QUESTION: 5

Even though you are a Falcon Administrator, you discover you are unable to use the "Connect to Host" feature to gather additional information which is only available on the host. Which role do you need added to your user account to have this capability?

Real Time Responder
Endpoint Manager
Falcon Investigator
Remediation Manager

Answer(s): C

Reveal Solution Next Question

QUESTION: 6

What must an admin do to reset a user's password?

From User Management, open the account details for the affected user and select "Generate New Password"
From User Management, select "Reset Password" from the three dot menu for the affected user account
From User Management, select "Update Account" and manually create a new password for the affected user account
From User Management, the administrator must rebuild the account as the certificate for user specific private/public key generation is no longer valid

Answer(s): B

Reveal Solution Next Question

QUESTION: 7

Your organization has a set of servers that are not allowed to be accessed remotely, including via Real Time Response (RTR). You already have these servers in their own Falcon host group. What is the next step to disable RTR only on these hosts?

Edit the Default Response Policy, toggle the "Real Time Response" switch off and assign the policy to the host group
Edit the Default Response Policy and add the host group to the exceptions list under "Real Time Functionality"
Create a new Response Policy, toggle the "Real Time Response" switch off and assign the policy to the host group
Create a new Response Policy and add the host name to the exceptions list under "Real Time Functionality"

Answer(s): C

Reveal Solution Next Question