Free CrowdStrike CrowdStrike-IDP Exam Questions

Become CrowdStrike Certified with updated CrowdStrike-IDP exam questions and correct answers

Page: 1 / 60

Total 300 Questions | Updated On: Jun 04, 2025

Add To Cart

Question 1

Which file format and structure is required to successfully upload a custom list of compromised passwords to the CrowdStrike Compromised Password directory?

A : JSON file with each password as a key-value pair.

B : XML file structured with tags for each entry.

C : Plain text file with one password per line.

D : CSV file with a single column labeled "Compromised Passwords" and passwords listed under it.

Answer: D

Question 2

A company is setting up an Identity-as-a-Service (IDaaS) platform to centralize identity management and streamline Single Sign-On (SSO) for its employees. During configuration, the IT administrator must ensure that applications integrated with the IDaaS platform enforce role-based access control (RBAC). Which configuration step is essential to achieve this?

A : Enable adaptive authentication for all users.

B : Synchronize user attributes and roles from the organization's directory service.

C : Require mandatory approval workflows for every new account creation.

D : Configure application-specific access rules directly in each application.

Answer: B

Question 3

Which of the following best aligns with implementing Zero Trust Architecture to protect an organization’s resources?

A : Establishing a Perimeter Firewall with Intrusion Detection

B : Implementing Role-Based Access Control (RBAC) Combined with Multi-Factor Authentication (MFA)

C : Segmenting the Network Based on Traditional VLANs

D : Relying Solely on Endpoint Security Software

Answer: B

Question 4

Falcon Identity Protection plays a critical role in an organization’s security model by addressing identity-based threats. Where does Falcon Identity Protection fit within the broader security framework?

A : It enhances security by providing real-time monitoring and enforcement for authentication and authorization events.

B : It functions as a standalone tool that does not integrate with other CrowdStrike security products.

C : It replaces traditional endpoint protection solutions by focusing solely on identity security.

D : It is an alternative to multi-factor authentication (MFA) solutions rather than a complement to them.

Answer: A

Question 5

While monitoring your CrowdStrike dashboard, you notice an incident that initially appeared as "Suspicious File Download" but was later escalated to "Malware Execution." To determine why the type changed and understand the incident’s progression, which action should you take?

A : Run a manual antivirus scan on the endpoint to verify the threat level.

B : Check if similar files were flagged in other incidents across your organization.

C : Review the incident’s activity history and associated event logs in the CrowdStrike platform.

D : Inspect the file properties and compare them with CrowdStrike’s threat intelligence database.

Answer: C

Page: 1 / 60

Total 300 Questions | Updated On: Jun 04, 2025

Add To Cart