1.

What are the default fields for every event in Splunk?

Answer»

There are 5 default FIELDS that are barcoded with all EVENTS in SPLUNK. They are:

  • Host
  • Source
  • Source type
  • Index
  • Timestamp


Discussion

No Comment Found

Related InterviewSolutions