CyberArc CAU201 CyberArk Defender https://killexams.com/pass4sure/exam-detail/CAU201 Question: 105 PSM captures a record of each command that was executed in Unix. A. TRUE B. FALSE Answer: A Question: 106 It is possible to leverage DNA to provide discovery functions that are not available with auto-detection. A. TRUE B. FALSE Answer: A Question: 107 Which report provides a list of accounts stored in the vault. A. Privileged Accounts Inventory B. Privileged Accounts Compliance Status C. Entitlement Report D. Activity Log Answer: A Explanation: Reference: https://techinsight.com.vn/language/en/privileged-account-security-solution-part-2/ Question: 108 As long as you are a member of the Vault Admins group, you can grant any permission on any safe that you have access to. A. TRUE B. FALSE Answer: B Question: 109 Which utilities could you use to change debugging levels on the vault without having to restart the vault. Select all that apply. A. PAR Agent B. PrivateArk Server Central Administration C. Edit DBParm.ini in a text editor. D. Setup.exe Answer: A Question: 110 What is the purpose of the Immediate Interval setting in a CPM policy? A. To control how often the CPM looks for System Initiated CPM work. B. To control how often the CPM looks for User Initiated CPM work. C. To control how long the CPM rests between password changes. D. To control the maximum amount of time the CPM will wait for a password change to complete. Answer: C Question: 111 When on-boarding account using Accounts Feed, which of the following is true? A. You must specify an existing Safe where the account will be stored when it is on-boarded to the Vault. B. You can specify the name of a new safe that will be created where the account will be stored when it is on-boarded to the Vault. C. You can specify the name of a new Platform that will be created and associated with the account. D. Any account that is on-boarded can be automatically reconciled regardless of the platform it is associated with. Answer: C Explanation: Reference: https://www.cyberark.com/resource/automating-privileged-account-onboarding/ Question: 112 If a user is a member of more than one group that has authorizations on a safe, by default that user is granted____________________. A. the vault will not allow this situation to occur. B. only those permissions that exist on the group added to the safe first. C. only those permissions that exist in all groups to which the user belongs. D. the cumulative permissions of all the groups to which that user belongs. Answer: B Question: 113 All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of OperationsManagers. The members of OperationsManagers never need to be able to use the show, copy or connect buttons themselves. Which safe permissions do you need to grant to OperationsStaff? Check all that apply. A. Use Accounts B. Retrieve Accounts C. List Accounts D. Authorize Password Requests E. Access Safe without Authorization Answer: A Question: 114 Platform settings are applied to______________. A. The entire vault. B. Network Areas C. Safes D. Individual Accounts Answer: C Explanation: Reference: https://www.reddit.com/r/CyberARk/comments/avxnxz/safes_and_platform_association/ Question: 115 Which of the following files must be created or configured in order to run Password Upload Utility? Select all that apply. A. PACli.ini B. Vault.ini C. conf.ini D. A comma delimited upload file Answer: C Explanation: Reference: https://www.reddit.com/r/CyberARk/comments/84gfsb/password_upload_utility_error/ Question: 116 For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure a group of users to access a password without approval. A. Create an exception to the Master Policy to exclude the group from the workflow process. B. Edit the master policy rule and modify the advanced ‘Access safe without approval’ rule to include the group. C. On the safe in which the account is stored grant the group the ‘Access safe without audit’ authorization. D. On the safe in which the account is stored grant the group the ‘Access safe without confirmation’ authorization. Answer: A Explanation: Reference: https://www.reddit.com/r/CyberARk/comments/6270zr/dual_control_on_specific_accounts/ Question: 117 VAULT authorizations may be granted to ____________________. Select all that apply. A. Vault Users B. Vault Groups C. LDAP Users D. LDAP Groups Answer: C Question: 118 A Logon Account can be specified in the Master Policy. A. TRUE B. FALSE Answer: B Question: 119 What is the name of the Platform parameter that controls how long a password will stay valid when One Time Passwords are enabled via the Master Policy? A. MinValidityPeriod B. Interval C. ImmediateInterval D. Timeout Answer: D Question: 120 Customers who have the ‘Access Safe without confirmation’ safe permission on a safe where accounts are configured for Dual control, still need to request approval to use the account. A. TRUE B. FALSE Answer: B For More exams visit https://killexams.com/vendors-exam-list