PAM-DEF-SEN 시험 - CyberArk실제시험문제와 답 - 237문항

Question No : 1

What is the purpose of the password Reconcile process?

A.To test that CyberArk is storing accurate credentials for accounts.
B.To change the password of an account according to organizationally defined password rules.
C.To allow CyberArk to manage unknown or lost credentials.
D.To generate a new complex password.

정답:

Question No : 2

Which is the correct order of installation for PAS components?
A. Vault. CPM. PVWA. PSM
B. CPM, Vault. PSM. PVWA
C. Vault, CPM. PSM, PVWA
D. PVWA, Vault, CPM. PSM

정답: A

Question No : 3

The following applications are pre-configured to work with PSM. but first need to be installed on the PSM server.

A.SQL Plus
B.Putty
C.RDP
D.WinSCP
E.Toad
F.VMWare vSphere Client
G.Microsoft SQL Management Studio

정답:

Question No : 4

An auditor initiates a LIVE monitoring session to PSM server to view an ongoing LIVE session.
When the auditor’s machine makes an RDP connection the PSM server, which user will be used?

A.PSMAdminConnect
B.Shadowuser
C.PSMConnect
D.Credentials Stored in the Vault for the Target Machine

정답:

Question No : 5

What are the functions of the Remote Control Agent service? (Choose all that apply.)

A.Allows remote monitoring of the Vault
B.Sends SNMP traps from the Vault
C.Maintains audit data
D.Allows CyberArk Services to be managed (start/stop/status) remotely

정답:

Question No : 6

What is the purpose of the Allowed Safes parameter in a CPM policy? Select all that apply.

A.To improve performance by reducing CPU workload.
B.To prevent accidental use of a policy in the wrong safe.
C.To allow users to access only the passwords they should be able to access.
D.To enforce Least Privilege in CyberArk.

정답:

Question No : 7

Which file is used to configure new firewall rules on the Vault?

A.firewall.ini
B.PARagent.ini
C.dbparm.ini
D.padr.ini

정답:
Explanation:
Reference: https://www.reddit.com/r/CyberARk/comments/at0q56/open_ports_cyberark_vault/

Question No : 8

If a transparent user belongs two different directory mappings, how does the system determine which user template to use?

A.The system will use the template for the mapping listed first.
B.The system will use the template for the mapping listed last.
C.The system will grant all of the vault authorizations from the two templates.
D.The system will grant only the vault authorizations that are listed in both templates.

정답:

Question No : 9

What is the purpose of EVD?

A.To extract vault metadata into an open database platform.
B.To allow editing of vault metadata.
C.To create a backup of the MySQL database.
D.To extract audit data from the vault.

정답:
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/Landing%20Pages/lpExportVaultDataUtility.htm

Question No : 10

DRAG DROP
Match the log file name with the CyberArk Component that generates the log.

정답:

Question No : 11

According to the default web options settings, which group grants access to the reports page?

A.PVWAMonitor
B.PVWAUsers
C.Auditors
D.Vault administrators

정답:
Explanation:
Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/ReportsInPVWA.htm

Question No : 12

In accordance with best practice. SSH access is denied for root accounts on UNIX/LINUX systems.
What is the BEST way to allow CPM to manage root accounts?

A.Create a privileged account on the target server Allow this account the ability to SSH directly from the CPM machine Configure this account as the Reconcile account of the target server's root account.
B.Create a non-privileged account on the target server Allow this account the ability to SSH directly from the CPM machine. Configure this account as the Logon account of the target server's root account
C.Configure the Unix system to allow SSH logins.
D.Configure the CPM to allow SSH logins

정답:

Question No : 13

It is possible to disable the Show and Copy buttons without removing the Retrieve permission on a safe.

A.TRUE
B.FALSE

정답:

Question No : 14

One can create exceptions to the Master Policy based on_________.

A.Safes
B.Platforms
C.Policies
D.Accounts

정답:

Question No : 15

Which Master Policy?

A.Password Expiration Time
B.Enabling and Disabling of the Connection Through the PSM
C.Password Complexity
D.The use of "One-Time-Passwords"

정답:

CyberArk PAM-DEF-SEN 시험