Examice

Exam CCFR-201 All QuestionsBrowse all questions from this exam

Go to Exam

Question 42

What happens when you create a Sensor Visibility Exclusion for a trusted file path?

It excludes host information from Detections and Incidents generated within that file path location

It prevents file uploads to the CrowdStrike cloud from that file path

It excludes sensor monitoring and event collection for the trusted file path

It disables detection generation from that path, however the sensor can still perform prevention actions

Correct Answer: C

Creating a Sensor Visibility Exclusion for a trusted file path means it excludes sensor monitoring and event collection for that specific file path. This action minimizes the monitoring efforts of the sensor on the specified path, ensuring that any events or activities occurring within this path are not recorded or reported.

Discussion

alanalanalanOption: C

answer is C, C. It excludes sensor monitoring and event collection for the trusted file path

silva222222Option: C

The correct answer is: C. It excludes sensor monitoring and event collection for the trusted file path Here's why the other options are incorrect: A. Excludes host information: This wouldn't be the primary function of a sensor visibility exclusion. B. Prevents file uploads: Sensor visibility exclusions focus on monitoring, not file transfer. D. Disables detection but allows prevention: While this might be intuitive, sensor visibility exclusions typically disable both detection and prevention for the excluded path. Creating a sensor visibility exclusion essentially tells the security software to trust a specific file path and not monitor activity there. This can improve performance but also creates a blind spot for potential threats in that location.

kangaruOption: C

The point of SVE is to disable event monitoring, which could also contribute to option A.

wildbandanaOption: B

only one possible

PSSS

You seem to consistently provide inaccurate answers.

kangaru

Agree lol