Splunk Core Certified Power User Exam Questions and Answers
Question 89
What is the correct format for naming a macro with multiple arguments?
Options:
A.
monthly_sales(argument 1, argument 2, argument 3)
B.
monthly_sales(3)
C.
monthly_sales[3]
D.
monthly_sales[argument 1, argument 2, argument 3)
Answer:
C
Explanation:
The correct format for naming a macro with multiple arguments is monthly_sales3. The square brackets indicate that the macro has arguments, and the number indicates how many arguments it has. The arguments are separated by commas when calling the macro, such as monthly_sales[region,salesperson,date].
Question 90
Which of the following is NOT a stats function:
Options:
A.
sum
B.
addtotals
C.
count
D.
avg
Answer:
B
Explanation:
The stats command is used to calculate summary statistics for your search results such as count, sum, avg, min, max and more2. The stats command supports various functions that you can use to perform calculations on your fields2. However, addtotals is not a stats function but a separate command that adds a row or column with the total of the values in each group2. Therefore, option B is correct, while options A, C and D are incorrect because they are valid stats functions.
