation C. Event transformation D. Timestamp extractionView AnswerAnswer: A