Question 1

After identifying excessive permissions and missing MFA in IAM configurations, which remediation strategy is most aligned with CrowdStrike CIEM’s recommendations?

Options :

A : Delete all accounts flagged by CIEM’s Identity Analyzer.

B : Enable MFA and implement least privilege access policies for the flagged accounts.

C : Revoke all permissions from the identified accounts.

D : Transfer ownership of flagged accounts to a different administrator.

Answer: B

Question 2

A security team is tasked with creating an image assessment policy in the Falcon Cloud to scan container images for vulnerabilities before deployment. Which of the following configurations is required to ensure the policy works as intended?

Options :

A : Enable the "Audit Mode" to enforce runtime image assessment.

B : Enable the "Real-time Scanning" option to automatically block all unscanned images.

C : Assign the policy to a specific Kubernetes namespace only.

D : Specify the severity levels (e.g., Critical, High, Medium) for vulnerabilities to flag.

Answer: D

Question 3

When analyzing cloud findings for misconfigurations, which of the following would be considered a high-risk practice that should be flagged for remediation?

Options :

A : Enforcing multi-factor authentication (MFA) for all cloud administrator accounts

B : Implementing role-based access control (RBAC) policies for cloud resources

C : Using network security groups (NSGs) to limit traffic to trusted IP addresses

D : Allowing unrestricted inbound traffic to cloud-hosted resources on port 22

Answer: D

Question 4

During the registration of a cloud account into the CrowdStrike Falcon platform, a user encounters an error message indicating "Insufficient permissions to access cloud resources." Which of the following actions should the user take to resolve the issue?

Options :

A : Disable multi-factor authentication (MFA) for the cloud account temporarily.

B : Use the CrowdStrike service account credentials directly to bypass IAM role issues.

C : Assign the CrowdStrike IAM role to the cloud account with all necessary permissions.

D : Ensure that the cloud account is part of an active CrowdStrike subscription.

Answer: C

Question 5

You are registering a new AWS account with CrowdStrike Falcon, but the process fails with an error stating:

"Insufficient permissions for role ARN."

What is the most likely cause of this issue?

Options :

A : The IAM role created for the account lacks the required policies for CrowdStrike integration.

B : The AWS account is already registered with another CrowdStrike instance.

C : The CrowdStrike Falcon sensor is not installed on the EC2 instances in the account.

D : Multi-factor authentication (MFA) is disabled on the AWS account.

Answer: A

Higher Test Marks with Free Online CrowdStrike-Cloud Exam Practice

Buying Options: