nerdexam
CrowdStrike

CCFA-200B · Question #104

CCFA-200B Question #104: Real Exam Question with Answer & Explanation

The correct answer is C. There is no limit and exclusions can be applied to any or all groups. An exclusion is a rule that tells the Falcon platform to ignore certain files, folders, processes, or registry keys when performing prevention or detection actions. An administrator can create an exclusion and apply it to one or more groups of hosts, or to all hosts in the organi

Question

An administrator creating an exclusion is limited to applying a rule to how many groups of hosts?

Options

  • AFile exclusions are not aligned to groups or hosts
  • BThere is a limit of three groups of hosts applied to any exclusion
  • CThere is no limit and exclusions can be applied to any or all groups
  • DEach exclusion can be aligned to only one group of hosts

Explanation

An exclusion is a rule that tells the Falcon platform to ignore certain files, folders, processes, or registry keys when performing prevention or detection actions. An administrator can create an exclusion and apply it to one or more groups of hosts, or to all hosts in the organization. For example, an administrator can create an exclusion for a legitimate application that is causing false positives and apply it to the group of hosts that are running that application.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CCFA-200B Practice