CertsTopics Logo

Winter Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Pass Using SPLK-1002 Exam Dumps

Page: 2 / 22
Total 286 questions
Get SPLK-1002 Full Access Download SPLK-1002 PDF

Splunk Core Certified Power User Exam Questions and Answers

Question 5

Given the following eval statement:

... | eval field1 = if(isnotnull(field1),field1,0), field2 = if(isnull(field2), "NO-VALUE", field2)

Which of the following is the equivalent using fillnull?

Options:

A.

... | fillnull values=(0,"NO-VALUE") fields=(field1,field2)

B.

There is no equivalent expression using fillnull

C.

... | fillnull field1 | fillnull value="NO-VALUE" field2

D.

... | fillnull value=0 field1 | fillnull field2

Question 6

In which Settings section are macros defined?

Options:

A.

Fields

B.

Tokens

C.

Advanced Search

D.

Searches, Reports, Alerts

Question 7

Which command can include both an over and a by clause to divide results into sub-groupings?

Options:

A.

chart

B.

stats

C.

xyseries

D.

transaction

Question 8

Which of the following is NOT a stats function:

Options:

A.

sum

B.

addtotals

C.

count

D.

avg

Page: 2 / 22
Total 286 questions
Get SPLK-1002 Full Access Download SPLK-1002 PDF