A. Use AD on KPIs that have an unestablished baseline of data points. This allows the ML pattern to perform it's magic.
B. A minimum of 24 hours of data is needed for anomaly detection, and a minimum of 4 entities for cohesive analysis.
C. There are 3 types of anomaly detection supported in ITSI: adhoc, trending, and cohesive.
D. Anomaly detection automatically generates notable events when KPI data diverges from the pattern.
A. One or more correlation searches and their associated entities.
B. One or more services with KPIs and their associated base searches.
C. One or more entity import saved searches.
D. One or more datamodels.
A. Create teams for each department and assign KPIs to each team.
B. Create service templates for each group and create the services from the templates.
C. Create services for each group and set the permissions of the services to restrict them to each group.
D. Create teams for each department and assign services to the teams.
A. KPI calculations and threshold settings can be modified.
B. KPI searches still run during maintenance mode, but results go to itsi_maintenance_summary index.
C. KPI searches will execute but will be buffered until the maintenance window is over.
D. New KPIs can be created, but existing KPIs are locked.
A. Assign the current user as owner.
B. Change status from New to In Progress and assign the current user as owner.
C. Change status from New to Acknowledged and assign the current user as owner.
D. Change status from New to Acknowledged.
A. SplunkWeb (8089), SplunkD (8088), and HTTP Collector (8000)
B. SplunkWeb (8405), SplunkD (8519), and HTTP Collector (8628)
C. SplunkWeb (8088), SplunkD (8089), and HTTP Collector (8000)
D. SplunkWeb (8000), SplunkD (8089), and HTTP Collector (8088)
A. A new team admin role should be created for each team. The new role should inherit the'itoa_team_admin' role.
B. Teams should have itoa admin roles added with read-only permissions for services and entities.
C. Services should be assigned to the 'global' team if all users need access to it.
D. By default, all services are owned by the built-in 'global' team and administered by the 'itoa_admin' role.
A. Text similarity and category similarity.
B. Text deviation and category similarity.
C. Text similarity and category deviation.
D. Text deviation and category deviation.
A. ITSI app
B. SA-ITOA
C. All ITSI components
D. SA-ITSI-Licensechecker
A. Search heads, indexers, and heavy forwarders
B. Indexers and forwarders
C. Search heads, indexers, and universal forwarders
D. Indexers and search heads