CyberArk PAM-DEF Exam Practice Test Instant Access

Question 1

Due to network activity, ACME Corp's PrivateArk Server became active on the OR Vault while the Primary Vault was also running normally. All the components continued to point to the Primary Vault.

Which steps should you perform to restore DR replication to normal?

AReplicate data from DR Vault to Primary Vault > Shutdown PrivateArk Server on DR Vault > Start replication on DR vault

BShutdown PrivateArk Server on DR Vault > Start replication on DR vault

CShutdown PrivateArk Server on Primary Vault > Replicate data from DR Vault to Primary Vault > Shutdown PrivateArk Server on DR Vault > Start replication on DR vault

DShutdown PrivateArk Server on DR Vault > Replicate data from DR Vault to Primary Vault > Shutdown PrivateArk Server on DR Vault > Start replication on DR vault

Answer : A

Question 2

You are creating a shared safe for the help desk.

What must be considered regarding the naming convention?

AEnsure your naming convention is no longer than 20 characters.

BCombine environments, owners and platforms to minimize the total number of safes created.

CSafe owners should determine the safe name to enable them to easily remember it.

DThe use of these characters V:*<>'.| is not allowed.

Answer : D

Question 3

You receive this error:

''Error in changepass to user domain\user on domain server(\domain.(winRc=5) Access is denied.''

Which root cause should you investigate?

AThe account does not have sufficient permissions to change its own password.

BThe domain controller is unreachable.

CThe password has been changed recently and minimum password age is preventing the change.

DThe CPM service is disabled and will need to be restarted.

Answer : A

Question 4

You are creating a Dual Control workflow for a team's safe.

Which safe permissions must you grant to the Approvers group?

AList accounts, Authorize account request

BRetrieve accounts, Access Safe without confirmation

CRetrieve accounts, Authorize account request

DList accounts, Unlock accounts

Answer : C

Question 5

In a rule using ''Privileged Session Analysis and Response'' in PTA, which session options are available to configure as responses to activities?

ASuspend, Terminate, None

BSuspend, Terminate, Lock Account

CPause, Terminate, None

DSuspend, Terminate

Answer : D

Question 6

You have been asked to turn off the time access restrictions for a safe.

Where is this setting found?

APrivateArk

BRestAPI

CPassword Vault Web Access (PVWA)

DVault

Answer : A

Question 7

To enable the Automatic response ''Add to Pending'' within PTA when unmanaged credentials are found, what are the minimum permissions required by PTAUser for the PasswordManager_pending safe?

AList Accounts, View Safe members, Add accounts (includes update properties), Update Account content, Update Account properties

BList Accounts, Add accounts (includes update properties), Delete Accounts, Manage Safe

CAdd accounts (includes update properties), Update Account content, Update Account properties, View Audit

DView Accounts, Update Account content, Update Account properties, Access Safe without confirmation, Manage Safe, View Audit

Answer : A

CyberArk PAM-DEF CyberArk Defender - PAM Exam Practice Test