• Home
  • Articles
  • [Q44-Q61] Latest CyberArk CAU201 First Attempt, Exam real Dumps Updated [Oct-2021]

[Q44-Q61] Latest CyberArk CAU201 First Attempt, Exam real Dumps Updated [Oct-2021]

Share

Latest CyberArk CAU201 First Attempt, Exam real Dumps Updated [Oct-2021]

Get the superior quality CAU201 Dumps Questions from ActualPDF. Nobody can stop you from getting to your dreams now. Your bright future is just a click away!

NEW QUESTION 44
What is the purpose of the HeadStartlnterval setting m a platform?

  • A. It instructs the CPM to initiate the password change process X number of days before expiration.
  • B. It instructs the AIM Provider to 'skip the cache' during the defined time period
  • C. It alerts users of upcoming password changes x number of days before expiration.
  • D. It determines how far in advance audit data is collected tor reports

Answer: A

Explanation:
The number of days before the password expires (according to the ExpirationPeriod parameter) that the CPM will initiate a password change process. This parameter is not relevant if the policy will be applied to a member of an account group.

 

NEW QUESTION 45
Which CyberArk components products can be used to discover Windows Services or Scheduled Tasks that use privileged accounts? Select all that apply.

  • A. Auto Detection (AD)
  • B. On Demand Privileges manager (OPM)
  • C. Export Vault Data (EVD)
  • D. Discovery and Audit (DNA)
  • E. Accounts Discovery

Answer: D,E

 

NEW QUESTION 46
A logon account can be specified in the platform settings.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 47
You have associated a logon account to one of your UNIX root accounts in the vault. When attempting to change the root account's password the CPM will...

  • A. Log in to the system as the logon account, run the su command to log in as root, and then change root's password.
  • B. None of these.
  • C. Log in to the system as root, then change root's password.
  • D. Log in to the system as the logon account, then change root's password

Answer: C

 

NEW QUESTION 48
Target account platforms can be restricted to accounts that are stored in specific Safes using the AllowedSafes property.

  • A. TRUE
  • B. FALSE

Answer: B

 

NEW QUESTION 49
It is possible to restrict the time of day, or day of week that a reconcile process can occur.

  • A. TRUE
  • B. FALSE

Answer: B

 

NEW QUESTION 50
What is the primary purpose of Dual Control?

  • A. Reduced risk of credential theft
  • B. More frequent password changes
  • C. Non-repudiation (individual accountability)
  • D. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization.

Answer: D

Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Dual-
Control.htm

 

NEW QUESTION 51
Select the best practice for storing the Master CD.

  • A. Store the CD in a secure location, such as a physical safe, and copy the contents of the CD to a folder secured with NTFS permissions on the Vault
  • B. Copy the files to the Vault server and discard the CD
  • C. Copy the contents of the CD to a Hardware Security Module (HSM) and discard the CD
  • D. Store the CD in a secure location, such as a physical safe

Answer: A

 

NEW QUESTION 52
Which Cyber Are components or products can be used to discover Windows Services or Scheduled Tasks that use privileged accounts? Select all that apply.

  • A. Auto Detection (AD)
  • B. Discovery and Audit (DMA)
  • C. On Demand Privileges Manager (OPM)
  • D. Export Vault Data (EVD)
  • E. Accounts Discovery

Answer: C,D,E

 

NEW QUESTION 53
In order to connect to a target device through PSM, the account credentials used for the connection must be stored in the vault?

  • A. False. Because the user can also enter credentials manually using Secure Connect.
  • B. True.
  • C. False. Because if credentials are not stored in the vault, the PSM will prompt for credentials.
  • D. False. Because if credentials are not stored in the vault, the PSM will log into the target device as PSMConnect.

Answer: A

 

NEW QUESTION 54
The primary purpose of exclusive accounts is to ensure non-repudiation (Individual accountability).

  • A. FALS
  • B. TRUE

Answer: B

 

NEW QUESTION 55
What is the purpose of the Immediate Interval setting in a CPM policy?

  • A. To control how often the CPM looks for User Initiated CPM work.
  • B. To control how often the CPM looks for System Initiated CPM work.
  • C. To control how often the CPM rests between password changes.
  • D. To Control the maximum amount of time the CPM will wait for a password change to complete.

Answer: A

Explanation:
Explanation
When the Master Policy enforces check-in/check-out exclusive access, passwords are changed when the user clicks the Release button and releases the account. This is based on the ImmediateInterval parameter in the applied platform. If the user forgets to release the account, it is automatically released and changed by the CPM after a predetermined number of minutes, defined in the MinValidityPeriod parameter specified in the platform

 

NEW QUESTION 56
As long as you are a member of the Vault Admins group, you can grant any permission on any safe that you have access to.

  • A. TRUE
  • B. FALSE

Answer: B

Explanation:
Explanation
Being in Vault admins group only give you access to safes which are created during installation (safe created in installation process ) -This is clearly mentioned in documents .

 

NEW QUESTION 57
CyberArk implements license limits by controlling the number and types of users that can be provisioned in the
vault.

  • A. TRUE
  • B. FALSE

Answer: A

Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Managing-the-
CyberArk-License.htm

 

NEW QUESTION 58
For a safe with Object Level Access enabled you can turn off Object Level Access Control when it no longer needed on the safe.

  • A. TRUE
  • B. FALSE

Answer: B

Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Object-Level- Access-Control.htm

 

NEW QUESTION 59
For an account attached to a platform that requires Dual Control based on a Master Policy exception, how
would you configure a group of users to access a password without approval.

  • A. Edit the master policy rule and modify the advanced 'Access safe without approval' rule to include the
    group.
  • B. On the safe in which the account is stored grant the group the 'Access safe without audit' authorization.
  • C. On the safe in which the account is stored grant the group the 'Access safe without confirmation'
    authorization.
  • D. Create an exception to the Master Policy to exclude the group from the workflow process.

Answer: D

Explanation:
Explanation/Reference: https://www.reddit.com/r/CyberARk/comments/6270zr/dual_control_on_specific_accounts/

 

NEW QUESTION 60
Which utilities could you use to change debugging levels on the vault without having to restart the vault.
Select all that apply.

  • A. PrivateArk Server Central Administration
  • B. Edit DBParm.ini in a text editor.
  • C. Setup.exe
  • D. PAR Agent

Answer: D

 

NEW QUESTION 61
......

CyberArk Practice Test Engine with CAU201 Questions: https://drive.google.com/open?id=1gm5WSDKvc0tNHC70j7Xi3rXsODFooHeQ

Guaranteed Success with Valid CyberArk CAU201 Dumps: https://www.actualpdf.com/CAU201_exam-dumps.html

 

Related Articles

more
CyberArk CAU201 Certification Practice Exam