Exam Code : CAU305
Exam Name : CyberArk CDE Recertification
Vendor Name :
"CyberArk"
CAU305 Dumps CAU305 Braindumps CAU305 Real Questions CAU305 Practice Test
CAU305 Actual Questions
killexams.com CyberArk CAU305
CyberArk CDE Recertification
https://killexams.com/pass4sure/exam-detail/CAU305
Which type of automatic remediation can be performed by the PTA in case of a suspected credential theft security event?
Password change
Password reconciliation
Session suspension
Session termination
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PTA/SecurityÂConfiguration.htm
dbparm.ini is the main configuration file for the Vault.
True
False
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASREF/DBParm.ini.htm
When working with the CyberArk High Availability Cluster, which services are running on the passive node?
Cluster Vault Manager and PrivateArk Database
Cluster Vault Manager, PrivateArk Database and Remote Control Agent
Cluster Vault Manager
Cluster Vault Manager and Remote Control Agent
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/ManagingÂthe-CyberArk- Digital-Cluster-Vault-Server.htm
When a DR Vault Server becomes an active vault, it will automatically revert back to DR mode once the Primary Vault comes back online.
True, this is the default behavior.
False, the Vault administrator must manually set the DR Vault to DR mode by setting "FailoverMode=no" in the padr.ini file.
True, if the AllowFailback setting is set to "yes" in the padr.ini file.
False, the Vault administrator must manually set the DR Vault to DR mode by setting "FailoverMode=no" in the dbparm.ini file.
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/11.3/en/Content/PASIMP/InitiatingÂDR-Failback-to- Production-Vault.htm
Which onboarding method is used to integrate CyberArk with the accounts provisioning process?
Accounts Discovery
Auto Detection
Onboarding RestAPI functions
PTA rules
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Provisioning-Accounts- Automatically.htm
Which file is used to open up a non-standard firewall port to the Vault?
dbparm.ini
PARagent.ini
passparm.ini
Vault.ini
When using multiple Central Policy Managers (CPM), which one of the following Safes is shared by all CPMs?
PasswordManager
PasswordManager_Pending
PasswordManager_workspace
PasswordManager_ADIntemal
Explanation:
Reference: https://www.niap-ccevs.org/MMO/Product/st_vid11006-agd4.pdf (558)
What are the functions of the Remote Control Agent service? (Choose three.)
Allows remote monitoring the Vault
Sends SNMP traps from the Vault
Maintains audit data
Allows CyberArk services to be managed (start/stop/status) remotely
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PAS%20INST/Privileged-Account- Security-Remote- Administration.htm#:~:text=The%20CyberArk%20Vault%20Remote%20Control,and%20the%20Disaster%20Recovery%20Server
In a Distributed Vaults environment, which of the following components will NOT be communicating with the Satellite Vaults?
AAM Credential Provider (previously known as AIM Credential Provider)
ExportVaultData utility
PAReplicate utility
Central Policy Manager
When managing SSH keys, the Central Policy Manager (CPM) stores the private key .
in the Vault
on the target server
in the Vault and on the target server
nowhere because the private key can always be generated from the public key
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/SSHKM/Managing
%20SSH%20Keys.htm
The PSM requires the Remote Desktop Web Access role service.
True
False
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PAS%20INST/Before-Installing- PSM.htm
Access control to passwords is implemented by .
Vault authorizations
Safe authorizations
Master Policy
platform settings
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/ObjectÂLevel-Access- Control.htm
During the process of installing the Central Policy Manager (CPM), the Vault administrator will be asked to provide the credentials for an administrative user in the Vault.
For which purpose are these credentials used?
The credentials will be used later by the CPM to retrieve passwords from the Vault.
The credentials are used by the installer to register the CPM in the CyberArk database.
The credentials are used by the installer to authenticate to the Vault and create the Central Policy Manager (CPM) environment (Safes, users. etc.).
The credentials will be used later by the CPM to update passwords in the Vault.
What is the purpose of the password verify process?
To test that CyberArk is storing accurate credentials for accounts.
To change the password of an account according to organizationally defined password rules.
To allow CyberArk to manage unknown or lost credentials.
To generate a new complex password.
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/VerifyingÂ- Passwords.htm#:~:text=The%20CPM%20can%20verify%20password,manually%20by%20an%20authorized%20user
For a Safe with object level access control enabled the Vault administrator is able to turn off object level access control when it no longer needed on the Safe.
True
False
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/ObjectÂLevel-Access- Control.htm