CAU302試験無料問題集（230題）「CyberArk Defender + Sentry 認定」

出題：1

Which Master Policy Setting(s) must be active in order to have an account checked-out by one user for a predetermined amount of time?

A. Require dual control password access Approval

B. Enforce one-time password access

C. Enforce check-in/check-out exclusive access

D. Enforce check-in/check-out exclusive access & Enforce one-time password access

正解：C 解答を投票する

出題：2

Which of these accounts onboarding methods is considered proactive?

A. A DNA scan

B. A Rest API integration with account provisioning software

C. Detecting accounts with PTA

D. Accounts Discovery

正解：C 解答を投票する

出題：3

If a user is a member of more than one group that has authorizations on a safe, by default that user is granted
__________________.

A. the vault will not allow this situation to occur.

B. the cumulative permissions of all the groups to which that user belongs

C. only those permissions that exist in all groups to which the user belongs.

D. only those permissions that exist on the group added to the safe first.

正解：B 解答を投票する

出題：4

When using multiple Central Policy Managers (CPM), which one of the following Safes is shared by all CPMs?

A. PasswordManager_ADInternal

B. PasswordManager_workspace

C. PasswordManagerSharedSafe

D. PasswordManager_Pending

正解：C 解答を投票する

出題：5

The Vault needs to send SNMP traps to an SNMP solution. In which configuration file do you set the IP address of the SNMP solution?

A. my.ini
Configure Remote Monitoring
In the remote control agent configuration file, PARAgent.ini, specify the following parameters:
SNMPHostIP - The IP address of the remote computer where SNMP traps will be sent. Separate multiple IP addresses with a comma.

B. ENEConf.ini

C. dbparm.ini

D. PARAgent.ini

正解：D 解答を投票する

出題：6

Which combination of safe member permissions will allow End Users to log in to a remote machine transparently but NOT show or copy the password?

A. List Accounts, Retrieve Accounts

B. Use Accounts, List Accounts

C. Use Accounts, Retrieve Accounts, List Accounts

D. Use Accounts

正解：A 解答を投票する

出題：7

Which of the following are prerequisites for installing PVWA Check all that Apply

A. NET 4.5.1 Framework Feature

B. Windows BitLocker

C. Web Services Role

D. Remote Desktop Services Role

正解：C 解答を投票する

出題：8

Which of the following is NOT a use case for installing multiple CPMS?

A. A single CPM cannot accommodate the total number of accounts managed

B. Provide load balancing capabilities when managing passwords on target devices

C. Reduce network traffic across WAN links

D. Accounts are managed in multiple sites or VLANs protected by firewall

正解：B 解答を投票する

出題：9

If a transparent user belongs two different directory mappings, how does the system determine which user template to use?

A. The system will use the template for the mapping listed last.

B. The system will grant only the vault authorizations that are listed in both templates.

C. The system will use the template for the mapping listed first.

D. The system will grant all of the vault authorizations from the two templates.

正解：C 解答を投票する

出題：10

A SIEM integration allows you to forward audit records to a monitoring solution.

A. FALSE

B. TRUE

正解：B 解答を投票する

出題：11

Within the Vault each password is encrypted by

A. Its own unique key.

B. The Server Key

C. The Recovery Public Key

D. The Recovery Private key

正解：A 解答を投票する

出題：12

Which parameter controls how often the CPM looks for Exclusive Passwords that need to be changed?

A. Interval

B. HeadStartInterval

C. The CPM does not change the password under this circumstance

D. ImmediateInterval

正解：D 解答を投票する

出題：13

Which file does the Vault administrator need to edit in order to configure the integration of the Vault with the radius server?

A. radius.ini

B. ENEConf.ini

C. dbparm.ini

D. PARagent.ini

正解：C 解答を投票する

出題：14

Multiple PVWA servers provide automatic load balancing.

A. FALSE

B. TRUE

正解：A 解答を投票する

出題：15

Can you forward audit records to your monitoring solution via SIEM integration?

A. No

B. Yes

正解：B 解答を投票する

CAU302試験無料問題集「CyberArk Defender + Sentry 認定」