Splunk Enterprise Certified Admin — Question 55

Which HTTP Event Collector (HEC) endpoint should be used to collect data in the following format?
{`message`:`Hello World`, `foo`:`bar`, `pony`:`buttercup`}

Answer options

• A. data/inputs/http/{name}
• B. services/collector/raw
• C. services/collector
• D. data/inputs/http

Correct answer: C

Explanation

The correct answer is C because the 'services/collector' endpoint is specifically designed to handle events in the format provided. The other options either point to endpoints for different purposes or require additional parameters that are not suitable for the given data format.