CCFA-200 – CrowdStrike Certified Falcon Administrator

Loading demo links...

Showing 4–6 of 10 questions

Question 4

An analyst is asked to retrieve an API client secret from a previously generated key. How can they achieve this?

Select an option, then click Submit answer.

○
The API client secret can be viewed from the Edit API client pop-up box
○
Enable the Client Secret column to reveal the API client secret
○
Re-create the API client using the exact name to see the API client secret
○
The API client secret cannot be retrieved after it has been created

Question 5

Your organization has a set of servers that are not allowed to be accessed remotely, including via Real Time Response (RTR). You already have these servers in their own Falcon host group. What is the next step to disable RTR only on these hosts?

Select an option, then click Submit answer.

○
Edit the Default Response Policy, toggle the "Real Time Response" switch off and assign the policy to the host group
○
Edit the Default Response Policy and add the host group to the exceptions list under "Real Time Functionality"
○
Create a new Response Policy, toggle the "Real Time Response" switch off and assign the policy to the host group
○
Create a new Response Policy and add the host name to the exceptions list under "Real Time Functionality"

Question 6

Once an exclusion is saved, what can be edited in the future?

Select an option, then click Submit answer.

○
All parts of the exclusion can be changed
○
Only the selected groups and hosts to which the exclusion is applied can be changed
○
Only the options to "Detect/Block" and/or "File Extraction" can be changed
○
The exclusion pattern cannot be changed

← Prev 1 2 3 4 Next →

Page 2 of 4

Sale Ends In

2h 0m 0s