CAU302無料問題集「CyberArk Defender + Sentry」

質問 1

When a DR Vault Server becomes an active vault, it will automatically revert back to DR mode once the Primary Vault comes back online.

（A）False, the Vault administrator must manually set the DR Vault to DR mode by setting "FailoverMode=no" in the dbparm.ini file.

（B）True, if the AllowFailback setting is set to "yes" in the padr.ini file.

（C）True, this is the default behavior.

（D）False, the Vault administrator must manually set the DR Vault to DR mode by setting "FailoverMode=no" in the padr.ini file.

正解：D 解答を投票する

質問 2

In order to grant a permission to a user, and administrator MUST possess that permission.

（A）False

（B）True

正解：A 解答を投票する

質問 3

Which service should NOT be running on the DR Vault when the primary Production Vault is up?

（A）CyberArk Vault Disaster Recovery (DR) service

（B）CyberArk Logical Container

（C）PrivateArk Server

（D）PrivateArk Database

正解：C 解答を投票する

質問 4

What is the purpose of the Interval setting in a CPM policy?

（A）To control the maximum amount of time the CPM will wait for a password change to complete

（B）To control how often the CPM looks for System Initiated CPM work

（C）To control how long the CPM rests between password changes

（D）To control how often the CPM looks for User Initiated CPM work.

正解：B 解答を投票する

質問 5

Which utility can be used to copy a server key to an HSM?

（A）ChangeServerKeys.exe

（B）CAVaultManager.exe

（C）A proprietary utility provided by the HSM Vendor

（D）PrivateArk Client

正解：C 解答を投票する

質問 6

What is the name of the Platform parameter that determines the amount of time a person is allowed to use a One Time Password?

（A）Interval

（B）MinValidityPeriod

（C）Timeout

（D）ImmediateInterval

正解：B 解答を投票する

質問 7

What is the purpose of the Allowed Safes parameter in a CPM policy? Select all that apply.

（A）To prevent accidental use of a policy in the wrong safe.

（B）To improve performance by reducing CPU workload.

（C）To allow users to access only the passwords they should be able to access.

（D）To enforce Least Privilege in CyberArk.

正解：C、D 解答を投票する

質問 8

What is the name of the Platform parameter that controls how long a password will stay valid when One Time Passwords are enabled via the Master Policy?

（A）Interval

（B）MinValidityPeriod

（C）Immediatelnterval

（D）Timeout

正解：B 解答を投票する

質問 9

Which combination of safe member permissions will allow End Users to log in to a remote machine transparently but NOT show or copy the password?

（A）List Accounts, Retrieve Accounts

（B）Use Accounts

（C）Use Accounts, List Accounts

（D）Use Accounts, Retrieve Accounts, List Accounts

正解：A 解答を投票する

質問 10

Which service is optional on the Vault?

（A）PrivateArk Remote Control Agent

（B）PrivateArk Server

（C）CyberArk Hardened Windows Firewall

（D）PrivateArk Database

正解：A 解答を投票する

質問 11

Which type of automatic remediation can be performed by the PTA in case of a Suspecious Password Change security event?

（A）Session Terminiation

（B）Session Suspension

（C）Password Reconcilation

（D）Password Change

正解：D 解答を投票する

質問 12

Which report could show all accounts that are past their expiration dates?

（A）Privileged Account Compliance Status report

（B）Privileged Account Inventory report

（C）Activity log

（D）Applications Inventory report

正解：A 解答を投票する

質問 13

Ad-Hoc Access (formerly Secure Connect) provides the following features. (Choose all that apply.)

（A）Real-time live session monitoring

（B）PSM connections to target devices that are not managed by CyberArk

（C）Session Recording

（D）PSM connections from a terminal without the need to login to the PVWA

正解：A、B、C 解答を投票する

質問 14

CyberArk creates exceptions for Data Execution Prevention (DEP) on selected executable files. This is done as part of installing which of the following components?

（A）AAM Credential Provider (previously known as AIM Credential Provider)

（B）PSM

（C）PVWA

（D）CPM

正解：D 解答を投票する

質問 15

When working with the CyberArk Cluster, which service is considered Optional (i.e., failure of the service does not mandate a failover)?

（A）Event Notification Engine

（B）Logic Container

（C）PrivateArk Server

（D）PrivateArk Database

正解：A 解答を投票する

質問 16

When the PSM Gateway (also known as the HTML5 Gateway) is implemented, users must have an RDP client, such as MSTSC, installed on their endpoint in order to launch connections via the PSM.

（A）True

（B）False. When the PSM Gateway is implemented, the user only requires a browser in order launch a connection via the PSM.

正解：A 解答を投票する

質問 17

PSM generates recordings on the Vault server in real time.

（A）False

（B）True

正解：B 解答を投票する

CAU302 無料問題集「CyberArk Defender + Sentry」

弊社を連絡する

関連リンク

トップ試験