New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

CrowdStrike Falcon Certification Program CCFA-200 Dumps PDF

Page: 6 / 11
Question 24

Which is a filter within the Host setup and management > Host management page?

Options:

A.

User name

B.

OU

C.

BIOS Version

D.

Locality

Question 25

Why is the ability to disable detections helpful?

Options:

A.

It gives users the ability to set up hosts to test detections and later remove them from the console

B.

It gives users the ability to uninstall the sensor from a host

C.

It gives users the ability to allowlist a false positive detection

D.

It gives users the ability to remove all data from hosts that have been uninstalled

Question 26

Which role will allow someone to manage quarantine files?

Options:

A.

Falcon Security Lead

B.

Detections Exceptions Manager

C.

Falcon Analyst – Read Only

D.

Endpoint Manager

Question 27

What best describes the relationship between Sensor Update policies and Operating Systems?

Options:

A.

Windows and Mac share Sensor Update policies. Linux requires its own set of polices based on the different kernel versions

B.

Sensor Update polices are not Operating System specific. One policy can be applied to all Operating Systems

C.

Windows has its own Sensor Update polices. But Mac and Linux share Sensor Update policies

D.

A Sensor Update policy must be configured for each Operating System (Windows, Mac, Linux)

Page: 6 / 11
Exam Code: CCFA-200
Exam Name: CrowdStrike Certified Falcon Administrator
Last Update: Dec 27, 2024
Questions: 153
CCFA-200 pdf

CCFA-200 PDF

$25.5  $84.99
CCFA-200 Engine

CCFA-200 Testing Engine

$28.5  $94.99
CCFA-200 PDF + Engine

CCFA-200 PDF + Testing Engine

$40.5  $134.99