CrowdStrike
CCFA-200B · Question #218
CCFA-200B Question #218: Real Exam Question with Answer & Explanation
Sign in or unlock CCFA-200B to reveal the answer and full explanation for question #218. The question stem and answer options stay visible for context.
Question
As a Falcon Administrator, you would like to tune your Prevention Policies and compare the number of detections that would have resulted in the last 30 days depending on which detection level was used (Cautious, Moderate, Aggressive or Extra Aggressive). Which audit logs would best help you evaluate the appropriate setting to use?
Options
- AMachine-learning prevention monitoring
- BPrevention policy
- CPolicy efficacy monitoring
- DPrevention policy debug
Unlock CCFA-200B to see the answer
You've previewed enough free CCFA-200B questions. Unlock CCFA-200B for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.