Which accounts can be selected for use in the Windows discovery process? (Choose two.)
Which statement about the Master Policy best describes the differences between one-time password and exclusive access functionality?
Can the 'Connect' button be used to initiate an SSH connection, as root, to a Unix system when SSH access for root is denied?
Which parameter controls how often the CPM looks for Soon-to-be-expired Passwords that need to be changed.
Users are unable to launch Web Type Connection components from the PSM server. Your manager asked you to open the case with CyberArk Support.
Which logs will help the CyberArk Support Team debug the issue? (Choose three.)
A new HTML5 Gateway has been deployed in your organization.
Where do you configure the PSM to use the HTML5 Gateway?
What is required to enable access over SSH to a Unix account through both PSM and PSMP?
You are configuring a Vault HA cluster.
Which file should you check to confirm the correct drives have been assigned for the location of the Quorum and Safes data disks?
You have been asked to identify the up or down status of Vault services.
Which CyberArk utility can you use to accomplish this task?
How much disk space do you need on a server to run a full replication with PAReplicate?
Due to network activity, ACME Corp’s PrivateArk Server became active on the OR Vault while the Primary Vault was also running normally. All the components continued to point to the Primary Vault.
Which steps should you perform to restore DR replication to normal?
Which combination of Safe member permissions will allow end users to log in to a remote machine transparently but NOT show or copy the password?
A new colleague created a directory mapping between the Active Directory groups and the Vault.
Where can the newly Configured directory mapping be tested?
Before failing back to the production infrastructure after a DR exercise, what must you do to maintain audit history during the DR event?
You have been given the requirement that certain accounts cannot have their passwords updated during business hours.
How can you set up a configuration to meet this requirement?
Refer to the exhibit.
Why is user "EMEALevel2Support" unable to change the password for user "Operator"?
According to CyberArk, which issues most commonly cause installed components to display as disconnected in the System Health Dashboard? (Choose two.)
Which statement is true about setting the reconcile account at the platform level?
It is possible to restrict the time of day, or day of week that a [b]verify[/b] process can occur
In the Private Ark client under the Tools menu > Administrative Tools > Users and Groups, which option do you use to update users’ Vault group memberships?
A Vault administrator have associated a logon account to one of their Unix root accounts in the vault. When attempting to verify the root account’s password the Central Policy Manager (CPM) will:
To enable the Automatic response “Add to Pending” within PTA when unmanaged credentials are found, what are the minimum permissions required by PTAUser for the PasswordManager_pending safe?
Which permissions are needed for the Active Directory user required by the Windows Discovery process?
Your organization requires all passwords be rotated every 90 days.
Where can you set this regulatory requirement?
All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group Operations Staff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of Operations Managers never need to be able to use the show, copy or connect buttons themselves.
Which safe permission do you need to grant Operations Staff? Check all that apply.
Match each PTA alert category with the PTA sensors that collect the data for it.
Which CyberArk utility allows you to create lists of Master Policy Settings, owners and safes for output to text files or MSSQL databases?
Which of the following Privileged Session Management (PSM) solutions support live monitoring of active sessions?
Where can a user with the appropriate permissions generate a report? (Choose two.)
You notice an authentication failure entry for the DR user in the ITALog.
What is the correct process to fix this error? (Choose two.)
Which onboarding method would you use to integrate CyberArk with your accounts provisioning process?
A user has successfully conducted a short PSM session and logged off. However, the user cannot access the Monitoring tab to view the recordings.
What is the issue?
Which statement is correct concerning accounts that are discovered, but cannot be added to the Vault by an automated onboarding rule?
If the AccountUploader Utility is used to create accounts with SSH keys, which parameter do you use to set the full or relative path of the SSH private key file that will be attached to the account?
The Active Directory User configured for Windows Discovery needs which permission(s) or membership?
A new HTML5 Gateway has been deployed in your organization.
From the PVWA, arrange the steps to configure a PSM host to use the HTML5 Gateway in the correct sequence.
The primary purpose of exclusive accounts is to ensure non-repudiation (Individual accountability).
You have been asked to secure a set of shared accounts in CyberArk whose passwords will need to be used by end users. The account owner wants to be able to track who was using an account at any given moment.
Which security configuration should you recommend?
Which Automatic Remediation is configurable for a PTA detection of a “Suspected Credential Theft”?
A Vault Administrator team member can log in to CyberArk, but for some reason, is not given Vault Admin rights.
Where can you check to verify that the Vault Admins directory mapping points to the correct AD group?
Due to corporate storage constraints, you have been asked to disable session monitoring and recording for 500 testing accounts used for your lab environment.
How do you accomplish this?
In a default CyberArk installation, which group must a user be a member of to view the “reports” page in PVWA?
A user is receiving the error message “ITATS006E Station is suspended for User jsmith” when attempting to sign into the Password Vault Web Access (PVWA). Which utility would a Vault administrator use to correct this problem?
In order to connect to a target device through PSM, the account credentials used for the connection must be stored in the vault?
You created a new platform by duplicating the out-of-box Linux through the SSH platform.
Without any change, which Text Recorder Type(s) will the new platform support? (Choose two.)
For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure a group of users to access a password without approval.
Which type of automatic remediation can be performed by the PTA in case of a suspected credential theft security event?
You want to build a connector that connects to a website through the Web applications for PSM framework.
Which default connector do you duplicate and modify?
If PTA is integrated with a supported SIEM solution, which detection becomes available?
Which of the following files must be created or configured m order to run Password Upload Utility? Select all that apply.
You have been asked to create an account group and assign three accounts which belong to a cluster. When you try to create a new group, you receive an unauthorized error; however, you are able to edit other aspects of the account properties.
Which safe permission do you need to manage account groups?
DumpsMate's team of experts is always available to respond your queries on exam preparation. Get professional answers on any topic of the certification syllabus. Our experts will thoroughly satisfy you.
TESTED 25 Apr 2024
