Certbus > CyberArk > Defender-Sentry (Combined) > CAU302 > CAU302 Online Practice Questions and Answers

CAU302 Online Practice Questions and Answers

Questions 4

When a group is granted the `Authorize Account Requests' permission on a safe Dual Control requests must be approved by:

A. Any one person from that group

B. Every person from that group

C. The number of persons specified by the Master Policy

D. That access cannot be granted to groups

Browse 237 Q&As
Questions 5

You are successfully managing passwords in the alpha.cyberark com domain; however when you attempt to manage a password in the beta.cyberark.com domain, you receive the 'network path not found* error. What should you check first?

A. That the username and password are correct.

B. That the CPM can successfully resolve addresses in the beta cyberark com domain

C. That the end user has the correct permissions on the safe

D. That an appropriate trust relationship exists between alphaxyberark.com and beta.cyberark.com

Browse 237 Q&As
Questions 6

What is the purpose of the CyberArk Event Notification Engine service?

A. It sends email messages from the CPM

B. It sends email messages from the Vault.

C. It processes audit report messages

D. It makes vault data available to components.

Browse 237 Q&As
Questions 7

You have associated a logon account to one of your UNIX root accounts in the vault. When attempting to verify the root account's password the CPM will...?

A. Ignore the logon account and attempt to log in as root.

B. Prompt the end user with a dialog box asking for the login account to use.

C. Log in first with the logon account, then run the su command to log in as root using the password in the vault

D. None of these.

Browse 237 Q&As
Questions 8

For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure access a password without approval?

A. Create an exception to the Master Policy to exclude the group from the workflow process.

B. Edit the master policy rule and modify the advanced 'Access safe without approval' rule to include the group.

C. On the safe in which the account is stored grant the group the 'Access safe without audit' authorization.

D. On the safe in which the account is stored grant the group the 'Access safe without confirmation' authorization

Browse 237 Q&As
Questions 9

What values are acceptable in the address field on the Accounts Details?

A. It must be a fully qualified domain name (FQDN)

B. It must be an IP address

C. It must be NetBIOS name

D. Any name that is resolvable on the CPM server is acceptable

Browse 237 Q&As
Questions 10

What is the name of the Platform parameter that determines the amount of time a person is allowed to use a One Time Password?

A. MinValidityPeriod

B. Interval

C. ImmediateInterval

D. Timeout

Browse 237 Q&As
Questions 11

A Vault Administrator wants to change the PSM Server ID to comply with a naming standard What is the process for changing the PSM Server ID?

A. First, logon to the PrivateArk Client as Administrator and open the PVWAConfig safe. Retrieve and edit the PVConfiguration.xml file. Search for the PSMServer Name and update the ID of the server you want to rename Save the file and copy back to the PVWAConfig safe. Restart the "CyberArk Privileged Session Manager" service on the PSM server.

B. Login to the PVWA. then change the PSMServer ID in Administration. System Configuration. Options, Privileged Session Management. Configured PSM Servers Run an IISRESET on all PVWA servers.

C. First, login to the PVWA. browse to Administration. System Configuration. Options. Pnvileged Session Management. Configured PSM Servers and select the PSM Server you need to change from the list of servers In the properties pane, set the value of the ID property to the new Server ID. click Apply and OK. Next, edit the basic_psm.ini file located on the PSM server in the PSM root directory and update the PSMServerlD parameter with the new Server ID. save the file and restart the "CyberArk Privileged Session Manager" service on the PSM server

D. Options A and B above is the correct procedure

Browse 237 Q&As
Questions 12

A Simple Mail Transfer Protocol (SMTP) integration is critical for monitoring Vault activity and facilitating workflow processes, such as Dual Control.

A. True

B. False

Browse 237 Q&As
Questions 13

What is the process to remove object level access control from a Safe?

A. Uncheck the 'Enable Object Level Access Control' on the Safe Details page in the PVWA.

B. Uncheck the 'Enable Object Level Access Control' box in the Safe Properties in PrivateArk.

C. This cannot be done.

D. Remove all ACLs from the Safe.

Browse 237 Q&As
Questions 14

What is the PRIMARY reason for installing more than 1 active CPM?

A. Installing CPMs in multiple sites prevents complex firewall rules to manage devices at remote sites.

B. Multiple instances create fault tolerance.

C. Multiple instances increase response time.

D. Having additional CPMs increases the maximum number of devices CyberArk can manage

Browse 237 Q&As
Questions 15

Which of the following options is not set in the Master Policy?

A. Password Expiration Date

B. Dual Control

C. Password Complexity

D. Require Access Reason

Browse 237 Q&As
Questions 16

It is possible to restrict the time of day. or day of week that a change process can occur.

A. TRUE

B. FALSE

Browse 237 Q&As
Questions 17

When accessing the Vault via PVWA, is it possible, is it possible to configure multiple Dual Authentication Methods?

A. Yes, all authentication methods will be configured to use the Vault integrated authentication flow.

B. No, dual authentication methods are not supported.

C. Yes, authentication methods will be configured to use the combination of IIS and Vault integrated authentication flow.

D. Yes, all authentication methods will be configured to use the IIS integrated authentication flow.

Browse 237 Q&As
Questions 18

The password upload utility must run from the CPM server.

A. TRUE

B. FALSE

Browse 237 Q&As
Exam Code: CAU302
Exam Name: CyberArk Defender + Sentry
Last Update: Mar 21, 2024
Questions: 237 Q&As

PDF

$45.99

VCE

$49.99

PDF + VCE

$59.99