[2023年03月] 今すぐダウンロード！リアル CyberArk CAU201 試験問題集テストエンジン試験問題 [Q15-Q32]

[2023年03月] 今すぐダウンロード！リアルCyberArk CAU201試験問題集テストエンジン試験問題

最新CAU201テスト問題集を試そう！最新CyberArk試験合格させます

質問 15
What is the primary purpose of One Time Passwords?

• A. More frequent password changes
• B. Reduced risk of credential theft
• C. Non-repudiation (individual accountability)
• D. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization.

正解: B

 

質問 16
Match the built-in Vault User with the correct definition.

正解:

解説:

Reference:
https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Predefined-Users-and-Groups.htm?TocPath=Administration%7CUser%20Management%7C_____7

 

質問 17
Which parameter controls how often the CPM looks for Soon-to-be-expired Passwords that need to be
changed.

• A. HeadStartInterval
• B. The CPM does not change the password under this circumstance
• C. Interval
• D. ImmediateInterval

正解: D

 

質問 18
It is possible to restrict the time of day, or day of week that a [b]verify[/b] process can occur

• A. TRUE
• B. FALSE

正解: A

解説:
Password verification can be restricted to specific days. This means that the CPM will only verify passwords on the days of the week specified in the VFExecutionDays parameter. The days of the week are represented by the first 3 letters of the name of the day. Sunday is represented by Sun, Monday by Mon, etc.

 

質問 19
If a user is a member of more than one group that has authorizations on a safe, by default that user is
granted____________________.

• A. only those permissions that exist on the group added to the safe first.
• B. the vault will not allow this situation to occur.
• C. the cumulative permissions of all the groups to which that user belongs.
• D. only those permissions that exist in all groups to which the user belongs.

正解: A

 

質問 20
Which of these accounts onboarding methods is considered proactive?

• A. Detecting accounts with PTA
• B. A DNA scan
• C. A Rest API integration with account provisioning software
• D. Accounts Discovery

正解: A

 

質問 21
Match the Status of Service on a DR Vault to what is displayed when it is operating normally in Replication mode.

正解:

解説:

 

質問 22
You have associated a logon account to one your UNIX cool accounts in the vault. When attempting to [b]change [/b] the root account's password the CPM will.....

• A. None of these
• B. Log in to the system as the logon account, then change roofs password
• C. Log in to the system as root, then change root's password
• D. Log in to the system as the logon account, run the su command to log in as root, and then change root's password.

正解: D

 

質問 23
Which Cyber Are components or products can be used to discover Windows Services or Scheduled Tasks that use privileged accounts? Select all that apply.

• A. Accounts Discovery
• B. Auto Detection (AD)
• C. Export Vault Data (EVD)
• D. Discovery and Audit (DMA)
• E. On Demand Privileges Manager (OPM)

正解: A,B,D

 

質問 24
Which permissions are needed for the Active Directory user required by the Windows Discovery process?

• A. Read/Write
• B. Read
• C. Domain Admin
• D. LDAP Admin

正解: B

 

質問 25
In accordance with best practice, SSH access is denied for root accounts on UNIXLINUX system.
What is the BEST way to allow CPM to manage root accounts?

• A. Configure the Unix system to allow SSH logins.
• B. Create a non-privileged account on the target server. Allow this account the ability to SSH directly from the CPM machine. Configure this account as the Logon account of the target server's root account.
• C. Create a privileged account on the target server. Allow this account the ability to SSH directly from the CPM machine. Configure this account of the target server's root account.
• D. Configure the CPM to allow SSH logins.

正解: B

 

質問 26
A user requested access to view a password secured by dual-control and is unsure who to contact to expedite the approval process. The Vault Admin has been asked to look at the account and identify who can approve their request.
What is the correct location to identify users or groups who can approve?

• A. PrivateArk > Admin Tools > Users and Groups > Auditors (Group Membership)
• B. PVWA> Account List > Edit > Show Advanced Settings > Dual Control > Direct Managers
• C. PVWA> Policies > Access Control (Safes) > Safe Members > Workflow > Authorize Password Requests
• D. PVWA> Administration > Platform Configuration > Edit Platform > UI & Workflow > Dual Control> Approvers

正解: C

 

質問 27
Time of day or day of week restrictions on when password verifications can occur configured in
____________________.

• A. The Account Details
• B. The Platform settings
• C. The Safe settings
• D. The Master Policy

正解: B

解説:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Verifying- Passwords.htm

 

質問 28
Which of the following PTA detections are included in the Core PAS offering?

• A. Unmanaged Privileged Access
• B. Over-Pass-The Hash
• C. Golden Ticket
• D. Suspected Credential Theft

正解: A

 

質問 29
Which utilities could you use to change debugging levels on the vault without having to restart the vault.
Select all that apply.

• A. PAR Agent
• B. PrivateArk Server Central Administration
• C. Edit DBParm.ini in a text editor.
• D. Setup.exe

正解: A,B

解説:
Explanation
PAR-Private Ark Remote Control Agent allows you to perform several Vault admin tasks (without restarting the Vault) and view machine statistics.

 

質問 30
How much disk space do you need on the server for a PAReplicate?

• A. same as disk size on Primary Vault
• B. 1 TB
• C. same as disk size on Satellite Vault
• D. 500 GB

正解: A

 

質問 31
In a default CyberArk installation, which group must a user be a member of to view the "reports" page in PVWA?

• A. PVWAReports
• B. ReportUsers
• C. PVWAMonitor
• D. Operators

正解: C

 

質問 32
......

あなたを必ず合格させるCAU201問題集PDF2023年最新のに更新された179問あります：https://www.goshiken.com/CyberArk/CAU201-mondaishu.html