CyberArk ACCESS-DEF Exam Practice Test Instant Access

Question 1

What is the most likely reason a CyberArk Identity admin would turn on the "Provisioning" feature within a Web App connector?

Ato ensure users are automatically on-boarded and off-boarded in a third-party application

Bto ensure users are provisioned with the appropriate devices when they start

Cto ensure the web app appears in the users' CyberArk Identity portal when they first sign in

Dto create an audit log of every time users sign into the web app

Answer : A

Question 2

Your Chief Executive Officer lost his phone and cannot perform MFA to log in to work.

How can you enable him to bypass MFA right away and not delay his work?

AAdd a security question to his account on his behalf.

BAsk him to configure on-device authenticator.

CAsk him to change his phone PIN.

DSelect the MFA Unlock action for him through the Admin Portal.

Answer : D

Question 3

What can cause users to be prompted for unrecognized MFA factors, such as a wrong phone number or unregistered MFA factor?

ASomeone installed the CyberArk Identity mobile app on a different phone with their credentials.

BThe administrator switched authentication profiles.

CThey mistyped their username.

DSomeone registered their phone number to the wrong username.

Answer : C

Question 4

CyberArk Identity has created a CLI integration with which vendor?

AAmazon Web Services

BSalesforce

CMicrosoft

DZoom

Answer : A

Question 5

Refer to the exhibit.

How should you configure this default authentication policy to ensure users must authenticate every time they try to access the CyberArk Identity portal or web applications?

ACheck and enable QR Code under the 'Single Authentication Mechanism' section.

BCheck and enable Security Questions and set the number to '1'.

CCheck and Select 'Challenge Pass-Through Duration' to be 'No Pass Through'.

DCheck and Select QR Code under Challenge 1.

Answer : C

Question 6

Which device enrollment settings are valid? (Choose two.)

ASend notification on device enrollment

BEnable invite based enrollment

CMinimum number of devices a user can enroll

DReassign the device to another user

EPermanently delete device

Answer : A, B

Question 7

Which protocols can CyberArk provide MFA for VPN? (Choose two.)

ASAML

BRADIUS

CIMAP

DTACACS

ELDAP

Answer : A, B

CyberArk ACCESS-DEF CyberArk Defender Access Exam Practice Test