• Home
  • Articles
  • [Jan 22, 2024] Get Unlimited Access to PAM-CDE-RECERT Certification Exam Cert Guide [Q76-Q97]

[Jan 22, 2024] Get Unlimited Access to PAM-CDE-RECERT Certification Exam Cert Guide [Q76-Q97]

Share

[Jan 22, 2024] Get Unlimited Access to PAM-CDE-RECERT Certification Exam Cert Guide

Reliable Study Materials for PAM-CDE-RECERT Exam Success For Sure

NEW QUESTION # 76
Your organization has a requirement to allow users to "check out passwords" and connect to targets with the same account through the PSM.
What needs to be configured in the Master policy to ensure this will happen?

  • A. Enforce check-in/check-out exclusive access = active; Require privileged session monitoring and isolation = active
  • B. Enforce check-in/check-out exclusive access = inactive; Record and save session activity = active
  • C. Enforce check-in/check-out exclusive access = active; Record and save session activity = inactive
  • D. Enforce check-in/check-out exclusive access = inactive; Require privileged session monitoring and isolation = inactive

Answer: A


NEW QUESTION # 77
Which of the following is considered a prerequisite for installing PSM?

  • A. IIS web services role
  • B. Provider
  • C. HTML5 Gateway
  • D. Remote Desktop Services

Answer: D


NEW QUESTION # 78
What is a prerequisite step before CyberArk can be configured to support RADIUS authentication?

  • A. Log on to the PrivateArk Client, display the user properties of the user to configure, run the Authentication method drop-down list, and select RADIUS authentication.
  • B. Navigate to /Server/Conf and open DBParms.ini and set the RadiusServersInfo parameter.
  • C. In the RADIUS server, define the CyberArk Vault as RADIUS client/agent.
  • D. In the Vault Installation folder, run CAVaultManger as Administrator with the SecureSecretFiles command.

Answer: C


NEW QUESTION # 79
The Privileged Access Management solution provides an out-of-the-box target platform to manage SSH keys, called UNIX Via SSH Keys.
How are these keys managed?

  • A. CyberArk does not store Public or Private keys and instead uses a reconcile account to create keys on demand.
  • B. CyberArk stores Public keys in the Vault and updates Private keys on target systems.
  • C. CyberArk stores both Private and Public keys and can update target systems with either key.
  • D. CyberArk stores Private keys in the Vault and updates Public keys on target systems.

Answer: D


NEW QUESTION # 80
In the Private Ark client, how do you add an LDAP group to a CyberArk group?

  • A. Select Update on the LDAP Group, and then click Add > LDAP Group
  • B. Select Member Of on the LDAP group, and then click Add > LDAP Group
  • C. Select Update on the CyberArk group, and then click Add > LDAP Group
  • D. Select Member Of on the CyberArk group, and then click Add > LDAP Group

Answer: C


NEW QUESTION # 81
Which built-in report from the reports page in PVWA displays the number of days until a password is due to expire?

  • A. Privileged Accounts Compliance Status
  • B. Privileged Accounts Inventory
  • C. Activity Log
  • D. Privileged Accounts CPM Status

Answer: A


NEW QUESTION # 82
When creating an onboarding rule, it will be executed upon __________.

  • A. all accounts in the pending accounts list and any future accounts discovered by a discovery process
  • B. all accounts in the pending accounts list
  • C. any future accounts discovered by a discovery process

Answer: C


NEW QUESTION # 83
When working with the CyberArk High Availability Cluster, which services are running on the passive node?

  • A. Cluster Vault Manager
  • B. Cluster Vault Manager and Remote Control Agent
  • C. Cluster Vault Manager, PrivateArk Database and Remote Control Agent
  • D. Cluster Vault Manager and PrivateArk Database

Answer: A


NEW QUESTION # 84
Which of the following options is not set in the Master Policy?

  • A. Password Complexity
  • B. Password Expiration Time
  • C. The use of "One-Time-Passwords"
  • D. Enabling and Disabling of the Connection Through the PSM

Answer: A


NEW QUESTION # 85
The password upload utility can be used to create Safes.

  • A. False
  • B. True

Answer: B


NEW QUESTION # 86
One can create exceptions to the Master Policy based on ____________________.

  • A. Platforms
  • B. Accounts
  • C. Policies
  • D. Safes

Answer: B


NEW QUESTION # 87
DRAG DROP
In version 10.7 the correct order of installation for components changed. Make the necessary corrections to the list below to show the new installation order.

Answer:

Explanation:


NEW QUESTION # 88
You are logging into CyberArk as the Master user to recover an orphaned safe.
Which items are required to log in as Master?

  • A. Master CD, Master Password, console access to the Vault server, Private Ark Client
  • B. Master CD, Master Password, console access to the PVWA server, Recover.exe
  • C. Operator CD, Master Password, console access to the Vault server, Recover.exe
  • D. Operator CD, Master Password, console access to the PVWA server, PVWA access

Answer: A


NEW QUESTION # 89
According to the DEFAULT Web Options settings, which group grants access to the REPORTS page?

  • A. PVWAMonitor
  • B. Auditors
  • C. Vault Admins
  • D. PVWAUsers

Answer: A


NEW QUESTION # 90
Which of the following statements are NOT true when enabling PSM recording for a target Windows server? (Choose all that apply)

  • A. PSM must be enabled in the Master Policy (either directly, or through exception)
  • B. RDP must be enabled on the target server
  • C. The PSM software must be instated on the target server
  • D. PSMConnect must be added as a local user on the target server

Answer: A,C


NEW QUESTION # 91
Your organization requires all passwords be rotated every 90 days.
Where can you set this regulatory requirement?

  • A. PVWAConfig.xml
  • B. Safe Templates
  • C. Platform Configuration
  • D. Master Policy

Answer: D


NEW QUESTION # 92
Which SMTP address can be set on the Notification Settings page to re-invoke the ENE setup wizard after the initial Vault installation.

  • A. 1.1.1.1
  • B. 8.8.8.8
  • C. 255.255.255.255
  • D. 192.168.1.1

Answer: A


NEW QUESTION # 93
Which file is used to configure the ENE service?

  • A. ENE.ini
  • B. ENEConfig.ini
  • C. PARagent.ini
  • D. dbparm.ini

Answer: A


NEW QUESTION # 94
An auditor initiates a live monitoring session to PSM server to view an ongoing live session. When the auditor's machine makes an RDP connection the PSM server, which user will be used?

  • A. PSMAdminConnect
  • B. Shadowuser
  • C. Credentials stored in the Vault for the target machine
  • D. PSMConnect

Answer: A


NEW QUESTION # 95
The vault supports Role Based Access Control.

  • A. TRUE
  • B. FALSE

Answer: B

Explanation:
Reference https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Object-Level-Access-Control.htm


NEW QUESTION # 96
What is the proper way to allow the Vault to resolve host names?

  • A. The Vault cannot resolve host names due to security standards.
  • B. Define the local hosts file.
  • C. Define a DNS server.
  • D. Define a WINS server.

Answer: C


NEW QUESTION # 97
......

New CyberArk PAM-CDE-RECERT Dumps & Questions: https://certtree.2pass4sure.com/CyberArk-CDE-Recertification/PAM-CDE-RECERT-actual-exam-braindumps.html

Related Articles

more
CyberArk PAM-CDE-RECERT Certification Practice Exam