Free CrowdStrike CrowdStrike-IDP Exam Questions

Become CrowdStrike Certified with updated CrowdStrike-IDP exam questions and correct answers

Page: 1 / 60

Total 300 Questions | Updated On: Oct 29, 2025

Add To Cart

Question 1

According to the NIST SP 800-207 framework, which of the following is a key capability that a Zero Trust Architecture should provide?

A : Granting access to resources based on network location.

B : Allowing full access to the network for authorized users.

C : Continuous monitoring and visibility of all network traffic and user activity.

D : Trusting known devices indefinitely without reevaluation.

Answer: C

Question 2

Which of the following best describes the role of CrowdStrike Falcon Identity Protection in preventing identity-based attacks?

A : Monitoring only Active Directory accounts for anomalous activity.

B : Utilizing AI-driven behavioral analysis to detect and stop identity-based threats across on-premises and cloud environments.

C : Securing network endpoints while assuming all identity layers are inherently secure.

D : Blocking all access requests from unrecognized devices without context validation.

Answer: B

Question 3

In the context of potential risk factors related to identity, what does the "Severity" component assess?

A : The number of identities impacted by a breach

B : The likelihood that a vulnerability will be exploited

C : The probability that an attack will occur

D : The impact of a potential security breach if the risk materializes

Answer: D

Question 4

Your organization conducts weekly risk reviews, and the security team needs an automated report summarizing "Anomalous Logon Activities" for all privileged accounts. The report should be scheduled to run every Friday and emailed directly to the team. What configuration should you use to schedule the custom report to meet these requirements?

A : Use the Reports tab to schedule a weekly report with filters for "Privileged Account" and "Anomalous Logon Activities", and configure email delivery.

B : Configure a new dashboard view with the required filters and rely on the team to manually check it every Friday.

C : Export the audit logs every Friday, filter them for anomalies, and manually email the team.

D : Set up a filter for "Anomalous Logon Activities" in the Event Analysis dashboard, and manually export it every Friday.

Answer: A

Question 5

The NIST Special Publication 800-207 defines a Zero Trust Architecture (ZTA) to enhance security through continuous verification and least privilege principles. According to this framework, which of the following best describes a key characteristic of Zero Trust?

A : Firewalls and VPNs alone are sufficient to establish Zero Trust security.

B : Zero Trust is an optional security approach that applies only to cloud-based architectures.

C : Implicit trust is granted to users and devices within the corporate network once authenticated.

D : Authentication and authorization are enforced at every access request, regardless of the network location.

Answer: D

Page: 1 / 60

Total 300 Questions | Updated On: Oct 29, 2025

Add To Cart