CAU302無料問題集「CyberArk Defender + Sentry」

質問 1

When the PSM Gateway (also known as the HTML5 Gateway) is implemented, users must have an RDP client, such as MSTSC, installed on their endpoint in order to launch connections via the PSM.

（A）True

（B）False. When the PSM Gateway is implemented, the user only requires a browser in order launch a connection via the PSM.

正解：A 解答を投票する

質問 2

Which of the following is NOT a use case for installing multiple CPMS?

（A）A single CPM cannot accommodate the total number of accounts managed

（B）Reduce network traffic across WAN links

（C）Accounts are managed in multiple sites or VLANs protected by firewall

（D）Provide load balancing capabilities when managing passwords on target devices

正解：D 解答を投票する

質問 3

For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure access a password without approval

（A）On the safe in which the account is stored grant the group the 'Access safe without confirmation' authorization

（B）Edit the master policy rule and modify the advanced 'Access safe without approval' rule to include the group.

（C）On the safe in which the account is stored grant the group the 'Access safe without audit' authorization.

（D）Create an exception to the Master Policy to exclude the group from the workflow process.

正解：A 解答を投票する

質問 4

The Vault needs to send SNMP traps to an SNMP solution. In which configuration file do you set the IP address of the SNMP solution?

（A）my.ini
Configure Remote Monitoring
In the remote control agent configuration file, PARAgent.ini, specify the following parameters:
SNMPHostIP - The IP address of the remote computer where SNMP traps will be sent. Separate multiple IP addresses with a comma.

（B）ENEConf.ini

（C）dbparm.ini

（D）PARAgent.ini

正解：D 解答を投票する

質問 5

Can you forward audit records to your monitoring solution via SIEM integration?

（A）Yes

（B）No

正解：A 解答を投票する

質問 6

Which type of automatic remediation can be performed by the PTA in case of a suspicious password change security event?

（A）Password change

（B）Password reconciliation

（C）Session termination

（D）Session suspension

正解：B 解答を投票する

質問 7

One of your users is receiving the error message "ITATS006E Station is suspended for User jsmith" when attempting to sign in to the pvw a. Which utility would you use to correct this problem?

（A）cavaultmanager.exe

（B）createcredfile.exe

（C）PVWA

（D）PrivateArk

正解：D 解答を投票する

質問 8

The Remote Desktop Services role must be property licensed by Microsoft.

（A）FALSE

（B）TRUE

正解：B 解答を投票する

質問 9

Which of the following PTA detections are included in the Core PAS offering? (Choose all that apply.)

（A）Over-Pass-The-Hash

（B）Suspected Credential Theft

（C）Unmanaged Privileged Access

（D）Golden Ticket

正解：A、B 解答を投票する

質問 10

Can ITALOG records be forwarded to the monitoring solution via Security Information and Event Management (SIEM) integration?

（A）Yes

（B）No

正解：A 解答を投票する

質問 11

One time passwords reduce the risk of Pass the Hash vulnerabilities in Windows

（A）FALSE

（B）TRUE

正解：A 解答を投票する

質問 12

A SIEM integration allows you to forward audit records to a monitoring solution.

（A）FALSE

（B）TRUE

正解：B 解答を投票する

質問 13

Which of the following are secure options for storing the contents of the Operator CD. while still allowing the contents to be accessible upon a planned Vault restart? Choose alt that apply

（A）Store the server key in the Provider cache

（B）Copy the contents of the CD to a folder on the vault server and secure it with NTFS permissions.

（C）Store the CD in a physical safe and mount the CD every time vault maintenance is performed.

（D）Copy the contents of the CD to the System Safe on the vault

（E）Store the server key in a Hardware Security Module.

正解：B、C、E 解答を投票する

質問 14

Which of the following components can be used to create a tape backup of the Vault?

（A）High Availability

（B）Disaster Recovery

（C）Replicate

（D）Distributed Vaults

正解：C 解答を投票する

質問 15

When a DR vault server becomes an active vault, it will automatically fail bacK to the original state once the primary vault comes back online.

（A）True, this is the default behavior

（B）True, if the 'AllowFailback' setting is set to yes in the dbparm ini file.

（C）True, if the 'AllowFailback' setting is set to yes in the PADR.ini file.

（D）False, this is not possible

正解：C 解答を投票する

質問 16

It is possible to disable the Show and Copy buttons without removing the Retrieve permission on a safe.

（A）FALSE

（B）TRUE

正解：B 解答を投票する

質問 17

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe The members of the AD group UnixAdmms need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation The members of the AD group OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of OperationsManagers The members of OperationsManagers never need to be able to use the show, copy or connect buttons themselves.
Which safe permissions do you need to grant to UnixAdmins? Check all that apply

正解：A、B、C、E 解答を投票する

CAU302 無料問題集「CyberArk Defender + Sentry」

弊社を連絡する

関連リンク

トップ試験