CyberArk PAM-DEF Certification All-in-One Exam Guide Nov-2023 [Q104-Q128]

NEW QUESTION 104
Accounts Discovery allows secure connections to domain controllers.

NEW QUESTION 105
What is the primary purpose of Dual Control?

NEW QUESTION 106
For Digital Vault Cluster in a high availability configuration, how does the cluster determine if a node is down?

NEW QUESTION 107
A Vault administrator have associated a logon account to one of their Unix root accounts in the vault. When attempting to verify the root account’s password the Central Policy Manager (CPM) will:

NEW QUESTION 108
What is the purpose of the Immediate Interval setting in a CPM policy?

NEW QUESTION 109
In PVWA, you are attempting to play a recording made of a session by user jsmith, but there is no option to “Fast Forward” within the video. It plays and only allows you to skip between commands instead. You are also unable to download the video.
What could be the cause?

NEW QUESTION 110
An auditor initiates a live monitoring session to PSM server to view an ongoing live session.
When the auditor’s machine makes an RDP connection the PSM server, which user will be used?

NEW QUESTION 111
When Dual Control is enabled a user must first submit a request in the Password Vault Web Access (PVWA) and receive approval before being able to launch a secure connection via PSM for Windows (previously known as RDP Proxy).

NEW QUESTION 112
Your organization requires all passwords be rotated every 90 days.
Where can you set this regulatory requirement?

NEW QUESTION 113
If a user is a member of more than one group that has authorizations on a safe, by default that user is granted________.

NEW QUESTION 114
Which parameters can be used to harden the Credential Files (CredFiles) while using CreateCredFile Utility?
(Choose three.)

NEW QUESTION 115
Platform settings are applied to _________.

NEW QUESTION 116
An auditor needs to login to the PSM in order to live monitor an active session .
Which user ID is used to establish the RDP connection to the PSM server?

NEW QUESTION 117
It is possible to control the hours of the day during which a user may log into the vault.

NEW QUESTION 118
It is possible to restrict the time of day, or day of week that a [b]reconcile[/b] process can occur

NEW QUESTION 119
Which of the following statements are NOT true when enabling PSM recording for a target Windows server? (Choose all that apply)

NEW QUESTION 120
A Simple Mail Transfer Protocol (SMTP) integration is critical for monitoring Vault activity and facilitating workflow processes, such as Dual Control.

NEW QUESTION 121
Vault admins must manually add the auditors group to newly created safes so auditors will have sufficient access to run reports.

NEW QUESTION 122
You have been asked to identify the up or down status of Vault services.
Which CyberArk utility can you use to accomplish this task?

NEW QUESTION 123
In the screenshot displayed, you just configured the usage in CyberArk and want to update its password.
What is the least intrusive way to accomplish this?

NEW QUESTION 124
A Vault Administrator team member can log in to CyberArk, but for some reason, is not given Vault Admin rights.
Where can you check to verify that the Vault Admins directory mapping points to the correct AD group?

NEW QUESTION 125
What is the purpose of the PrivateArk Server service?

NEW QUESTION 126
Which of the Following can be configured in the Master Poky? Choose all that apply.

NEW QUESTION 127
Customers who have the ‘Access Safe without confirmation’ safe permission on a safe where accounts are configured for Dual control, still need to request approval to use the account.

NEW QUESTION 128
What is the chief benefit of PSM?