Real CyberArk Defender Exam Questions CAU201 Study Guide Online

Regina2021-12-30T02:18:34+00:00

By Regina CyberArk, Free Questions Online CAU201, CAU201 demo, CAU201 exam questions, CAU201 free questions, CAU201 real exam questions 0 Comments

Earning CyberArk Defender certification helps the cerfied candidates demonstrate competency to maintain day-to-day operations and support the on-going performance of the CyberArk Privileged Access Management Solution. When preparing for CAU201 CyberArk Defender certification exam, you will be suggested to choose the real CAU201 study guide to learn the real CyberArk Defender Exam Questions. CyberArk CAU201 real exam questions of ITExamShop as they may be the top-rated CAU201 preparation materials that come with verified answers and will not just enable you to in mastering the real CyberArk Defender exam questions in the initially try but in addition provide you with the ideal possibility to clear all of your doubts about CyberArk Defender Level 2 CAU201 exam.

CAU201 Free Questions Demo Are Available For Checking Real CyberArk Defender Exam Questions

Page 1 of 3

1. Which report could show all accounts that are past their expiration dates?

Privileged Account Compliance Status report

Activity log

Privileged Account Inventory report

Application Inventory report

2. You are creating a Dual Control workflow for a team’s safe.

Which safe permissions must you grant to the Approvers group?

List accounts, Authorize account request

Retrieve accounts, Access Safe without confirmation

Retrieve accounts, Authorize account request

List accounts, Unlock accounts

3. DRAG DROP

Arrange the steps to restore a Vault using PARestore for a Backup in the correct sequence.

4. Which Master Policy Setting must be active in order to have an account checked-out by one user for a pre-determined amount of time?

Require dual control password access Approval

Enforce check-in/check-out exclusive access

Enforce one-time password access

Enforce check-in/check-out exclusive access & Enforce one-time password access

5. tsparm.ini is the main configuration file for the Vault.

True

False

6. Which utilities could you use to change debugging levels on the vault without having to restart the vault. Select all that apply.

PAR Agent

PrivateArk Server Central Administration

Edit DBParm.ini in a text editor.

Setup.exe

7. You have been asked to secure a set of shared accounts in CyberArk whose passwords will need to be used by end users. The account owner wants to be able to track who was using an account at any given moment.

Which security configuration should you recommend?

Configure one-time passwords for the appropriate platform in Master Policy.

Configure shared account mode on the appropriate safe.

Configure both one-time passwords and exclusive access for the appropriate platform in Master Policy.

Configure object level access control on the appropriate safe.

8. CyberArk recommends implementing object level access control on all Safes.

True

False

9. As long as you are a member of the Vault Admins group you can grant any permission on any safe.

TRUE

FALSE

10. You have associated a logon account to one your UNIX cool accounts in the vault. When attempting to [b]change [/b] the root account’s password the CPM will…..

None of these

Page 2 of 3

11. A user is receiving the error message “ITATS006E Station is suspended for User jsmith” when attempting to sign into the Password Vault Web Access (PVWA) .

Which utility would a Vault administrator use to correct this problem?

createcredfile.exe

cavaultmanager.exe

PrivateArk

PVWA

12. What is the purpose of a linked account?

To ensure that a particular collection of accounts all have the same password.

To ensure a particular set of accounts all change at the same time.

To connect the CPNI to a target system.

To allow more than one account to work together as part of a password management process.

13. A Reconcile Account can be specified in the Master Policy.

TRUE

FALSE

14. What is the name of the Platform parameters that controls how long a password will stay valid when One Time Passwords are enabled via the Master Policy?

Min Validity Period

Interval

Immediate Interval

Timeout

15. Which of the following statements are NOT true when enabling PSM recording for a target Windows server? (Choose all that apply)

The PSM software must be instated on the target server

PSM must be enabled in the Master Policy (either directly, or through exception)

PSMConnect must be added as a local user on the target server

RDP must be enabled on the target server

16. When creating an onboarding rule, it will be executed upon .

All accounts in the pending accounts list

Any future accounts discovered by a discovery process

Both “All accounts in the pending accounts list” and “Any future accounts discovered by a discovery process”

17. Which type of automatic remediation can be performed by the PTA in case of a suspected credential theft security event?

Password change

Password reconciliation

Session suspension

Session termination

18. To enable the Automatic response “Add to Pending” within PTA when unmanaged credentials are found, what are the minimum permissions required by PTAUser for the PasswordManager_pending safe?

List Accounts, View Safe members, Add accounts (includes update properties), Update Account content, Update Account properties

List Accounts, Add accounts (includes update properties), Delete Accounts, Manage Safe

Add accounts (includes update properties), Update Account content, Update Account properties, View Audit

View Accounts, Update Account content, Update Account properties, Access Safe without confirmation, Manage Safe, View Audit

19. Which parameter controls how often the CPM looks for Soon-to-be-expired Passwords that need to be changed.

HeadStartInterval

Interval

ImmediateInterval

The CPM does not change the password under this circumstance

20. Assuming a safe has been configured to be accessible during certain hours of the day, a Vault Admin may still access that safe outside of those hours.

TRUE

FALSE

Page 3 of 3

21. VAULT authorizations may be granted to_____.

Vault Users

Vault Groups

LDAP Users

LDAP Groups

Welcome To Choose Required IT Certification Exams Online

Real CyberArk Defender Exam Questions CAU201 Study Guide Online

CAU201 Free Questions Demo Are Available For Checking Real CyberArk Defender Exam Questions

Author

Leave a Reply Cancel reply