Splunk
SPLK-1004 · Question #22
SPLK-1004 Question #22: Real Exam Question with Answer & Explanation
Sign in or unlock SPLK-1004 to reveal the answer and full explanation for question #22. The question stem and answer options stay visible for context.
Question
A report named "Linux logins" populates a summary index with the search string sourcetype=linux_secure| sitop src_ip user. Which of the following correctly searches against the summary index for this data?
Options
- Aindex=summary sourcetype="linux_secure" | top src_ip user
- Bindex=summary search_name="Linux logins" | top src_ip user
- Cindex=summary search_name="Linux logins" | stats count by src_ip user
- Dindex=summary sourcetype="linux_secure" | stats count by src_ip user
Unlock SPLK-1004 to see the answer
You've previewed enough free SPLK-1004 questions. Unlock SPLK-1004 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.