[2022年09月] 最新のCyberArk CAU201認定練習テスト問題
確認済みCAU201問題集と解答で一年間無料最速更新
質問 12
A Reconcile Account can be specified in the Master Policy.
- A. TRUE
- B. FALSE
正解: B
質問 13
Which of the following PTA detections are included in the Core PAS offering?
- A. Golden Ticket
- B. Over-Pass-The Hash
- C. Suspected Credential Theft
- D. Unmanaged Privileged Access
正解: D
解説:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PTA/What-Does-PTA-
Detect.htm
質問 14
A new domain controller has been added to your domain. You need to ensure the CyberArk infrastructure can use the new domain controller for authentication.
Which locations must you update?
- A. on the Vault server in Windows\System32\Etc\Hosts and in the PVWA Application under Administration > LDAP Integration > Directories > Hosts
- B. on the Vault server in Windows\System32\Etc\Hosts and on the PVWA server in Windows\System32\Etc\Hosts
- C. in the Private Ark client under Tools > Administrative Tools > Directory Mapping
- D. on the Vault server in the certificate store and on the PVWA server in the certificate store
正解: C
解説:
Reference:
%20user%20management%20using%20LDAP%7C_____2
質問 15
The primary purpose of exclusive accounts is to ensure non-repudiation (individual accountability).
- A. FALSE
- B. TRUE
正解: B
質問 16
Which of the following statements are NOT true when enabling PSM recording for a target Windows server?
Choose all that apply.
- A. PSMConnect must be added as a local user on the target server.
- B. RDP must be enabled on the target server.
- C. PSM must be enabled in the Master Policy (either directly, or through exception).
- D. The PSM software must be installed on the target server.
正解: A
質問 17
When running a "Privileged Accounts Inventory" Report through the Reports page in PVWA on a specific safe, which permission/s are required on that safe to show complete account inventory information?
- A. Manage Safe Owners
- B. Manage Safe, View Audit
- C. List Accounts, View Safe Members
- D. List Accounts, Access Safe without confirmation
正解: C
質問 18
Which service should NOT be running on the DR Vault when the primary Production Vault is up?
- A. PrivateArk Database
- B. CyberArk Vault Disaster Recovery (DR) service
- C. PrivateArk Server
- D. CyberArk Logical Container
正解: C
質問 19
It is possible to control the hours of the day during which a user may log into the vault.
- A. TRUE
- B. FALSE
正解: B
質問 20
A Simple Mail Transfer Protocol (SMTP) integration is critical for monitoring Vault activity and facilitating workflow processes, such as Dual Control.
- A. True
- B. False
正解: B
質問 21
What is the purpose of the Immediate Interval setting in a CPM policy?
- A. To control how often the CPM rests between password changes.
- B. To control how often the CPM looks for User Initiated CPM work.
- C. To control how often the CPM looks for System Initiated CPM work.
- D. To Control the maximum amount of time the CPM will wait for a password change to complete.
正解: B
解説:
When the Master Policy enforces check-in/check-out exclusive access, passwords are changed when the user clicks the Release button and releases the account. This is based on the ImmediateInterval parameter in the applied platform. If the user forgets to release the account, it is automatically released and changed by the CPM after a predetermined number of minutes, defined in the MinValidityPeriod parameter specified in the platform
質問 22
It is possible to restrict the time of day, or day of week that a [b]reconcile[/b] process can occur
- A. TRUE
- B. FALS
正解: B
質問 23
You have associated a logon account to one your UNIX cool accounts in the vault. When attempting to
[b]change [/b] the root account's password the CPM will.....
- A. Log in to the system as root, then change root's password
- B. None of these
- C. Log in to the system as the logon account, run the su command to log in as root, and then change root's password.
- D. Log in to the system as the logon account, then change roofs password
正解: C
質問 24
Via Password Vault Web Access (PVWA), a user initiates a PSM connection to the target Linux machine using RemoteApp. When the client's machine makes an RDP connection to the PSM server, which user will be utilized?
- A. Credentials stored in the Vault for the target machine
- B. PSMAdminConnect
- C. Shadowuser
- D. PSMConnect
正解: D
質問 25
The System safe allows access to the Vault configuration files.
- A. TRUE
- B. FALSE
正解: B
質問 26
Which is the primary purpose of exclusive accounts?
- A. Reduced risk of credential theft
- B. Non-repudiation (individual accountability)
- C. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization
- D. More frequent password changes
正解: B
質問 27
Which of the following files must be created or configured m order to run Password Upload Utility? Select all that apply.
- A. A comma delimitedupload file
- B. Vault.ini
- C. conf.ini
- D. PACli.ini
正解: A
質問 28
......
最新の2022年最新の実際に出ると確認されたCAU201問題集で100%無料CAU201試験問題集:https://www.jpntest.com/shiken/CAU201-mondaishu