ExamTopics Logo
Mail Us[email protected]
Menu
Splunk Discussions
exam questions

Exam SPLK-2002 All Questions

View all questions & answers for the SPLK-2002 exam
Go to Exam

Exam SPLK-2002 topic 1 question 26 discussion

Actual exam question from Splunk's SPLK-2002
Question #: 26
Topic #: 1
[All SPLK-2002 Questions]

Which of the following security options must be explicitly configured (i.e. which options are not enabled by default)?

  • A. Data encryption between Splunk Web and splunkd.
  • B. Certificate authentication between forwarders and indexers.
  • C. Certificate authentication between Splunk Web and search head.
  • D. Data encryption for distributed search between search heads and indexers.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by scostic at Feb. 9, 2021, 3:24 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
scostic
Highly Voted 4 years ago
B and C https://docs.splunk.com/Documentation/Splunk/latest/Security/AboutsecuringyourSplunkconfigurationwithSSL
upvoted 12 times
Bob_Hob
2 weeks ago
I think this documentation link is just saying you can use your own certificate in place of splunk's default ones. Meaning the answer would just be B unless there was better documentation
upvoted 1 times
...
jackac
3 years, 2 months ago
it actually should just be B, Splunk Web to search head is SSL secured by default but forwarder to indexer is NOT by default. The table in the link above shows this.
upvoted 4 times
SasnycoN
3 years ago
Answer C is not for the SSL but for the Certificate authentication. Encryption between Splunk Web and SH is enabled by default but NOT the "Certificate Authentication" which is the example in C. In fact there is no single case where the Certificate authentication is enabled by default.
upvoted 4 times
...
...
...
Proctor
Highly Voted 2 years, 4 months ago
Just FYI - in the real exam, this is not a multiple choice question. Only one answer is accepted.
upvoted 8 times
BRYE33
6 months, 2 weeks ago
So which answer would you choose @Proctor?
upvoted 1 times
...
...
CactiAZ
Most Recent 4 months ago
Selected Answer: B
It's only answer B. A and C are not valid answers because they mention internal processes that occur within a single box. D is valid but is already turned on by default.
upvoted 1 times
...
bobixaka
1 year ago
Selected Answer: C
B and C Ref: https://docs.splunk.com/Documentation/Splunk/latest/Security/AboutsecuringyourSplunkconfigurationwithSSL#Methods_to_secure_the_Splunk_platform
upvoted 1 times
...
qtygbapjpesdayazko
1 year, 8 months ago
Selected Answer: B
B and C
upvoted 1 times
...
RedYeti
2 years, 10 months ago
Selected Answer: C
Answers B and C. Data encryption is enabled everywhere by default except from Forwarders to Indexers, between Indexers and from browser to Splunk Web. In the other hand, certificate authentication is never enabled by default anywhere.
upvoted 1 times
...
SasnycoN
3 years ago
Answers B and C should be valid both according to : https://docs.splunk.com/Documentation/Splunk/latest/Security/AboutsecuringyourSplunkconfigurationwithSSL
upvoted 3 times
...
matsumo
3 years, 4 months ago
This question was a single answer. I think C is correct.
upvoted 2 times
RedYeti
2 years, 10 months ago
It's written "which options are not enabled by default"
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago