SPLK-2001 Exam Dumps : Splunk Certified Developer Exam

The correct answer is A, because the correct post-process syntax for the base search shown below is var mypostproc1 = new PostProcessManager {{ id: “post1”, managerid: “base-search”, search: “| stats count by sourcetype” }}. The PostProcessManager is a JavaScript object that creates a post-process search that runs on the results of a base search. The PostProcessManager requires three parameters: id, managerid, and search. The id is a unique identifier for the post-process search. The managerid is the id of the base search that the post-process search depends on. The search is the post-process search string that runs on the base search results. The other options are incorrect because they either use the wrong managerid, the wrong object name, or the wrong search string.

The log file that contains logs that are most relevant to Splunk Web is web_service.log. This log file records information about the web server that runs Splunk Web, such as requests, responses, errors, and performance. The other log files contain logs that are related to other aspects of Splunk, such as audit.log for security events, metrics.log for performance metrics, and splunkd.log for Splunk daemon activity. For more information, see [About Splunk log files].

The correct answer is A because the /servicesNS/-/data/saved/searches/mySearch endpoint path can be used by someone with a power user role to access information about mySearch, a saved search owned by someone with a user role. The /servicesNS/-/data/saved/searches endpoint returns information about saved searches in a specific namespace. The - symbol in the URI means that the user and app context are inherited from the current session. Therefore, a power user can access the saved search information by using the - symbol, assuming the permissions are set appropriately. The other options are incorrect because they either use invalid endpoints or do not specify the user and app context correctly. You can find more information about the /servicesNS endpoint and the namespace in the Splunk REST API Reference Manual.