EPM-DEF試験無料問題集（62題）「CyberArk Defender

出題：1

Which EPM reporting tool provides a comprehensive view of threat detection activity?

A. Threat Detection Dashboard

B. McAfee ePO Reports

C. Detected Threats

D. Threat Detection Events

正解：A 解答を投票する

出題：2

On the Default Policies page, what are the names of policies that can be set as soon as EPM is deployed?

A. Privilege Management, Application Control, Threat analysis

B. Privilege Management, Threat Protection, Application Escalation Control

C. Privilege Management, Privilege Threat Protection, Local Privileged Accounts Management

D. Privilege Escalation, Privilege Management, Application Management

正解：C 解答を投票する

出題：3

How does a Trusted Source policy affect an application?

A. Applications will be allowed to run and will only elevate if required.

B. Application from the defined trusted sources must be configured on a per application basis, in order to define run and elevation parameters.

C. Applications will be allowed to run always in elevated mode.

D. Applications will be allowed to run and will inherit the process token from the EPM agent.

正解：B 解答を投票する

出題：4

Can the EPM Set Administrator configure Audit Dialog Pop-ups for the Record Audit Video option?

A. Yes, when Audit Video recording started, when Audit Video recording is uploaded to the EPM server, and when audit recording cannot be initialized.

B. Yes, when Audit Video recording started, when not enough disk space to start the video recording, and when video recording is initializing.

C. No, Audit Video is only available without the possibility of having End-User dialog pop-ups.

D. Yes, when Audit Video recording started, when Audit Video recording stopped, and when Audit Recording video reached size limit.

正解：C 解答を投票する

出題：5

Match the Application Groups policy to their correct description.

正解：

出題：6

A particular user in company ABC requires the ability to run any application with administrative privileges every day that they log in to their systems for a total duration of 5 working days.
What is the correct solution that an EPM admin can implement?

A. An EPM admin can generate a JIT access and elevation policy with temporary access timeframe set to
120 hours

B. An EPM admin can generate a JIT access and elevation policy with temporary access timeframe set to
120 hours and Terminate administrative processes when the policy expires option unchecked

C. An EPM admin can create an authorization token for each application needed by running:
EPMOPAGtool.exe -command gentoken -targetUser <username> -filehash <file hash> -timeLimit 120
-action run

D. An EPM admin can create a secure token for the end user's computer and instruct the end user to open an administrative command prompt and run the command vfagent.exe -UseToken <securetoken_value>

正解：B 解答を投票する

EPM-DEF試験無料問題集「CyberArk Defender - EPM 認定」