Which of the following best describes what the Uninstall and Maintenance Protection setting controls within your Sensor Update Policy?

• A.Prevents automatic updates of the sensor
• B.Prevents the sensor from entering Reduced Functionality Mode
• C.Prevents modification of sensor update policy
• D.Prevents unauthorized uninstallation of the sensor

Comment: *

Name: *

Email: *

Verification: *

Which port and protocol does the sensor use to communicate with the CrowdStrike Cloud?

• A.TCP port 80 (HTTP)
• B.TCP port 443 (HTTPS)
• C.TCP UDP port 53 (DNS)
• D.TCP port 22 (SSH)

Comment: *

Name: *

Email: *

Verification: *

Your CISO has decided all Falcon Analysts should also have the ability to view files and file contents locally on compromised hosts, but without the ability to take them off the host. What is the most appropriate role that can be added to fullfil this requirement?

• A.Remediation Manager
• B.Real Time Responder - Read Only Analyst
• C.Falcon Analyst - Read Only
• D.Real Time Responder - Active Responder

Comment: *

Name: *

Email: *

Verification: *

While a host is Network contained, you need to allow the host to access internal network resources on specific IP addresses to perform patching and remediation. Which configuration would you choose?

• A.Configure a Containment Policy with the specific IP addresses
• B.Configure a Containment Policy with the entire internal IP CIDR block
• C.Configure a Real Time Response policy allowlist with the specific IP addresses
• D.Configure the Host firewall to allowlist the specific IP addresses

Comment: *

Name: *

Email: *

Verification: *

Where should you look to find the history of the successes and failures for any Falcon Fusion workflows?

• A.Workflow Execution log
• B.Falcon Ul Audit Trail
• C.Workflow Audit log
• D.Custom Alert History

Comment: *

Name: *

Email: *

Verification: *