まもなく無料セール終了!リアルCAU201のPDF解答で合格せよ [2022年01月13日]
最新の2022年01月試験CAU201問題集合格できる認証試験合格させます
質問 82
It a password is changed manually on a server, bypassing the CPM, how would you configure the account so that the CPM could resume management automatically?
- A. Associate a reconcile account and configure the platform to reconcile automatically
- B. Associate a logon account and configure the platform to reconcile automatically
- C. Configure the Provider to change the password to match the Vault's Password
- D. Run the correct auto detection process to rediscover the password
正解: C
質問 83
Which Master Policy Setting must be active in order to have an account checked-out by one user for a pre- determined amount of time?
- A. Require dual control password access Approval
- B. Enforce check-in/check-out exclusive access & Enforce one-time password access
- C. Enforce check-in/check-out exclusive access
- D. Enforce one-time password access
正解: C
解説:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PrivCloud/Latest/en/Content/Privilege%
20Cloud/privCloud-master-policy-rules.htm
質問 84
You want to generate a license capacity report.
Which tool accomplishes this?
- A. Password Vault Web Access
- B. PrivateArk Client
- C. DiagnoseDB Report
- D. RestAPI
正解: B
質問 85
Which CyberArk group does a user need to be part of to view recordings or live monitor sessions?
- A. Operators
- B. Vault Admin
- C. Auditors
- D. DR Users
正解: C
質問 86
Which report provides a list of account stored in the vault.
- A. Active Log
- B. Entitlement Report
- C. Privileged Accounts Compliance Status
- D. Privileged Accounts Inventory
正解: D
質問 87
What is the primary purpose of One Time Passwords?
- A. More frequent password changes
- B. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization.
- C. Non-repudiation (individual accountability)
- D. Reduced risk of credential theft
正解: D
解説:
Explanation/Reference:
質問 88
It is possible to control the hours of the day during which a user may log into the vault.
- A. TRUE
- B. FALSE
正解: B
質問 89
It is possible to control the hours of the day during which a user may long into the vault.
- A. TRUE
- B. FALSE
正解: A
解説:
Explanation/Reference: https://isecurenet.net/wp-content/uploads/2016/06/user-sb-cyberark_privileged_threat_analytics-
030916-final-en-web.pdf
質問 90
What is the purpose of the CyberArk Event Notification Engine service?
- A. It sends email messages from the Vault
- B. It makes Vault data available to components
- C. It sends email messages from the Central Policy Manager (CPM)
- D. It processes audit report messages
正解: B
質問 91
It is possible to restrict the time of day, or day of week that a [b]verify[/b] process can occur
- A. TRUE
- B. FALS
正解: B
質問 92
As long as you are a member of the Vault Admins group, you can grant any permission on any safe that you have access to.
- A. TRUE
- B. FALSE
正解: B
解説:
Explanation/Reference:
質問 93
The password upload utility must run from the CPM server
- A. TRUE
- B. FALSE
正解: B
解説:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Password- Upload-Utility.htm
質問 94
The Password upload utility can be used to create safes.
- A. FALS
- B. TRUE
正解: B
質問 95
dbparm.ini is the main configuration file for the Vault.
- A. True
- B. False
正解: A
質問 96
Which item is an option for PSM recording customization?
- A. Windows events text recorder with automatic play-back
- B. Custom audio recording for windows events
- C. Universal keystrokes text recorder with windows events text recorder disabled
- D. Windows events text recorder and universal keystrokes recording simultaneously
正解: B
質問 97
Target account platforms can be restricted to accounts that are stored in specific Safes using the AllowedSafes
property.
- A. TRUE
- B. FALSE
正解: B
質問 98
You have associated a logon account to one your UNIX cool accounts in the vault. When attempting to
[b]change [/b] the root account's password the CPM will.....
- A. None of these
- B. Log in to the system as the logon account, then change roofs password
- C. Log in to the system as the logon account, run the su command to log in as root, and then change root's password.
- D. Log in to the system as root, then change root's password
正解: A
質問 99
It is possible to restrict the time of day, or day of week that a [b]reconcile[/b] process can occur
- A. TRUE
- B. FALS
正解: B
質問 100
Which statement is correct concerning accounts that are discovered, but cannot be added to the Vault by an automated onboarding rule?
- A. They are not part of the Discovery Process.
- B. They are added to the Pending Accounts list and can be reviewed and manually uploaded.
- C. They cannot be onboarded to the Password Vault.
- D. They must be uploaded using third party tools.
正解: A
質問 101
Assuming a safe has been configured to be accessible during certain hours of the day, a Vault Admin may still access that safe outside of those hours.
- A. TRUE
- B. FALSE
正解: B
解説:
Explanation/Reference: https://www.freshers360.com/wp-content/uploads/2019/05/Privileged-Account-Security- Implementation-Guide.pdf
質問 102
Which one of the following reports is NOT generated by using the PVWA?
- A. Compliance Status
- B. Account Inventory
- C. Safes List
- D. Application Inventory
正解: C
解説:
Explanation/Reference:
Reference: https://techinsight.com.vn/language/en/privileged-account-security-solution-part-2/
質問 103
......
CyberArk CAU201 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
CAU201問題集が合格させる、一日でCyberArk Defender試験合格:https://www.jpntest.com/shiken/CAU201-mondaishu