A. Heavy Forwarder only.
B. Apps cannot be installed on on-prem instances.
C. Universal Forwarder or Heavy Forwarder.
D. Universal Forwarder only.
A. access_corabined
B. linux_secure, access_combined
C. linux aacurs
D. NULL, or unset, due to configuration conflict
A. metadata folder
B. local.meta
C. app.conf (in default or local)
D. props.conf
A. 512 KBps
B. 256 KBps
C. 1024 KBps
D. 0KBps
A. TCP/UDP Feed > Syslog Server with Universal Forwarder > Splunk Cloud
B. TCP/UDP Feed > Heavy Forwarder > Intermediate Forwarder > Splunk Cloud
C. TCP/UDP Feed > Intermediate Forwarder > Heavy Forwarder > Splunk Cloud
D. TCP/UDP Feed > Universal Forwarder > Intermediate Forwarder > Splunk Cloud
A.
B.
C.
D.
A. Creating users and roles.
B. Managing knowledge objects.
C. Forwarding events to Splunk Cloud.
D. Upgrading the indexer's Splunk software.
A. Self-service install is available for all apps on Splunkbase.
B. Only Cloud certified and vetted apps are supported.
C. Self-service install of premium apps is possible.
D. Any app that can be deployed in an on-prem Splunk Enterprise environment is also supported on Splunk Cloud.
