Prepare With Top Rated High-quality CAU201 Dumps For Success in CAU201 Exam
CAU201 Free Certification Exam Easy to Download PDF Format 2024
How much CAU201 Exam Cost
The price of the CAU201 exam is $200 USD
CyberArk Defender (CAU201) Certification Exam is an industry-recognized certification exam that validates the skills of cybersecurity professionals in deploying, managing, and maintaining CyberArk solutions. Professionals who pass the exam demonstrate proficiency in securing privileged access, managing CyberArk components, and implementing various security measures to protect sensitive information. CAU201 exam is designed for individuals who have already gained experience in information security and are looking to advance their skills in privileged access management.
CyberArk Defender certification exam consists of 40 multiple-choice questions, and the candidate has 90 minutes to complete the exam. CAU201 exam is available in English and Japanese and can be taken at a Pearson VUE testing center or online. CyberArk recommends that candidates have at least six months of experience in implementing and managing CyberArk's solutions before taking the exam. By passing the CyberArk Defender certification exam, candidates can validate their skills and knowledge in privileged access security solutions and enhance their credibility as cybersecurity professionals.
NEW QUESTION # 53
Which report provides a list of account stored in the vault.
- A. Active Log
- B. Privileged Accounts Inventory
- C. Entitlement Report
- D. Privileged Accounts Compliance Status
Answer: A
NEW QUESTION # 54
Via Password Vault Web Access (PVWA), a user initiates a PSM connection to the target Linux machine using RemoteApp. When the client's machine makes an RDP connection to the PSM server, which user will be utilized?
- A. Credentials stored in the Vault for the target machine
- B. Shadowuser
- C. PSMConnect
- D. PSMAdminConnect
Answer: C
NEW QUESTION # 55
Which parameters can be used to harden the Credential Files (CredFiles) while using CreateCredFile Utility? (Choose three.)
- A. Time Frame
- B. Vault IP Address
- C. Operating System Type (Linux/Windows/HP-UX)
- D. Client Hostname
- E. Host IP Address
- F. Operating System Username
Answer: D,E,F
NEW QUESTION # 56
One can create exceptions to the Master Policy based on ____________________.
- A. Platforms
- B. Safes
- C. Accounts
- D. Policies
Answer: C
Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/The-Master- Policy.htm
NEW QUESTION # 57
Time of day or day of week restrictions on when password verifications can occur configured in ____________________.
- A. The Master Policy
- B. The Safe settings
- C. The Platform settings
- D. The Account Details
Answer: C
NEW QUESTION # 58
Which of these accounts onboarding methods is considered proactive?
- A. A Rest API integration with account provisioning software
- B. Detecting accounts with PTA
- C. A DNA scan
- D. Accounts Discovery
Answer: B
NEW QUESTION # 59
Which of the Following can be configured in the Master Policy? Choose all that apply.
- A. Password Reconciliation
- B. Exclusive Passwords
- C. Required Properties
- D. Ticketing Integration
- E. One Time Passwords
- F. Custom Connection Components
- G. Dual Control
- H. Password Aging Rules
Answer: A,E,G,H
NEW QUESTION # 60
Accounts Discovery allows secure connections to domain controllers.
- A. FALSE
- B. TRUE
Answer: A
Explanation:
Explanation/Reference:
NEW QUESTION # 61
You have associated a logon account to one your UNIX cool accounts in the vault. When attempting to
[b]change [/b] the root account's password the CPM will.....
- A. Log in to the system as the logon account, then change roofs password
- B. Log in to the system as root, then change root's password
- C. None of these
- D. Log in to the system as the logon account, run the su command to log in as root, and then change root's password.
Answer: D
NEW QUESTION # 62
The Vault administrator can change the Vault license by uploading the new license to the system Safe.
- A. False
- B. True
Answer: B
NEW QUESTION # 63
Target account platforms can be restricted to accounts that are stored in specific Safes using the AllowedSafes
property.
- A. FALSE
- B. TRUE
Answer: A
NEW QUESTION # 64
It is possible to control the hours of the day during which a user may long into the vault.
- A. TRUE
- B. FALSE
Answer: A
Explanation:
Explanation/Reference: https://isecurenet.net/wp-content/uploads/2016/06/user-sb-cyberark_privileged_threat_analytics-
030916-final-en-web.pdf
NEW QUESTION # 65
The vault supports Role Based Access Control.
- A. FALSE
- B. TRUE
Answer: A
Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Object-Level- Access-Control.htm
NEW QUESTION # 66
What is the primary purpose of Dual Control?
- A. Non-repudiation (individual accountability)
- B. More frequent password changes
- C. Reduced risk of credential theft
- D. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization.
Answer: D
Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Dual- Control.htm
NEW QUESTION # 67
What is the purpose of the Immediate Interval setting in a CPM policy?
- A. To control how often the CPM looks for System Initiated CPM work.
- B. To Control the maximum amount of time the CPM will wait for a password change to complete.
- C. To control how often the CPM rests between password changes.
- D. To control how often the CPM looks for User Initiated CPM work.
Answer: D
Explanation:
When the Master Policy enforces check-in/check-out exclusive access, passwords are changed when the user clicks the Release button and releases the account. This is based on the ImmediateInterval parameter in the applied platform. If the user forgets to release the account, it is automatically released and changed by the CPM after a predetermined number of minutes, defined in the MinValidityPeriod parameter specified in the platform
NEW QUESTION # 68
What is the purpose of the Immediate Interval setting in a CPM policy?
- A. To control how often the CPM looks for System Initiated CPM work.
- B. To Control the maximum amount of time the CPM will wait for a password change to complete.
- C. To control how often the CPM rests between password changes.
- D. To control how often the CPM looks for User Initiated CPM work.
Answer: D
Explanation:
Explanation
When the Master Policy enforces check-in/check-out exclusive access, passwords are changed when the user clicks the Release button and releases the account. This is based on the ImmediateInterval parameter in the applied platform. If the user forgets to release the account, it is automatically released and changed by the CPM after a predetermined number of minutes, defined in the MinValidityPeriod parameter specified in the platform
NEW QUESTION # 69
You have been asked to secure a set of shared accounts in CyberArk whose passwords will need to be used by end users. The account owner wants to be able to track who was using an account at any given moment.
Which security configuration should you recommend?
- A. Configure shared account mode on the appropriate safe.
- B. Configure both one-time passwords and exclusive access for the appropriate platform in Master Policy.
- C. Configure one-time passwords for the appropriate platform in Master Policy.
- D. Configure object level access control on the appropriate safe.
Answer: D
NEW QUESTION # 70
Which built-in report from the reports page in PVWA displays the number of days until a password is due to expire?
- A. Activity Log
- B. Privileged Accounts Inventory
- C. Privileged Accounts CPM Status
- D. Privileged Accounts Compliance Status
Answer: D
NEW QUESTION # 71
When a DR Vault Server becomes an active vault, it will automatically fail back to the original state once the Primary Vault comes back online.
- A. True, if the AllowFailback setting is set to "yes" in the dbparm.ini file
- B. True; this is the default behavior
- C. False; this is not possible
- D. True, if the AllowFailback setting is set to "yes" in the padr.ini file
Answer: C
NEW QUESTION # 72
......
Get 100% Success with Latest CyberArk Defender CAU201 Exam Dumps: https://passcertification.preppdf.com/CyberArk/CAU201-prepaway-exam-dumps.html