Complete list of current Q & A>> Download Splunk Certified Developer (SPLK-2001) – Quiz 1 / 15 1. Which of the following are true of auto-refresh for dashboard panels? (Select all that apply.) A. Applies to inline searches and saved searches. B. Enabling auto-refresh for a report requires editing XML. C. Post-processing searches are refreshed when their base searches are refreshed. D. Each post-processing search using the same base search can have a different refresh time. 2 / 15 2. Which of the following is an example of a Splunk KV store use case? (Select all that apply.) A. Stores checkpoint data for modular inputs. B. Tracks workflow in an incident-review system. C. Indexes metrics data from remote HTTP sources. D. Stores application state as a user interacts with an app. 3 / 15 3. Which statements are true regarding HEC (HTTP Event Collector) tokens? (Select all that apply.) A. Multiple tokens can be created for use with different sourcetypes and indexes B. The edit token http admin role capability is required to create a token. C. To create a token, send a POST request to services/collector endpoint. D. Tokens can be edited using the data/inputs/http/{tokenName} endpoint. 4 / 15 4. What application security best practices should be adhered to while developing an app for Splunk? (Select all that apply.) A. Review the OWASP Top Ten List. B. Store passwords in clear text in .conf files. C. Review the OWASP Secure Coding Practices Quick Reference Guide. D. Ensure that third-party libraries that the app depends on have no outstanding CVE vulnerabilities. 5 / 15 5. Which of the following options would be the best way to identify processor bottlenecks of a search? A. Using the REST API. B. Using the search job inspector. C. Using the Splunk Monitoring Console. D. Searching the Splunk logs using index=“ internal”. 6 / 15 6. Which of the following are characteristics of an add-on? (Select all that apply.) A. Requires navigation file. B. Occupies a unique namespace within Splunk. C. Can depend on add-ons for correct operation. D. Contains technology or components not intended for reuse by other apps. 7 / 15 7. After updating a dashboard in myApp, a Splunk admin moves myApp to a different Splunk instance. After logging in to the new instance, the dashboard is not seen. What could have happened? (Select all that apply.) A. The dashboard’s permissions were set to private. B. User role permissions are different on the new instance. C. The admin deleted the myApp/local directory before packaging. D. Changes were placed in: $SPLUNK_HOME/etc/apps/search/default/data/ui/nav 8 / 15 8. Which of the following are benefits from using Simple XML Extensions? (Select all that apply.) A. Add custom layouts. B. Add custom graphics. C. Add custom behaviors. D. Limit Splunk license consumption based on host. 9 / 15 9. When updating a knowledge object via REST, which of the following are valid values for the sharing Access Control List property? A. App B. User C. Global D. Nobody 10 / 15 10. For a KV store, a lookup stanza in the transforms.conf file must contain which of the following? (Select all that apply.) A. collection B. fields_list C. external_type D. internal_type 11 / 15 11. How can event logs be collected from a remote Windows machine using a standard Splunk installation and no customization? (Select all that apply.) A. By configuring a WMI input. B. By using HTTP event collector. C. By using a Windows heavy forwarder. D. By using a Windows universal forwarder. 12 / 15 12. Which of the following is a security best practice? A. Enable XSS. B. Eliminate all escape characters. C. Ensure the app passes App Certification. D. Ensure components have no Common Vulnerabilities and Exposures (CVE) vulnerabilities. 13 / 15 13. Which of the following log files contains logs that are most relevant to Splunk Web? A. audit.log B. metrics.log C. splunkd.log D. web_service.log 14 / 15 14. Which of the following describes a Splunk custom visualization? A. A visualization with custom colors. B. Any visualization available in Splunk. C. A visualization in Splunk modified by the user. D. A visualization that uses the Splunk Custom Visualization API. 15 / 15 15. Which of the following are types of event handlers? (Select all that apply.) A. Search B. Set token C. Form input D. Visualization Your score is 0% Restart quiz Send feedback
