An Auditor needs to login to the PSM in order to live monitor an active session. Which User ID is used to establish the RDP connection to the PSM server?
What is the purpose of a password group?
When Dual Control is enabled a user must first submit a request in the Password Vault Web Access (PVWA) and receive approval before being able to launch a secure connection via PSM for Windows (previously known as RDP Proxy).
PSM generates recordings on the Vault server in real time.
Multiple PVWA servers can be load balanced.
Which file is used to configure new firewall rules on the Vault?
It is possible to control the hours of the day during which a safe may be used.
The DR module allows an integration with Enterprise Backup software
It is impossible to override Master Policy settings for a Platform
The vault does not support Role Based Access Control
A Reconcile Account can be specified in the Master Policy.
What is the primary purpose of Dual Control?
When managing SSH keys. CPM automatically pushes the Public Key to the target system.
CyberArk creates exceptions for Data Execution Prevention (DEP) on selected executable files. This is done as part of installing which of the following components?
One of your users is receiving the error message “ITATS006E Station is suspended for User jsmith” when
attempting to sign in to the pvwa. Which utility would you use to correct this problem?
An SMTP integration allows you to forward audit records from the vault to the SIEM.
The ACME Company has been a CyberArk customer for many years. ACME Management has asked you to perform a “Health Check" review of the CyberArk deployment. During your analysis you discover that the PSM Component server is fully functional. The RDP SSL certificate is self-signed and the CyberArk Privileged Session Management Service is running under the Local Service. SSL 3.0 is enabled in the Registry.
Time of day of week restrictions on when password changes can occur are configured in ________________.
Which of the following options is not set in the Master Policy?
The Vault Internal safe contains the configuration for an LDAP integration
Users complain they are unsuccessful attempting to authenticate to the PVWA web site. After entering their
credentials, they receive a “Timeout has expired”. You test the URL using multiple browsers and receive the
same error. The CyberArk.WebApplication.log shows the “ITACM012S Timeout has expired” log entry.
What is the next troubleshooting step you should take?
What is the purpose of EVD?
What is the PRIMARY reason for installing more than 1 active CPM?
Which file would you modify to configure your Vault Server to forward Activity Logs to a SIEM or SYSLOG server?
Which combination of safe member permissions will allow End Users to log in to a remote machine
transparently but NOT show or copy the password?
When planning to load balance at least 2 PSM Servers in an "in-domain" deployment, is it required to move the PSMConnect and PSMAdminConnect users to the domain level?
The Vault does not support dual factor authentication.
Which type of automatic remediation can be performed by the PTA in case of a suspected credential theft security event?
Which file is used to configure the ENE service?
After the Vault server is installed, the Microsoft Windows firewall is now commandeered by the Vault. Can the administrator change these firewall rules?
What is the process to remove object level access control from a Safe?
Which file does the Vault administrator need to edit in order to configure the integration of the Vault with the radius server?
A logon account can be specified in the platform settings.
When working with the CyberArk Cluster, which service is considered Optional (i.e., failure of the service does
not mandate a failover)?
Which file is used to integrate the Vault with the RADIUS server?