What will the Cortex XDR console automatically do to this incident if all alerts contained have exclusions?

PCDRA 0 Comments

While working the alerts involved in a Cortex XDR incident, an analyst has found that every alert in this incident requires an exclusion .

What will the Cortex XDR console automatically do to this incident if all alerts contained have exclusions?
A . mark the incident as Unresolved
B . create a BIOC rule excluding this behavior
C . create an exception to prevent future false positives
D . mark the incident as Resolved C False Positive

Answer: D

Explanation:

Reference: https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/investigation-and-response/investigate-endpoint-alerts/alert-exclusions/add-an-alert-exclusion.html

Latest PCDRA Dumps Valid Version with 60 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PCDRA PDF     PCDRA Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments