CrowdStrike Certified Identity Specialist(CCIS) Exam
Last Update Feb 22, 2026
Total Questions : 58
We are offering FREE IDP CrowdStrike exam questions. All you do is to just go and sign up. Give your details, prepare IDP free exam questions and then go for complete pool of CrowdStrike Certified Identity Specialist(CCIS) Exam test questions that will help you more.
What setting can be switched under the Domain Security Overview for each Active Directory domain and/or Azure tenant?
By using compromised credentials, threat actors are able to bypass theExecutionphase of the MITRE ATT&CK framework and move directly into:
Falcon Identity Protection can continuously assess identity events and associate them with potential threatsWITHOUTwhich of the following?
The NIST SP 800-207 framework for Zero Trust Architecture defines validation and authentication standards for users in which network locations?
How many days will an identity-based incident be suppressed if new events related to the same incident occur?
In the Predefined ReportsSubjectdropdown, which category is associated with endpoints?
Any countries or regions included in the _ will trigger a geolocation detection.
Within which Identity Protection menu would an administrator enableAuthentication Traffic Inspection (ATI)for a domain?

Considering the following example, what MITRE ATT&CK tactic would you use to complete the workflow?
Which of the following isNOTa default insight but can be created with a custom insight?
When creating an API client, which scope withWritepermissions must be enabled prior to using Identity Protection API?
Which menu option isNOTincluded in Falcon Identity Threat Detection (ITD)?
When creating an API key, which scope should be selected to retrieve Identity Protection detection and incident information?
Within Domain Security Overview, whatGoalincorporates all risks into one security assessment report?
When an endpoint that has not been used in the last90 daysbecomes active, a detection forUse of Stale Endpointis reported.