CCFA Exam QuestionsBrowse all questions from this exam

CCFA Exam - Question 28

In order to quarantine files on the host, what prevention policy settings must be enabled?

Malware Protection and Custom Execution Blocking must be enabled

Next-Gen Antivirus Prevention sliders and "Quarantine & Security Center Registration" must be enabled

Malware Protection and Windows Anti-Malware Execution Blocking must be enabled

Behavior-Based Threat Prevention sliders and Advanced Remediation Actions must be enabled

Show Answer

Correct Answer: B,C

To quarantine files on the host, it is essential to have the Next-Gen Antivirus Prevention sliders enabled as they provide the core protection against threats. Additionally, the 'Quarantine & Security Center Registration' must be enabled to manage and register quarantined files effectively. This combination ensures a comprehensive approach to identifying, blocking, and isolating malicious files.

Discussion

9 comments

plantvastOption: B

Jan 20, 2023

Quarantine & Security Center Registration option must be enabled under Type=Next-Gen Antivirus Category=Quarantine.

ShuliAbbaOption: B

Jan 25, 2023

B is correct, checked on the Falcon dashboard.

Roy_SoOption: B

Feb 1, 2023

Checked on the Falcon dashboard x 2

FerbOPOption: B

Apr 25, 2023

B is correct

hussainuchOption: B

Dec 9, 2023

Selected Answer: B

im2caOption: B

Mar 22, 2023

tested with CS

kgmangleOption: B

Mar 26, 2023

Correct Answer is B

sbag0024Option: B

Jun 14, 2023

B is correct, tested in the UI

Jimmy390Option: B

Jul 7, 2024

checked