• Home
  • Articles
  • CAU201 Dumps 2024 - New CyberArk CAU201 Exam Questions [Q36-Q60]

CAU201 Dumps 2024 - New CyberArk CAU201 Exam Questions [Q36-Q60]

Share

CAU201 Dumps 2024 - New CyberArk CAU201 Exam Questions

Free CAU201 Braindumps Download Updated on Feb 22, 2024 with 179 Questions


CyberArk Defender certification exam is ideal for cybersecurity professionals and IT administrators who are responsible for securing their organization’s privileged accounts and credentials. CAU201 exam covers a wide range of topics, including CyberArk architecture, installation and configuration of CyberArk components, management of privileged accounts, and integration with other security solutions. To become certified, candidates must demonstrate their proficiency in these areas by passing a rigorous exam that tests their knowledge and skills.


CyberArk Defender (CAU201) exam is a certification test that measures one's knowledge and skills in implementing and managing CyberArk's privileged account security solutions. CAU201 exam is designed for security professionals who work with CyberArk products and want to validate their skills in securing privileged accounts and protecting sensitive data from cyber-attacks.


CyberArk CAU201 (CyberArk Defender) Exam is a valuable certification for individuals seeking to demonstrate their expertise in CyberArk technology and their ability to defend against cyber threats. It provides a comprehensive assessment of an individual's knowledge and skills in privileged access management and validates their ability to effectively implement and manage CyberArk solutions.

 

NEW QUESTION # 36
It is possible to leverage DNA to provide discovery functions that are not available with auto-detection.

  • A. TRUE
  • B. FALS

Answer: A


NEW QUESTION # 37
What is the maximum number of levels of authorization you can set up in Dual Control?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C


NEW QUESTION # 38
Which of these accounts onboarding methods is considered proactive?

  • A. Accounts Discovery
  • B. Detecting accounts with PTA
  • C. A DNA scan
  • D. A Rest API integration with account provisioning software

Answer: B


NEW QUESTION # 39
How does the Vault administrator apply a new license file?

  • A. Upload the license.xml file to the system Safe
  • B. Upload the license.xml file to the Vault Internal Safe
  • C. Upload the license.xml file to the Vault Internal Safe and restart the PrivateArk Server service
  • D. Upload the license.xml file to the system Safe and restart the PrivateArk Server service

Answer: A


NEW QUESTION # 40
Which of the following PTA detections are included in the Core PAS offering?

  • A. Golden Ticket
  • B. Suspected Credential Theft
  • C. Over-Pass-The Hash
  • D. Unmanaged Privileged Access

Answer: D

Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PTA/What-Does-PTA- Detect.htm


NEW QUESTION # 41
Which one the following reports is NOT generated by using the PVWA?

  • A. Convince Status
  • B. Application Inventory
  • C. Accounts Inventory
  • D. Sales List

Answer: A


NEW QUESTION # 42
An auditor needs to login to the PSM in order to live monitor an active session. Which user ID is used to establish the RDP connection to the PSM server?

  • A. PSMGwUser
  • B. PSMConnect
  • C. PSMAdminConnect
  • D. PSMMaster

Answer: C


NEW QUESTION # 43
Users are unable to launch Web Type Connection components from the PSM server. Your manager asked you to open the case with CyberArk Support.
Which logs will help the CyberArk Support Team debug the issue? (Choose three.)

  • A. <Session_ID>.Component.log
  • B. PSMTrace.log
  • C. PSMConsole.log
  • D. PSMDebug.log
  • E. PMconsole.log
  • F. ITAlog.log

Answer: B,D,F


NEW QUESTION # 44
A user is receiving the error message "ITATS006E Station is suspended for User jsmith" when attempting to sign into the Password Vault Web Access (PVWA). Which utility would a Vault administrator use to correct this problem?

  • A. PrivateArk
  • B. cavaultmanager.exe
  • C. createcredfile.exe
  • D. PVWA

Answer: A


NEW QUESTION # 45
It is possible to restrict the time of day, or day of week that a [b]verify[/b] process can occur

  • A. TRUE
  • B. FALS

Answer: B


NEW QUESTION # 46
What is the primary purpose of One Time Passwords?

