CrowdStrike Certified Falcon Administrator (CCFA) — Question 32
You are evaluating the most appropriate Prevention Policy Machine Learning slider settings for your environment. In your testing phase, you configure the Detection slider as Aggressive. After running the sensor with this configuration for 1 week of testing, which Audit report should you review to determine the best Machine Learning slider settings for your organization?
Answer options
- A. Prevention Policy Audit Trail
- B. Prevention Policy Debug
- C. Prevention Hashes Ignored
- D. Machine-Learning Prevention Monitoring
Correct answer: D
Explanation
The correct answer is D because the Machine-Learning Prevention Monitoring report provides insights into the performance and impact of the configured settings. The other options, such as the Prevention Policy Audit Trail and Debug, do not specifically focus on the effectiveness of the Machine Learning settings in the context of the sensor's performance.