Prova PowerUser

Jun 9, 2021 in OBSERVABILITY • SPLUNK
splunk logs
2 min read

Splunk-Power-User

Esses são algumas perguntas preparatórios para a prova de Certificação PowerUser, uma das provas iniciais da Splunk para quem precisa executar tarefas de criação de consultas, alertas, dashboards, etc.

BluePrint = https://cutt.ly/RnYXKcU
65 Questões, mínimo de 75% de acerto.
Perguntas de Múltipla escolha.

Questões de Exemplo para a prova:

Which command removes results with duplicate field values? Resposta: dedup

These are booleans in the Splunk Search Language. Resposta: And, NOT, OR

Which is not a comparison operator in Splunk? Resposta: ?=

Field values are case sensitive. Resposta: False

How is the asterisk used in Splunk search? Resposta: As a wildcard

Which of the following is NOT a stats function: Resposta: addtotals

The search job inspector shows you how long a given search took to run. Resposta: TRUE

Which of the following search modes automatically returns all extracted fields in the fields sidebar? Resposta: Verbose Mode

Bucket names in Splunk indexes are used to: Resposta: Determine if the bucket should be searched based on the time range of the search

When searching, field values are case: Resposta: Insensitive

In this search, __________ will appear on the y-axis. SEARCH: sourcetype=access_combined status!=200 | chart count over host Resposta: count

The ______ clause allows you to define which field is represented on the X axis of a chart. Resposta: over

If a search returns _______ it can be viewed as a chart. Resposta: statistics

The _____ axis should always be numeric. Resposta: Y

Which type of visualization allows you to show a third dimension of data? Resposta: bubble chart

Which of the following are valid options with the chart command? Resposta: useother usenull

The iplocation and geostats commands can be used together. Resposta: True

The geom command allows you to create: Resposta: choropleth maps

This command will compute the sum of numeric fields within events and place the result in a new field: Resposta: addtotals

Which command is used to create choropleth maps? Resposta: geom

Materiais de Apoio:

Commonly Used Search Commands: https://cutt.ly/AnYCChs
Search Job Inspector: https://cutt.ly/BnYCVLm
Creating Custom Visualizations: https://cutt.ly/TnYCBGZ