nerdexam
CrowdStrike

CCFA-200B · Question #73

CCFA-200B Question #73: Real Exam Question with Answer & Explanation

The correct answer is A. A parameter, an operator, and a value. A workflow condition consists of a parameter, an operator, and a value. A workflow condition is a rule that defines when a workflow should be triggered based on certain criteria or filters. A parameter is a variable or attribute that can be used to filter or match detection event

Question

What three things does a workflow condition consist of?

Options

  • AA parameter, an operator, and a value
  • BA beginning, a middle, and an end
  • CTriggers, actions, and alerts
  • DNotifications, alerts, and API's

Explanation

A workflow condition consists of a parameter, an operator, and a value. A workflow condition is a rule that defines when a workflow should be triggered based on certain criteria or filters. A parameter is a variable or attribute that can be used to filter or match detection events, such as severity, tactic, or host group. An operator is a symbol or word that specifies how to compare or evaluate the parameter and the value, such as equals, contains, or greater than. A value is a constant or expression that provides the expected or desired result for the parameter, such as high, credential dumping, or default group.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CCFA-200B Practice