  • A. Reduced risk of credential theft
  • B. Non-repudiation (individual accountability)
  • C. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization.
  • D. More frequent password changes

Answer: A

Explanation:
Explanation/Reference:


NEW QUESTION # 47
Which of the following components can be used to create a tape backup of the Vault?

  • A. Replicate
  • B. Disaster Recovery
  • C. High Availability
  • D. Distributed Vaults

Answer: A


NEW QUESTION # 48
Which utilities could you use to change debugging levels on the vault without having to restart the vault. Select
all that apply.

  • A. PrivateArk Server Central Administration
  • B. PAR Agent
  • C. Edit DBParm.ini in a text editor.
  • D. Setup.exe

Answer: B


NEW QUESTION # 49
Which CyberArk group does a user need to be part of to view recordings or live monitor sessions?

  • A. Vault Admin
  • B. Auditors
  • C. DR Users
  • D. Operators

Answer: B


NEW QUESTION # 50
PSM captures a record of each command that was executed in Unix.

  • A. TRIE
  • B. FALSE

Answer: A


NEW QUESTION # 51
Target account platforms can be restricted to accounts that are stored in specific Safes using the AllowedSafes property.

  • A. FALSE
  • B. TRUE

Answer: A


NEW QUESTION # 52
What is the purpose of the PrivateArk Database service?

  • A. Executes password changes
  • B. Sends email alerts from the Vault
  • C. Communicates with components
  • D. Maintains Vault metadata

Answer: D


NEW QUESTION # 53
All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of OperationsManagers. The members of OperationsManagers never need to be able to use the show, copy or connect buttons themselves.
Which safe permissions do you need to grant to OperationsStaff? Check all that apply.

  • A. List Accounts
  • B. Use Accounts
  • C. Authorize Password Requests
  • D. Retrieve Accounts
  • E. Access Safe without Authorization

Answer: B

Explanation:
Explanation/Reference:


NEW QUESTION # 54
The System safe allows access to the Vault configuration files.

  • A. TRUE
  • B. FALS

Answer: A


NEW QUESTION # 55
Within the Vault each password is encrypted by:

  • A. the recovery private key
  • B. the recovery public key
  • C. its own unique key
  • D. the server key

Answer: C


NEW QUESTION # 56
All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the
accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and
connect buttons on those passwords at any time without confirmation. The members of the AD group
OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an
emergency basis, but only with the approval of a member of OperationsManagers. The members of
OperationsManagers never need to be able to use the show, copy or connect buttons themselves.
Which safe permissions do you need to grant to OperationsStaff? Check all that apply.

  • A. List Accounts
  • B. Use Accounts
  • C. Authorize Password Requests
  • D. Retrieve Accounts
  • E. Access Safe without Authorization

Answer: B

Explanation:
Explanation/Reference:


NEW QUESTION # 57
Which of the following logs contains information about errors related to PTA?

  • A. diamond.log
  • B. WebApplication.log
  • C. ITAlog.log
  • D. pm_error.log

Answer: A


NEW QUESTION # 58
Which one the following reports is NOT generated by using the PVWA?

  • A. Application Inventory
  • B. Accounts Inventory
  • C. Sales List
  • D. Convince Status

Answer: C


NEW QUESTION # 59
In accordance with best practice, SSH access is denied for root accounts on UNIXLINUX system.
What is the BEST way to allow CPM to manage root accounts?

  • A. Configure the CPM to allow SSH logins.
  • B. Configure the Unix system to allow SSH logins.
  • C. Create a privileged account on the target server. Allow this account the ability to SSH directly from the CPM machine. Configure this account of the target server's root account.
  • D. Create a non-privileged account on the target server. Allow this account the ability to SSH directly from the CPM machine. Configure this account as the Logon account of the target server's root account.

Answer: D


NEW QUESTION # 60
......

CyberArk CAU201 Exam Practice Test Questions: https://buildazure.actualvce.com/CyberArk/CAU201-valid-vce-dumps.html

Related Articles

more
CyberArk CAU201 Certification Practice Exam