CyberArk ACCESS-DEF Exam Practice Test Instant Access

Question 1

When logging on to the User Portal, which authentication methods can enable the user to bypass authentication rules and default profile? (Choose two.)

ACertification-Based Authentication (CBA)

BIntegrated Windows Authentication (IWA)

CQR Code Authentication

DFIDO2 Authentication

ERADIUS Authentication

Answer : B, D

Question 2

When can 2FA/MFA be prompted? (Choose two.)

Awhen clicking on an app file while in the User Portal

Bafter clicking on the Forgot Your Password link

Cwhen making changes to a policy while in the Admin Portal

Dwhen exporting a compliance report while in the Admin Portal

Ewhen adding a new web app

Answer : A, C

Question 3

Which options are available with Self-Service Password Reset? (Choose three.)

AEnable users with Active Directory accounts who have forgotten their password to log in and reset it.

BPerform Self-Service Password Reset for the Organization's corporate accounts, such as Twitter, Facebook, or Instagram.

CUsers must log in after a password reset.

DA maximum number of times can be specified that users can reset their password within a specific timeframe.

EUsers must respond to a CAPTCHA before resetting their password.

FUse Helpdesk Caller Identity (Identity Verification) to confirm user identity.

Answer : A, D, E

Question 4

Your team is deploying endpoint authentication onto the corporate endpoints within an organization. Enrollment details include when the enrollment must be completed, and the enrollment code was sent out to the users. Enrollment can be performed in the office or remotely (without the assistance of an IT support engineer). You received feedback that many users are unable to enroll into the system using the enrollment code.

What can you do to resolve this? (Choose two.)

ASet maximum number of joinable endpoints to 'unlimited'.

BSet Expiry Date to 'Never'.

CSet the IP Address range to the user's' home network range.

DSet a description within the enrollment code.

EReinstall Windows Device Trust.

Answer : A, D

Question 5

Which 2FA/MFA options can fulfill the "Something you are" requirement? (Choose two.)

Aemail

BCyberArk Identity mobile app

CF1D02

Dphone call

Esecurity questions

Answer : B, C

Question 6

What does the CyberArk Identity App Gateway work with? (Choose three.)

ASAML-Compliant Apps

BWS-Fed Enabled Apps

COIDC Web Apps

DThick Client (non-web-based Apps)

ETerminal Services

FTelnet

Answer : A, B, C

Question 7

When configuring an application to use the App Gateway, you do not have to change any configurations in the application directly. You enable the application for App Gateway access in the Admin Portal and input the existing URL that users enter to open the application. You can either use an external URL that CyberArk Identity automatically generates, or you can continue using an existing internal URL.

What is a disadvantage of using an existing internal URL for App Gateway connections?

AExisting links and bookmarks do not work outside of the corporate network.

BUsers must use different URLs depending on whether they access the application internally or externally.

CMore configuration is needed because you must upload the URL certificate and private key, and edit DNS settings.

DUsers must use the same URLs regardless of whether they access the application internally or externally and this may confuse them.

Answer : C

CyberArk Defender Access Exam Practice Test