What is the primary use for the rare command1?
What is the primary use for the rare command1?A . To sort field values in descending orderB . To return only fields containing five or fewer valuesC . To find the least common values of...
What is the primary use for the rare command1?A . To sort field values in descending orderB . To return only fields containing five or fewer valuesC . To find the least common values of...
What kind of logs can Splunk Index?A . Only A, BB . Router and Switch LogsC . Firewall and Web Server LogsD . Only CE . Database logsF . All firewall, web server, database, router...
In the Fields sidebar, what does the number directly to the right of the field name indicate?A . The value of the fieldB . The number of values for the fieldC . The number of...
There are three different search modes in Splunk (Choose three.):A . AutomaticB . SmartC . FastD . VerboseView AnswerAnswer: B,C,D
All users by default have WRITE permission to ALL knowledge objects.A . TrueB . FalseView AnswerAnswer: B
What user interface component allows for time selection?A . Time summaryB . Time range pickerC . Search time pickerD . Data source time statisticsView AnswerAnswer: B
Query - status != 100:A . Will return event where status field exist but value of that field is not 100.B . Will return event where status field exist but value of that field is...
When running searches command modifiers in the search string are displayed in what color?A . RedB . BlueC . OrangeD . HighlightedView AnswerAnswer: C
What is the purpose of using a by clause with the stats command?A . To group the results by one or more fields.B . To compute numerical statistics on each field.C . To specify how...
Which search will return the 15 least common field values for the dest_ip field?A . sourcetype=firewall | rare num=15 dest_ipB . sourcetype=firewall | rare last=15 dest_ipC . sourcetype=firewall | rare count=15 dest_ipD . sourcetype=firewall |...