U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

CrowdStrike IDP Exam - Topic 11 Question 13 Discussion

Within which Identity Protection menu would an administrator enable Authentication Traffic Inspection (ATI) for a domain?
D) Configure > Identity Configuration Policies
A) Configure > Settings
B) Enforce > Policy Rules
C) Enforce > Policy Settings

CrowdStrike IDP Exam - Topic 11 Question 13 Discussion

Actual exam question for CrowdStrike's IDP exam
Question #: 13
Topic #: 11
[All IDP Questions]

Within which Identity Protection menu would an administrator enable Authentication Traffic Inspection (ATI) for a domain?

Show Suggested Answer Hide Answer
Suggested Answer: D

Authentication Traffic Inspection (ATI) is enabled through Identity Configuration Policies, which define how the Falcon sensor captures and inspects identity-related network traffic. According to the CCIS documentation, ATI configuration is performed under Configure > Identity Configuration Policies.

These policies allow administrators to specify which authentication protocols are inspected, which domain controllers are covered, and how identity telemetry is collected. This configuration step is mandatory to enable identity visibility and detection capabilities.

The Enforce menu is used for policy rules and automated actions, not traffic inspection. General settings do not control sensor inspection behavior. Because ATI directly affects sensor data capture, it is managed exclusively through Identity Configuration Policies.

Therefore, Option D is the correct and verified answer.


Contribute your Thoughts:

0/2000 characters

Currently there are no comments in this discussion, be the first to comment!


Save Cancel