ExamTopics Logo
Mail Us[email protected]
Menu
Crowdstrike Discussions
exam questions

Exam CCFA All Questions

View all questions & answers for the CCFA exam
Go to Exam

Exam CCFA topic 1 question 213 discussion

Actual exam question from CrowdStrike's CCFA
Question #: 213
Topic #: 1
[All CCFA Questions]

Which setting inside the Sensor Update Policy prevents unauthorized uninstallation?

  • A. Sensor Version Control Protection
  • B. Installation and Maintenance Protection
  • C. Uninstall and Maintenance Protection
  • D. Update and Management Protection
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by 67bdb19 at May 20, 2025, 2:40 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
aN0omY
1 week, 4 days ago
Selected Answer: C
says in all the training materials and documentation
upvoted 1 times
...
CiscoNoahexamtopic
1 week, 4 days ago
Selected Answer: C
On the Host Management page: Find the host Open its summary panel Click Reveal maintenance token Enter a reason for revealing the token (recorded in the Audit Log) Click Reveal Token The token doesn’t change until the sensor has been uninstalled and reinstalled on the host.
upvoted 1 times
...
67bdb19
3 weeks, 6 days ago
Selected Answer: A
The correct answer is: C. Uninstall and Maintenance Protection Explanation: In most endpoint protection platforms (such as CrowdStrike Falcon), the "Uninstall and Maintenance Protection" setting within the Sensor Update Policy is what prevents unauthorized users from uninstalling the sensor. When this setting is enabled, it typically requires a token or elevated permissions to uninstall or tamper with the sensor, thereby protecting it from unauthorized removal.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel