Free CrowdStrike CCCS-203b Actual Exam Questions - Question 13 Discussion
policies related to cloud service access. Which of the following represents a misconfiguration that needs
immediate remediation?
Option C clearly breaks the least privilege principle; way too broad.
It’s C, no way production access should be that open, no exceptions.
C, that level of access in production is a huge red flag.
C imo, because letting everyone create and delete in production is just asking for trouble. You’ve gotta keep that access tight, not open to all users.
C, no way anyone should have full create/delete rights in production.
It’s C because allowing all users to create and delete in production is way too broad and risky. Even if some users need access, policies should be tightly scoped. Options A, B, and D all show some level of control or restriction, which is what you want to see. A blanket permission like in C undermines security and could lead to serious issues if anything goes wrong or someone acts maliciously. This kind of wide-open access is definitely a misconfiguration that should be fixed right away.
It’s definitely C. Giving all users the ability to create and delete in production is a total no-go. Even if some users are trusted, you don’t want unrestricted access like that. The risk of accidental or malicious changes is way too high. Options A, B, and D all seem reasonable because they either restrict access or assign specific, limited roles. So C stands out as clearly dangerous and needing immediate fix.
I'm leaning towards C here. Allowing all users to create and delete resources in production sounds like a huge risk and definitely a misconfig that needs fixing ASAP. What do you guys think?