CAU302 CyberArk Defender + Sentry Question and Answers

It is possible to restrict the time of day. or day of week that a change process can occur

Which parameter controls how often the Central Policy Manager (CPM) looks for soon-to-be-expired passwords that need to be changed?

Where does the Vault administrator configure in Password Vault Web Access (PVWA) the Fully Qualified Domain Name (FQDN) of the target email server during Simple Mail Transfer Protocol (SMTP) integration?

The Vault server requires WINS services to work properly.

Using the SSH Key Manager it is possible to allow CPM to manage SSH Keys similarly to passwords.

Which of the following components can be used to create a tape backup of the Vault?

It is possible to restrict the time of day. or day of week that a verify process can occur

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe The members of the AD group UnixAdmms need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation The members of the AD group OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of OperationsManagers The members of OperationsManagers never need to be able to use the show, copy or connect buttons themselves.

Which safe permissions do you need to grant to UnixAdmins? Check all that apply

The Vault needs to send SNMP traps to an SNMP solution. In which configuration file do you set the IP address of the SNMP solution?

Where do you configure in PVWA the fully-qualified domain name (FQDN) of your target email server during SMTP integration?

An auditor initiates a LIVE monitoring session to PSM server to view an ongoing LIVE session. When the

auditor’s machine makes an RDP connection the PSM server, which user will be used?

The vault does not support Subnet Based Access Control.

Which file is used to integrate the Vault with the RADIUS server?

Which of the following is NOT a use case for installing multiple CPMS?

The vault supports Subnet Based Access Control.

Which onboarding method would you use to integrate CyberArk with your accounts provisioning process?

Where does the Vault administrator configure in Password Vault Web Access (PVWA) the Fully Qualified Domain Name (FQDN) of the domain controller during LDAP/S integration?

In an SMTP integration it is recommended to use the fully-qualified domain name (FQDN) when specifying the SMTP server addresses).

PSM captures a record of each command that was issues in SQL Plus.

You have associated a logon account to one of your UNIX root accounts in the vault When attempting to verify the root account's password the CPM will...

What is the purpose of a password group?

Which credentials does CyberArk use when managing a target account?

Assuming a safe has been configured to be accessible during certain hours of the day, a Vault Admin may still access that safe outside of those hours.

Within the Vault each password is encrypted by

What is the purpose of EVD?

The PSM requires the Remote Desktop Web Access role service.

Which type of automatic remediation can be performed by the PTA in case of a Suspecious Password Change security event?

What is the purpose of the PrivateArk Server service?

Which of the following is considered a prerequiste for installing PSM?

As long as you are a member of the Vault Admins group, you can grant any permission on any safe that you have access to.

What is the purpose of the CyberArk Event Notification Engine service.

Which keys are required to be present in order to start the PrivateArk Server Service? Select all that apply.