CAU302 Practice Exam Questions with Answers CyberArk Defender + Sentry Certification

dbparm.ini is the main configuration file for the vault.

Which file is used to open up a non-standard Firewall port to the Vault?

The Vault needs to send SNMP traps to an SNMP solution. In which configuration file do you set the IP address of the SNMP solution?

An SMTP integration allows you to forward audit records from the vault to the SIEM.

What is the primary purpose of Dual Control?

What is the chief benefit of PSM?

Match the log file name with the CyberArk Component that generates the log.

One of your users is receiving the error message “ITATS006E Station is suspended for User jsmith” when

attempting to sign in to the pvwa. Which utility would you use to correct this problem?

Multiple PVWA servers can be load balanced.

The following applications are pre-configured to work with PSM. but first need to be installed on the PSM server.

CyberArk implements license limits by controlling the number and types of users that can be provisioned in the vault.

Which file is used to integrate the Vault with the RADIUS server?

CyberArk recommends implementing object level access control on all Safes.

In a Distributed Vaults environment, which of the following components will NOT be communicating with the Satellite Vaults?

Multiple PSM Servers can be load balanced.

Which report could show all audit data in the vault?

In an SMTP integration it is recommended to use the fully-qualified domain name (FQDN) when specifying the SMTP server addresses).

What is the name of the Platform parameter that controls how long a password will stay valid when One Time Passwords are enabled via the Master Policy?

PSM captures a record of each command that was issues in SQL Plus.

Using the SSH Key Manager it is possible to allow CPM to manage SSH Keys similarly to passwords.

To support a fault tolerant and high-availability architecture, the Password Vault Web Access (PVWA) servers must to be configured to communicate with the Primary Vault and Satellite Vaults. Which file needs to be changed on the PVWA to enable this setup?

SAFE Authorizations may be granted to___________________.

Select all that apply.

Which of the following is considered a prerequisite for installing PSM?

According to the default web options settings, which group grants access to the reports page?

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe The members of the AD group UnixAdmms need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation The members of the AD group OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of OperationsManagers The members of OperationsManagers never need to be able to use the show, copy or connect buttons themselves.

Which safe permissions do you need to grant to UnixAdmins? Check all that apply

After the Vault Server is installed, the Microsoft Windows Firewall is now commandeered by the Vault Can the administrator change these firewall rules?

When using multiple Central Policy Managers (CPM), which one of the following Safes is shared by all CPMs?

If a password is changed manually on a server, bypassing the CPM, how would you configure the account so

that the CPM could resume management automatically?

When working with the CyberArk High Availability Cluster, which services are running on the passive node?

A safe was recently created by a user who is a member of the LDAP Vault Administrators group. Which of the

following users does not have access to the newly created safe by default?