CrowdStrike Certified Falcon Administrator (CCFA) — Question 151

What critical prevention policy setting prevents sensor-related files, folders, and registry objects from being renamed or deleted?

Answer options

• A. Sensor Modification Protection
• B. System Configuration Protection
• C. Sensor Tampering Protection
• D. Host Modification Protection

Correct answer: C

Explanation

The correct answer is C, Sensor Tampering Protection, as it specifically safeguards sensor-related components from unauthorized modifications. The other options focus on different aspects of system protection and do not directly address the prevention of renaming or deleting sensor-related items.