1. Home
  2. Discussions
  3. Splunk
  4. Splunk Core Certified Consultant
  5. SPLK-3003 Discussions
  6. SPLK-3003 Exam Topic 2 Question 14 Discussion

Splunk Core Certified Consultant SPLK-3003 Question # 14 Topic 2 Discussion

 Splunk Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Splunk Core Certified Consultant SPLK-3003 Question # 14 Topic 2 Discussion

SPLK-3003 Exam Topic 2 Question 14 Discussion:
Question #: 14
Topic #: 2

The data in Splunk is now subject to auditing and compliance controls. A customer would like to ensure that at least one year of logs are retained for both Windows and Firewall events. What data retention controls must be configured?
A.

maxTotalDataSizeMB and frozenTimePeriodInSecs

B.

coldToFrozenDir and coldToFrozenScript

C.

Splunk Volume and maxTotalDataSizMB

D.

Splunk Volume and frozenTimePeriodInSecs

Get Premium SPLK-3003 Questions
Actual exam question for Splunk SPLK-3003 exam by Milo248 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next