Free Access to CrowdStrike.CCFA-200.v2024-06-13.q90 with Valid Practice Test (Page 8)

Which of the following is TRUE regarding Falcon Next-Gen AntiVirus (NGAV)?

A.The Detection sliders cannot be set to a value less aggressive than the Prevention sliders
B.Falcon NGAV is not a replacement for Windows Defender or other antivirus programs
C.Falcon NGAV relies on signature-based detections
D.Activating Falcon NGAV will also enable all detection and prevention settings in the entire policy

How does the Unique Hosts Connecting to Countries Map help an administrator?

In order to quarantine files on the host, what prevention policy settings must be enabled?

A.Malware Protection and Custom Execution Blocking must be enabled
B.Next-Gen Antivirus Prevention sliders and "Quarantine & Security Center Registration" must be enabled
C.Malware Protection and Windows Anti-Malware Execution Blocking must be enabled
D.Behavior-Based Threat Prevention sliders and Advanced Remediation Actions must be enabled

What can the Quarantine Manager role do?

You want to create a detection-only policy. How do you set this up in your policy's settings?

A.Enable the detection sliders and disable the prevention sliders. Then ensure that Next Gen Antivirus is enabled so it will disable Windows Defender.
B.Select the "Detect-Only" template. Disable hash blocking and exclusions.
C.You can't create a policy that detects but does not prevent. Use Custom IOA rules to detect.
D.Set the Next-Gen Antivirus detection settings to the desired detection level and all the prevention sliders to disabled. Do not activate any of the other blocking or malware prevention options.

Download PDF File