Practice Exams:

Free SPLK-1005 Exam Braindumps

Pass your Splunk Cloud Certified Admin exam with these free Questions and Answers

Page 2 of 15
PDF with 73 Questions
QUESTION 1

What is the name of the Splunk Enterprise feature that provides a security data and event management (SIEM) solution that uses machine data to detect and respond to threats?

  1. A. Splunk Enterprise Security
  2. B. Splunk Enterprise Intelligence
  3. C. Splunk Enterprise Analytics
  4. D. Splunk Enterprise Monitoring

Correct Answer: A

QUESTION 2

What is the name of the first step that you need to perform to configure the LDAP authentication scheme with Splunk Web?

  1. A. Create an LDAP strategy
  2. B. Map LDAP groups to Splunk roles
  3. C. Configure LDAP settings
  4. D. Test LDAP connection

Correct Answer: A

QUESTION 3

Which option in Splunk web can be used to access the Guided Data On-boarding feature?

  1. A. Add data
  2. B. Data inputs
  3. C. Data summary
  4. D. Data models

Correct Answer: A

QUESTION 4

What is the name of the configuration file where you can set custom rules for event line breaking and line merging for a specific app?

  1. A. inputs.conf
  2. B. outputs.conf
  3. C. props.conf
  4. D. transforms.conf

Correct Answer: C

QUESTION 5

Which setting in inputs.conf can be used to specify the maximum size of a file that can be monitored by Splunk?

  1. A. max_file_size
  2. B. max_file_age
  3. C. max_file_count
  4. D. max_file_bytes

Correct Answer: A

Page 2 of 15
PDF with 73 Questions

Post your Comments and Discuss Splunk SPLK-1005 exam with other Community members: