Which onboarding method is used to integrate CyberArk with the accounts provisioning process?
A. Accounts Discovery
B. Auto Detection
C. Onboarding RestAPI functions
D. PTA rules
In a Distributed Vaults environment, which of the following components will NOT be communicating with the Satellite Vaults?
A. AAM Credential Provider (previously known as AIM Credential Provider)
B. ExportVaultData utility
C. PAReplicate utility
D. Central Policy Manager
When managing SSH keys, the Central Policy Manager (CPM) stores the private key __________.
A. in the Vault
B. on the target server
C. in the Vault and on the target server
D. nowhere because the private key can always be generated from the public key
For a Safe with object level access control enabled the Vault administrator is able to turn off object level access control when it no longer needed on the Safe.
A. True
B. False
Which user is automatically added to all Safes and cannot be removed?
A. Auditor
B. Administrator
C. Master
D. Operator
Which is the purpose of the interval setting in a Central Policy Manager (CPM) policy?
A. To control how often the CPM looks for system-initiated CPM work.
B. To control how often the CPM looks for user-initiated CPM work.
C. To control how long the CPM rests between password changes.
D. To control the maximum amount of time the CPM will wait for a password change to complete.
After the Vault server is installed, the Microsoft Windows firewall is now commandeered by the Vault.
Can the administrator change these firewall rules?
A. Yes, but the administrator can only modify the firewall rules by editing the dbparm.ini file and the restarting the Vault.
B. Yes, the administrator can still modify firewall rules via the Windows firewall interface.
C. No, the Vault does not permit any changes to the firewall due to security requirements.
D. Yes, but the administrator can only modify the firewall rules by editing the FirewallRules.ini file and the restarting the Vault.
If a user is a member of more than one group that has authorizations on a Safe, by default that user is granted __________.
A. the Vault will not allow this situation to occur
B. only those permissions that exist on the group added to the Safe first
C. only those permissions that exist in all groups to which the user belongs
D. the cumulative permissions of all the groups to which that user belongs
Which of the following is NOT a use case for installing multiple Central Policy Managers (CPM)?
A. A single CPM cannot accommodate the total number of accounts managed.
B. Accounts are managed in multiple sites or VLANs protected by firewall.
C. Reduce network traffic across WAN links.
D. Provide load-balancing capabilities when managing passwords on target devices.
Time of day or day of week restrictions on when password reconciliations can occur are configured in the __________.
A. Master Policy
B. platform settings
C. Safe settings
D. account details