1. Home
  2. Discussions
  3. Splunk
  4. Splunk Core Certified User
  5. SPLK-1004 Discussions
  6. SPLK-1004 Exam Topic 3 Question 25 Discussion

Splunk Core Certified Advanced Power User Exam SPLK-1004 Question # 25 Topic 3 Discussion

 Splunk Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Splunk Core Certified Advanced Power User Exam SPLK-1004 Question # 25 Topic 3 Discussion

SPLK-1004 Exam Topic 3 Question 25 Discussion:
Question #: 25
Topic #: 3

A report named "Linux logins" populates a summary index with the search string sourcetype=linux_secure | sitop src_ip user. Which of the following correctly searches against the summary index for this data?
A.

index=summary sourcetype="linux_secure" | top src_ip user

B.

index=summary search_name="Linux logins" | top src_ip user

C.

index=summary search_name="Linux logins" | stats count by src_ip user

D.

index=summary sourcetype="linux_secure" | stats count by src_ip user

Get Premium SPLK-1004 Questions
Actual exam question for Splunk SPLK-1004 exam by Rune9548 at Aug 2, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next