PAM-DEF試験無料問題集（240題）「CyberArk Defender

出題：1

Which utilities could you use to change debugging levels on the vault without having to restart the vault.
Select all that apply.

A. PAR Agent

B. PrivateArk Server Central Administration

C. Setup.exe

D. Edit DBParm.ini in a text editor.

正解：A,B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Ad-Hoc Access (formerly Secure Connect) provides the following features. Choose all that apply.

A. PSM connections from a terminal without the need to login to the PVWA.

B. Session Recording.

C. PSM connections to target devices that are not managed by CyberArk.

D. Real-time live session monitoring.

正解：B,C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

When an account is unable to change its own password, how can you ensure that password reset with the reconcile account is performed each time instead of a change?

A. Set the parameter RCAllowManualReconciliation to Yes.

B. Set the UnlockUserOnReconcile to Yes.

C. Set the parameter IgnoreReconcileOnMissingAccount to No.

D. Set the parameter ChangePasswordinResetMade to Yes.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

You are creating a new Rest API user that utilizes CyberArk Authentication.
What is a correct process to provision this user?

A. Private Ark Client > Tools > Administrative Tools > Directory Mapping > Add

B. Private Ark Client > Tools > Administrative Tools > Users and Groups > New > User

C. PVWA > User Provisioning > Users and Groups > New > User

D. PVWA > User Provisioning > LDAP Integration > Add Mapping

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Time of day or day of week restrictions on when password verifications can occur configured in
____________________.

A. The Platform settings

B. The Account Details

C. The Master Policy

D. The Safe settings

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

ADR Vault became active due to a failure of the primary Vault. Service on the primary Vault has now been restored. Arrange the steps to return the DR vault to its normal standby mode in the correct sequence.

正解：

Explanation
* Shut down the PrivateArk Server Service on the DR Vault.
* In the PADR.ini file, set Failover Mode = No and remove the last two lines.
* Start the PrivateArk Disaster Recovery Service.
Comprehensive Explanation: When the primary Vault service has been restored and you need to return the DR Vault to its normal standby mode, the steps are as follows:
* Shut down the PrivateArk Server Service on the DR Vault to stop the Vault from being active.
* Modify the PADR.ini file by setting Failover Mode to No and removing the last two lines that were added during the failover process. This reconfigures the DR Vault to standby mode.
* Start the PrivateArk Disaster Recovery Service to complete the transition back to standby mode1.
References:
* CyberArk Docs - Initiate a DR Failback to the Production Vault1

出題：7

To ensure all sessions are being recorded, a CyberArk administrator goes to the master policy and makes configuration changes.
Which configuration is correct?

A. Require privileged session monitoring and isolation = inactive; Record and save session activity = inactive.

B. Require privileged session monitoring and isolation = inactive; Record and save session activity = active.

C. Require privileged session monitoring and isolation = active; Record and save session activity = inactive.

D. Require privileged session monitoring and isolation = active; Record and save session activity = active.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Which statement is true about setting the reconcile account at the platform level?

A. This configuration prevents the association from becoming broken if the reconcile account is moved to a different safe.

B. A rule can be used to specify the reconcile account dynamically or a specific reconcile account can be selected.

C. This is the only way to enable automatic reconciliation of account passwords.

D. CPM performance will be improved when the reconcile account is set at the platform level.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

In PVWA, you are attempting to play a recording made of a session by user jsmith, but there is no option to
"Fast Forward" within the video. It plays and only allows you to skip between commands instead. You are also unable to download the video.
What could be the cause?

A. The browser you are using is out of date and needs an update to be supported.

B. You do not have the "View Audit" permission on the safe where the account is stored.

C. Recording is of a PSM for SSH session.

D. You need to update the recorder settings in the platform to enable screen capture every 10000 ms or less.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

CyberArk recommends implementing object level access control on all Safes.

A. True

B. False

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：11

Which report could show all accounts that are past their expiration dates?

A. Activity log

B. Privileged Account Inventory report

C. Privileged Account Compliance Status report

D. Application Inventory report

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：12

Which of these accounts onboarding methods is considered proactive?

A. A DNA scan

B. A Rest API integration with account provisioning software

C. Detecting accounts with PTA

D. Accounts Discovery

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：13

When managing SSH keys, the CPM stores the Public Key

A. Nowhere because the public key can always be generated from the private key.

B. A & B

C. On the target server

D. In the Vault

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

Which item is an option for PSM recording customization?

A. Custom audio recording for windows events

B. Windows events text recorder and universal keystrokes recording simultaneously

C. Universal keystrokes text recorder with windows events text recorder disabled

D. Windows events text recorder with automatic play-back

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：15

Which CyberArk utility allows you to create lists of Master Policy Settings, owners and safes for output to text files or MSSQL databases?

A. Export Vault Information

B. PrivateArk Client

C. Export Vault Data

D. Privileged Threat Analytics

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：16

When creating an onboarding rule, it will be executed upon .

A. All accounts in the pending accounts list

B. Any future accounts discovered by a discovery process

C. Both "All accounts in the pending accounts list" and "Any future accounts discovered by a discovery process"

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

PAM-DEF試験無料問題集「CyberArk Defender - PAM 認定」