[2023年06月10日] 最新CyberArk Defender CAU201実際の無料試験解答
CyberArk Defender CAU201問題集最新の練習テスト179独特な解答
サイバーアークディフェンダー(CAU201)試験は、サイバーアークの特権アカウントセキュリティソリューションを実装および管理するスキルを検証する包括的な認定テストです。特権アクセス管理とサイバー防御における専門知識を証明することを望むセキュリティ専門家にとって理想的な資格です。この認定を取得することで、専門家はキャリアの展望を向上させ、サイバーセキュリティの分野で専門家として認められることができます。
質問 # 13
When managing SSH keys, the CPM stores the Public Key
- A. In the Vault
- B. A & B
- C. Nowhere because the public key can always be generated from the private key.
- D. On the target server
正解:D
質問 # 14
Which of the following logs contains information about errors related to PTA?
- A. pm_error.log
- B. diamond.log
- C. ITAlog.log
- D. WebApplication.log
正解:B
質問 # 15
Which report could show all accounts that are past their expiration dates?
- A. Activity log
- B. Application Inventory report
- C. Privileged Account Compliance Status report
- D. Privileged Account Inventory report
正解:C
質問 # 16
Which of the following statements are NOT true when enabling PSM recording for a target Windows server? (Choose all that apply)
- A. PSMConnect must be added as a local user on the target server
- B. The PSM software must be instated on the target server
- C. RDP must be enabled on the target server
- D. PSM must be enabled in the Master Policy (either directly, or through exception)
正解:B、D
質問 # 17
Which one of the following reports is NOT generated by using the PVWA?
- A. Compliance Status
- B. Safes List
- C. Application Inventory
- D. Account Inventory
正解:B
解説:
Explanation/Reference:
Reference: https://techinsight.com.vn/language/en/privileged-account-security-solution-part-2/
質問 # 18
Which of the following components can be used to create a tape backup of the Vault?
- A. Replicate
- B. Disaster Recovery
- C. Distributed Vaults
- D. High Availability
正解:A
質問 # 19
What is the purpose of the Interval setting in a CPM policy?
- A. To control how long the CPM rests between password changes.
- B. To control how often the CPM looks for User Initiated CPM work.
- C. To control how often the CPM looks for System Initiated CPM work.
- D. To control the maximum amount of time the CPM will wait for a password change to complete.
正解:A
質問 # 20
You have associated a logon account to one your UNIX cool accounts in the vault. When attempting to
[b]change [/b] the root account's password the CPM will.....
- A. Log in to the system as the logon account, run the su command to log in as root, and then change root's password.
- B. None of these
- C. Log in to the system as the logon account, then change roofs password
- D. Log in to the system as root, then change root's password
正解:B
質問 # 21
Platform settings are applied to _________.
- A. Network Areas
- B. Individual Accounts
- C. Safes
- D. The entire vault.
正解:B
質問 # 22
Assuming a safe has been configured to be accessible during certain hours of the day, a Vault Admin may still access that safe outside of those hours.
- A. TRUE
- B. FALSE
正解:B
解説:
Explanation/Reference: https://www.freshers360.com/wp-content/uploads/2019/05/Privileged-Account-Security- Implementation-Guide.pdf
質問 # 23
It is possible to control the hours of the day during which a user may log into the vault.
- A. TRUE
- B. FALSE
正解:A
質問 # 24
What is the chief benefit of PSM?
- A. Automatic password management
- B. Privileged session recording
- C. Privileged session isolation
- D. 'Privileged session isolation' and 'Privileged session recording'
正解:B
質問 # 25
Which user(s) can access all passwords in the Vault?
- A. Any member of auditors
- B. Any member of Vault administrators
- C. Administrator
- D. Master
正解:D
質問 # 26
Which user is automatically added to all Safes and cannot be removed?
- A. Operator
- B. Auditor
- C. Administrator
- D. Master
正解:D
質問 # 27
What is the purpose of the PrivateArk Server service?
- A. Sends email alerts from the Vault
- B. Executes password changes
- C. Makes Vault data accessible to components
- D. Maintains Vault metadata
正解:C
質問 # 28
It is possible to leverage DNA to provide discovery functions that are not available with auto-detection.
- A. FALS
- B. TRUE
正解:B
質問 # 29
Which of the following PTA detections are included in the Core PAS offering?
- A. Golden Ticket
- B. Unmanaged Privileged Access
- C. Over-Pass-The Hash
- D. Suspected Credential Theft
正解:B
解説:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PTA/What-Does-PTA- Detect.htm
質問 # 30
For Digital Vault Cluster in a high availability configuration, how does the cluster determine if a node is down?
- A. The Digital Vault Cluster does not detect a node failure.
- B. An alert is generated in the Windows Event log.
- C. The shared storage array is offline.
- D. The heartbeat s no longer detected on the private network.
正解:D
質問 # 31
......
CyberArk CAU201 試験は、CyberArk の特権アクセスセキュリティソリューションの理解を試す厳しいテストです。90 分以内に完了しなければならない 40 問の多肢選択問題から構成されています。合格点 70% 以上を獲得する必要があり、その後 CyberArk Defender 認定を受けることができます。
検証済みCAU201問題集と解答100%合格GoShiken:https://www.goshiken.com/CyberArk/CAU201-mondaishu.html