CyberArk EPM-DEF Exam Practice Test Instant Access

Question 1

When adding the EPM agent to a pre-existing security stack on workstation, what two steps are CyberArk recommendations. (Choose two.)

AAdd any pre-existing security application to the Files to Be Ignored Always.

BAdd EPM agent to the other security tools exclusions.

CEPM agent should never be run with any other security tools.

DCreate new advanced policies for each security tool.

Answer : A, B

Question 2

Before enabling Ransomware Protection, what should the EPM Administrator do first?

AEnable the Privilege Management Inbox in Elevate mode.

BEnable the Control Applications Downloaded From The Internet feature in Restrict mode.

CReview the Authorized Applications (Ransomware Protection) group and update if necessary.

DEnable Threat Protection and Threat Intelligence modules.

Answer : C

Question 3

An end user is experiencing performance issues on their device after the EPM Agent had been installed on their machine. What should the EPM Administrator do first to help resolve the issue?

AVerify any 3rd party security solutions have been added to EPM's Files To Be Ignored Always configuration and CyberArk EPM has also been excluded from the 3rd party security solutions.

BEnable the Default Policy's Privilege Management Control, Unhandled Privileged Applications in Elevate mode.

CRerun the agent installation on the user's machine to repair the installation.

DUninstall or disable any anti-virus software prohibiting the EPM Agent functionalities.

Answer : D

Question 4

What can you manage by using User Policies?

AJust-In-Time endpoint access and elevation, access to removable drives, and Services access.

BAccess to Windows Services only.

CFilesystem and registry access, access to removable drives, and Services access.

DJust-In-Time endpoint access and elevation, access to removable drives, filesystem and registry access, Services access, and User account control monitoring.

Answer : D

Question 5

When working with credential rotation/loosely connected devices, what additional CyberArk components are required?

APTA

CPVWA

DDAP

Answer : C

Question 6

When enabling Threat Protection policies, what should an EPM Administrator consider? (Choose two.)

ASome Threat Protection policies are applicable only for Windows Servers as opposed to Workstations.

BCertain Threat Protection policies apply for specific applications not found on all machines

CThreat Protection policies requires an additional agent to be installed.

DThreat Protection features are not available in all regions.

Answer : A, B

Question 7

What are the policy targeting options available for a policy upon creation?

AAD Users and Groups, Computers in AD Security Groups, Servers

BComputers in this set, Computers in AD Security Groups, Users and Groups

COS Computers, EPM Sets, AD Users

DEPM Sets, Computers in AD Security Groups, AD Users and AD Security Groups

Answer : D

CyberArk Defender - EPM Exam Practice Test