Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

CrowdStrike IDP Exam - Topic 8 Question 8 Discussion

When creating an API key, which scope should be selected to retrieve Identity Protection detection and incident information?
A) Identity Protection Detections
B) Identity Protection Incidents
C) Identity Protection Assessment
D) Identity Protection Data

CrowdStrike IDP Exam - Topic 8 Question 8 Discussion

Actual exam question for CrowdStrike's IDP exam
Question #: 8
Topic #: 8
[All IDP Questions]

When creating an API key, which scope should be selected to retrieve Identity Protection detection and incident information?

Show Suggested Answer Hide Answer
Suggested Answer: A

To retrieve identity-based detections and incident-related data using the CrowdStrike APIs, the API key must include the correct permission scope. According to the CCIS curriculum, the Identity Protection Detections scope is required to access identity-based detection and incident information through GraphQL.

This scope allows API queries to retrieve:

Identity-based detections

Associated incident metadata

Detection attributes such as severity, status, and related entities

Incident data in Falcon Identity Protection is derived from detections, making the Detections scope the authoritative permission set for this information. Without this scope, GraphQL queries related to identity detections and incidents will fail authorization.

The other scopes are either too narrow or unrelated to detection retrieval. Therefore, Option A is the correct and verified answer.


Contribute your Thoughts:

0/2000 characters
Carin
24 hours ago
I’m leaning towards D) Identity Protection Data, seems broader.
upvoted 0 times
...
Crista
6 days ago
Definitely A! It’s the most relevant scope.
upvoted 0 times
...
Luis
11 days ago
Wait, are we sure about that?
upvoted 0 times
...
Tamekia
2 months ago
I thought it was B) Identity Protection Incidents?
upvoted 0 times
...
Melvin
2 months ago
A) Identity Protection Detections is the right choice!
upvoted 0 times
...
Mariko
3 months ago
I feel like we discussed the importance of scopes in API keys, and I want to say it's A) Identity Protection Detections, but I could be mixing it up with another topic.
upvoted 0 times
...
Dannie
3 months ago
I'm a bit confused between C) Identity Protection Assessment and D) Identity Protection Data. They both sound relevant to the topic.
upvoted 0 times
...
Leonor
3 months ago
I remember practicing a question about API scopes, and I think B) Identity Protection Incidents was the right choice for that one.
upvoted 0 times
...
Karma
3 months ago
I think the answer might be A) Identity Protection Detections, but I'm not entirely sure. We covered something similar in class.
upvoted 0 times
...

Save Cancel