CyberArk PAM-DEF Exam Practice Test Instant Access

Question 1

Due to network activity, ACME Corp's PrivateArk Server became active on the OR Vault while the Primary Vault was also running normally. All the components continued to point to the Primary Vault.

Which steps should you perform to restore DR replication to normal?

AReplicate data from DR Vault to Primary Vault > Shutdown PrivateArk Server on DR Vault > Start replication on DR vault

BShutdown PrivateArk Server on DR Vault > Start replication on DR vault

CShutdown PrivateArk Server on Primary Vault > Replicate data from DR Vault to Primary Vault > Shutdown PrivateArk Server on DR Vault > Start replication on DR vault

DShutdown PrivateArk Server on DR Vault > Replicate data from DR Vault to Primary Vault > Shutdown PrivateArk Server on DR Vault > Start replication on DR vault

Answer : A

Question 2

You are creating a shared safe for the help desk.

What must be considered regarding the naming convention?

AEnsure your naming convention is no longer than 20 characters.

BCombine environments, owners and platforms to minimize the total number of safes created.

CSafe owners should determine the safe name to enable them to easily remember it.

DThe use of these characters V:*<>'.| is not allowed.

Answer : D

Question 3

You receive this error:

''Error in changepass to user domain\user on domain server(\domain.(winRc=5) Access is denied.''

Which root cause should you investigate?

AThe account does not have sufficient permissions to change its own password.

BThe domain controller is unreachable.

CThe password has been changed recently and minimum password age is preventing the change.

DThe CPM service is disabled and will need to be restarted.

Answer : A

Question 4

You are creating a Dual Control workflow for a team's safe.

Which safe permissions must you grant to the Approvers group?

AList accounts, Authorize account request

BRetrieve accounts, Access Safe without confirmation

CRetrieve accounts, Authorize account request

DList accounts, Unlock accounts

Answer : C

Question 5

In a rule using ''Privileged Session Analysis and Response'' in PTA, which session options are available to configure as responses to activities?

ASuspend, Terminate, None

BSuspend, Terminate, Lock Account

CPause, Terminate, None

DSuspend, Terminate

Answer : D

Question 6

Your organization requires all passwords be rotated every 90days.

Where can you set this regulatory requirement?

AMaster Policy

BSafe Templates

CPVWAConfig.xml

DPlatform Configuration

Answer : A

Question 7

You are logging into CyberArk as the Master user to recover an orphaned safe.

Which items are required to log in as Master?

AMaster CD, Master Password, console access to the Vault server, Private Ark Client

BOperator CD, Master Password, console access to the PVWA server, PVWA access

COperator CD, Master Password, console access to the Vault server, Recover.exe

DMaster CD, Master Password, console access to the PVWA server, Recover.exe

Answer : A

CyberArk Defender - PAM Exam Practice Test