CyberArk PAM-DEF Exam Practice Test Instant Access

Question 1

Which statement is correct concerning accounts that are discovered, but cannot be added to the Vault by an automated onboarding rule?

AThey are added to the Pending Accounts list and can be reviewed and manually uploaded.

BThey cannot be onboarded to the Password Vault.

CThey must be uploaded using third party tools.

DThey are not part of the Discovery Process.

Answer : D

Question 2

In the screenshot displayed, you just configured the usage in CyberArk and want to update its password.

What is the least intrusive way to accomplish this?

AUse the ''change'' button on the usage's details page.

BUse the ''change'' button on the parent account's details page.

CUse the ''sync'' button on the usage's details page.

DUse the ''reconcile'' button on the parent account's details page.

Answer : B

Question 3

In your organization the ''click to connect'' button is not active by default.

How can this feature be activated?

APolicies > Master Policy > Allow EPV transparent connections > Inactive

BPolicies > Master Policy > Session Management > Require privileged session monitoring and isolation > Add Exception

CPolicies > Master Policy > Allow EPV transparent connections > Active

DPolicies > Master Policy > Password Management

Answer : C

Question 4

You have been asked to secure a set of shared accounts in CyberArk whose passwords will need to be used by end users. The account owner wants to be able to track who was using an account at any given moment.

Which security configuration should you recommend?

AConfigure one-time passwords for the appropriate platform in Master Policy.

BConfigure shared account mode on the appropriate safe.

CConfigure both one-time passwords and exclusive access for the appropriate platform in Master Policy.

DConfigure object level access control on the appropriate safe.

Answer : D

Question 5

What is the configuration file used by the CPM scanner when scanning UNIX/Linux devices?

AUnixPrompts.ini

Bplink.exe

Cdbparm.ini

DPVConfig.xml

Answer : A

Question 6

Your organization requires all passwords be rotated every 90days.

Where can you set this regulatory requirement?

AMaster Policy

BSafe Templates

CPVWAConfig.xml

DPlatform Configuration

Answer : A

Question 7

You are logging into CyberArk as the Master user to recover an orphaned safe.

Which items are required to log in as Master?

AMaster CD, Master Password, console access to the Vault server, Private Ark Client

BOperator CD, Master Password, console access to the PVWA server, PVWA access

COperator CD, Master Password, console access to the Vault server, Recover.exe

DMaster CD, Master Password, console access to the PVWA server, Recover.exe

Answer : A

CyberArk PAM-DEF CyberArk Defender - PAM Exam Practice Test