Black Friday Special 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bestdeal

Get Certified: Proven Methods to Pass the CyberArk CAU302 Exam

Questions 11

Within the Vault each password is encrypted by

Options:

A.

The Server Key

B.

The Recovery Public Key

C.

The Recovery Private key

D.

Its own unique key.

Buy Now
Questions 12

When planning to load balance at least 2 PSM Servers in an "in-domain" deployment, is it required to move the PSMConnect and PSMAdminConnect users to the domain level?

Options:

A.

Yes. but only the PSMConnect user must be moved to the domain.

B.

No. this is the customers decision and will work with local or domain based users.

C.

Yes, both PSMConnect and PSMAdminConnect users should be moved to the domain

D.

No. both accounts must be left as local accounts.

Buy Now
Questions 13

Which of the following is NOT a use case for installing multiple CPMS?

Options:

A.

A single CPM cannot accommodate the total number of accounts managed

B.

Accounts are managed in multiple sites or VLANs protected by firewall

C.

Reduce network traffic across WAN links

D.

Provide load balancing capabilities when managing passwords on target devices

Buy Now
Questions 14

Accounts Discovery allows secure connections to domain controllers.

Options:

A.

TRUE.

B.

FALSE

Buy Now
Questions 15

Where do you configure in PVWA the fully-qualified domain name (FQDN) of your target email server during SMTP integration?

Options:

A.

PVWA > Platform Management > Notification Settings

B.

PVWA > Options > Notification Settings

C.

PVWA > Administration > Notification Settings

D.

PVWA > LDAP Integartion > Notification Settings

Buy Now
Questions 16

One time passwords reduce the risk of Pass the Hash vulnerabilities in Windows

Options:

A.

TRUE

B.

FALSE

Buy Now
Questions 17

Users complain they are unsuccessful attempting to authenticate to the PVWA web site. After entering their

credentials, they receive a “Timeout has expired”. You test the URL using multiple browsers and receive the

same error. The CyberArk.WebApplication.log shows the “ITACM012S Timeout has expired” log entry.

What is the next troubleshooting step you should take?

Options:

A.

Run an IISRESET on the PVWA server

B.

Check the CyberArk.WebConsole.log for errors

C.

Check network firewall rules to ensure the PVWA can communicate to the Vault over tcp_1858

D.

Check the health of the Vault Server and ensure all services are running

Buy Now
Questions 18

Which type of automatic remediation can be performed by the PTA in case of a Suspecious Password Change security event?

Options:

A.

Password Change

B.

Password Reconcilation

C.

Session Suspension

D.

Session Terminiation

Buy Now
Questions 19

When accessing the Vault via PVWA, is it possible, is it possible to configure multiple Dual Authentication Methods?

Options:

A.

Yes, all authentication methods will be configured to use the Vault integrated authentication flow.

B.

No, dual authentication methods are not supported.

C.

Yes, authentication methods will be configured to use the combination of IIS and Vault integrated authentication flow.

D.

Yes, all authentication methods will be configured to use the IIS integrated authentication flow.

Buy Now
Questions 20

PTA can automatically suspend sessions in case of suspicious activities detected in a privileged session, only if the session is made via the CyberArk PSM.

Options:

A.

True

B.

False, the PTA can suspend sessions whether the session is made via the PSM or not

Buy Now