ACCESS-DEF試験無料問題集（66題）「CyberArk Defender Access 認定」

出題：1

Refer to the exhibit.
How should you configure this default authentication policy to ensure users must authenticate every time they try to access the CyberArk Identity portal or web applications?

A. Check and enable QR Code under the "Single Authentication Mechanism" section.

B. Check and enable Security Questions and set the number to "1".

C. Check and Select "Challenge Pass-Through Duration" to be "No Pass Through".

D. Check and Select QR Code under Challenge 1.

正解：C 解答を投票する

出題：2

When configuring an application to use the App Gateway, you do not have to change any configurations in the application directly. You enable the application for App Gateway access in the Admin Portal and input the existing URL that users enter to open the application. You can either use an external URL that CyberArk Identity automatically generates, or you can continue using an existing internal URL.
What is a disadvantage of using an existing internal URL for App Gateway connections?

A. More configuration is needed because you must upload the URL certificate and private key, and edit DNS settings.

B. Users must use the same URLs regardless of whether they access the application internally or externally and this may confuse them.

C. Users must use different URLs depending on whether they access the application internally or externally.

D. Existing links and bookmarks do not work outside of the corporate network.

正解：A 解答を投票する

出題：3

Which 2FA/MFA options can be used if users cannot use their mobile device? (Choose two.)

正解：A,B 解答を投票する

出題：4

Your organization wants to automatically create user accounts with different Salesforce licenses (e.g., Salesforce, Identity, Chatter External).
In CyberArk Identity, arrange the steps to achieve this in the correct sequence.

正解：

出題：5

Which Custom Template app connectors are appropriate to use if a website does not require user authentication?

A. Connect

B. Browser Extension

C. SAML

D. Bookmark

正解：D 解答を投票する

出題：6

You are tasked to enforce certificate based authentication onto all the domain-joined Windows machines within your organization. Based on the inventory record, there are 1000 Windows machines, which include 150 standalone Windows machines. The enrollment will be conducted from either the office network or through the Virtual Private Network (VPN).
Which parameter(s) should you define within the enrollment code to ensure the security of the code and that only the authorized endpoints get registered?

A. Set an expiration date defining when the code should expire.

B. Specify the maximum number of devices that can be enrolled.

C. Define that only Linux machines may be enrolled.

D. Define the enrollment code to only the specific office/VPN IP network segment.

正解：A,D 解答を投票する

出題：7

Which risk factors contribute to the user behavior risk score? (Choose two.)

正解：C,D 解答を投票する

ACCESS-DEF試験無料問題集「CyberArk Defender Access 認定」