Microsoft
Amazon
CompTIA
Salesforce
Cisco®
SAP
PMI
ISC
ISACA
VMware
HP
Palo Alto Networks
EC-Council
LPI
Google
Fortinet
All Vendors
  2. Home
  3. Exam List
  4. Splunk®
  5. SPLK-2002

Splunk Enterprise Certified Architect
SPLK-2002 Exam

Splunk Enterprise platform instrumentation refers to data that the Splunk Enterprise deployment logs in the _introspection index. Which of the following logs are included in this index? (Select all that apply.)

  1. audit.log
  2. metrics.log
  3. disk_objects.log
  4. resource_usage.log

Answer(s): C,D


Reference:

https://docs.splunk.com/Documentation/Splunk/7.3.1/Troubleshooting/Abouttheplatforminstrumentationframework



Which of the following can a Splunk diag contain?

  1. Search history, Splunk users and their roles, running processes, indexed data
  2. Server specs, current open connections, internal Splunk log files, index listings
  3. KV store listings, internal Splunk log files, search peer bundles listings, indexed data
  4. Splunk platform configuration details, Splunk users and their roles, current open connections, index listings

Answer(s): B


Reference:

https://splunkonbigdata.com/2018/10/01/splunk-diag/



Which of the following are true statements about Splunk indexer clustering?

  1. All peer nodes must run exactly the same Splunk version.
  2. The master node must run the same or a later Splunk version than search heads.
  3. The peer nodes must run the same or a later Splunk version than the master node.
  4. The search head must run the same or a later Splunk version than the peer nodes.

Answer(s): B


Reference:

https://answers.splunk.com/answers/760348/search-head-version-compatibility.html



A customer plans to ingest 600 GB of data per day into Splunk. They will have six concurrent users, and they also want high data availability and high search performance. The customer is concerned about cost and wants to spend the minimum amount on the hardware for Splunk. How many indexers are recommended for this deployment?

  1. Two indexers not in a cluster, assuming users run many long searches.
  2. Three indexers not in a cluster, assuming a long data retention period.
  3. Two indexers clustered, assuming high availability is the greatest priority.
  4. Two indexers clustered, assuming a high volume of saved/scheduled searches.

Answer(s): D


Reference:

https://docs.splunk.com/Documentation/Splunk/7.3.2/Capacity/Summaryofperformancerecommendations




Koshani
A well Good morning Dear braindumpgalaxy.com Team I wanna say that I passed the 000-888 yesterday and i am happy
- UNITED STATES
Upvote


Aized
I took the A+ hardware exam yesterday and thanks to your excellent and helping preparation material. I got a nice score.
- Pakistan
Upvote


Nazanin
I passed the exam with great distinction!
- CANADA
Upvote


Xiwan W
Great Price....Great Product. Keep up the good work!
- China
Upvote


Ashwin
So far your practice exams are extremely helpful. My test scores keep on going up every time I do them and I feel very confident now.
- India
Upvote


Mike M
The exams was excellent and helped me pass without any doubt.Very helpful! Thank you! I passed!
- UNITED ARAB EMIRATES
Upvote


Smart one
You guys rock. I just passed my 920-139 exam with 929 marks. Thanks for accurate & descriptive question bank.
- UK
Upvote


C J
Just to let you know, I passed my exam. Thank you,
- Mexico
Upvote


Mr. P
I just have to say a big thank you to you guys... i passed 70-552 exams with 896. You guys are the bomb! Keep the faith and the flag of being good. A big thank you once again.(10Q ALL).
- GERMANY
Upvote


Darwin
I passed the Novell 640-822 exam on this last Thursday after using your online test and IPad. This is my first experience with your exams. I'll be using your material from now on. In a few days I'll purchase my last study material for the C
- France
Upvote

Read more ...