Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Splunk®
  5. SPLK-2001

Free SPLK-2001 Exam Braindumps (page: 5)

Page 4 of 18
PDF with 70 Questions

Assuming permissions are set appropriately, which REST endpoint path can be used by someone with a power user role to access information about mySearch, a saved search owned by someone with a user role?

  1. /servicesNS/-/data/saved/searches/mySearch
  2. /servicesNS/object/saved/searches/mySearch
  3. /servicesNS/search/saved/searches/mySearch
  4. /servicesNS/-/search/saved/searches/mySearch

Answer(s): D


Reference:

https://docs.splunk.com/Documentation/Splunk/8.1.2/RESTUM/RESTusing



Using Splunk Web to modify config settings for a shared object, a revised config file with those changes is placed in which directory?

  1. $SPLUNK_HOME/etc/apps/myApp/local
  2. $SPLUNK_HOME/etc/system/default/
  3. $SPLUNK_HOME/etc/system/local
  4. $SPLUNK_HOME/etc/apps/myApp/default

Answer(s): A


Reference:

https://docs.splunk.com/Documentation/Splunk/8.1.2/Admin/Howtoeditaconfigurationfile



What application security best practices should be adhered to while developing an app for Splunk? (Select all that apply.)

  1. Review the OWASP Top Ten List.
  2. Store passwords in clear text in .conf files.
  3. Review the OWASP Secure Coding Practices Quick Reference Guide.
  4. Ensure that third-party libraries that the app depends on have no outstanding CVE vulnerabilities.

Answer(s): A,C


Reference:

https://dev.splunk.com/enterprise/docs/developapps/testvalidate/securitybestpractices/



There is a global search named “global_search” defined on a form as shown below:

<search id=“global_search”>
<query>
index-_internal source-*splunkd.log | stats count by component, log_level
</query>
</search>

Which of the following would be a valid post-processing search? (Select all that apply.)

  1. | tstats count
  2. sourcetype=mysourcetype
  3. stats sum(count) AS count by log level
  4. search log_level=error | stats sum(count) AS count by component

Answer(s): C,D


Reference:

https://docs.splunk.com/Documentation/Splunk/8.1.2/Viz/Savedsearches






Post your Comments and Discuss Splunk® SPLK-2001 exam with other Community members: