Which of the following statements are true about local data links? (select all that apply)
Answer : A, D
The correct answers are A and D.
The document explains that there are two types of data links: global and local. Global data links are available on all dashboards and charts, while local data links are available on only one dashboard. The document also provides the following information about local data links:
Anyone with write permission for a dashboard can add local data links that appear on that dashboard.
Local data links can have either a Splunk Observability Cloud internal destination or an external destination, such as a custom URL or a Kibana log.
Only Splunk Observability Cloud administrators can delete local data links.
Therefore, based on this document, we can conclude that A and D are true statements about local data links. B and C are false statements because:
B is false because local data links can have an external destination as well as an internal one.
C is false because anyone with write permission for a dashboard can create local data links, not just administrators.
Which of the following are required in the configuration of a data point? (select all that apply)
Answer : A, C, D
The required components in the configuration of a data point are:
Therefore, the correct answer is A, C, and D.
1: https://docs.splunk.com/Observability/gdi/metrics/metrics.html#Data-points
The Sum Aggregation option for analytic functions does which of the following?
Answer : C
In the Introduction to Splunk Infrastructure Monitoring course, there is a section on Analytic Functions, which explains that analytic functions can be used to perform calculations on metrics, such as sum, average, min, max, count, etc. The document also provides examples of how to use analytic functions in charts and dashboards.
One of the analytic functions that can be used is Sum Aggregation, which calculates the sum of values present in the input time series across the entire environment or per group. The document gives an example of how to use Sum Aggregation to calculate the total CPU usage across all hosts in a group by using the following syntax:
sum(cpu.utilization) by hostgroup
When creating a standalone detector, individual rules in it are labeled according to severity. Which of the choices below represents the possible severity levels that can be selected?
Answer : C
The correct answer is C. Info, Warning, Minor, Major, and Critical.
Which of the following are accurate reasons to clone a detector? (select all that apply)
Answer : A, D
The correct answers are A and D.
In the Alerting with Detectors course, there is a section on Cloning Detectors, which explains that cloning a detector creates a copy of the detector with all its settings, rules, and alert recipients. The document also provides some reasons why you might want to clone a detector, such as:
To modify the rules without affecting the existing detector. This can be useful if you want to test different thresholds or conditions before applying them to the original detector.
To explore how a detector was created without risk of changing it. This can be helpful if you want to learn from an existing detector or use it as a template for creating a new one.
Therefore, based on these documents, we can conclude that A and D are accurate reasons to clone a detector. B and C are not valid reasons because:
Cloning a detector does not reduce the amount of billed TAPM for the detector. TAPM stands for Tracked Active Problem Metric, which is a metric that has been alerted on by a detector. Cloning a detector does not change the number of TAPM that are generated by the original detector or the clone.
Cloning a detector does not add an additional recipient to the detector's alerts. Cloning a detector copies the alert recipients from the original detector, but it does not add any new ones. To add an additional recipient to a detector's alerts, you need to edit the alert settings of the detector.
What is one reason a user of Splunk Observability Cloud would want to subscribe to an alert?
Answer : C
One reason a user of Splunk Observability Cloud would want to subscribe to an alert is C. To receive an email notification when a detector is triggered.
Which component of the OpenTelemetry Collector allows for the modification of metadata?
Answer : A
The component of the OpenTelemetry Collector that allows for the modification of metadata is A. Processors.