[Apr 24, 2023] CAU201 Questions Truly Valid For Your CyberArk Exam!
CAU201 Actual Questions - Instant Download Tests Free Updated Today!
The benefit in Obtaining the CAU201 Exam Certification
The Defender Certification shows off skills and improves career for:
- IT Personnel whoever can make primary configuration settings to the system
- IT professional who are working with the CyberArk PAS Solution on a regular basis
- Whoever is able to open a support ticket with CyberArk 2nd level assistance
- IT Personnel whoever can afford 1st level aid for the products
Certification Path
Valid Trustee Certification is prerequisite for this exam. Completion will give CyberArk Defender status.
NEW QUESTION 46
The vault supports Role Based Access Control.
- A. FALSE
- B. TRUE
Answer: A
Explanation:
Reference https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Object-Level-Access-Control.htm
NEW QUESTION 47
If a password is changed manually on a server, bypassing the CPM, how would you configure the account so
that the CPM could resume management automatically?
- A. Associate a reconcile account and configure the platform to reconcile automatically.
- B. Associate a logon account and configure the platform to reconcile automatically.
- C. Configure the Provider to change the password to match the Vault's Password
- D. Run the correct auto detection process to rediscover the password.
Answer: A
NEW QUESTION 48
What is the purpose of the PrivateArk Database service?
- A. Communicates with components
- B. Sends email alerts from the Vault
- C. Executes password changes
- D. Maintains Vault metadata
Answer: D
NEW QUESTION 49
Match the Status of Service on a DR Vault to what is displayed when it is operating normally in Replication mode.
Answer:
Explanation:
NEW QUESTION 50
When onboarding multiple accounts from the Pending Accounts list, which associated setting must be the same across the selected accounts?
- A. CPM
- B. Connection Component
- C. Vault
- D. Platform
Answer: D
NEW QUESTION 51
As long as you are a member ofthe Vault Admins group you can grant any permission on any safe.
- A. FALS
- B. TRUE
Answer: B
NEW QUESTION 52
Your organization has a requirement to allow users to "check out passwords" and connect to targets with the same account through the PSM.
What needs to be configured in the Master policy to ensure this will happen?
- A. Enforce check-in/check-out exclusive access = active; Record and save session activity = inactive
- B. Enforce check-in/check-out exclusive access = inactive; Record and save session activity = active
- C. Enforce check-in/check-out exclusive access = active; Require privileged session monitoring and isolation = active
- D. Enforce check-in/check-out exclusive access = inactive; Require privileged session monitoring and isolation = inactive
Answer: B
NEW QUESTION 53
All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group Operations Staff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of Operations Managers never need to be able to use the show, copy or connect buttons themselves.
Which safe permission do you need to grant Operations Staff? Check all that apply.
- A. Retrieve Accounts
- B. Use Accounts
- C. Authorize Password Requests
- D. Access Safe without Authorization
Answer: C
NEW QUESTION 54
The Accounts Feed contains:
- A. Accounts that were discovered by CyberArk in the last 30 days
- B. All users added to CyberArk in the last 30 days
- C. All accounts added to the vault in the last 30 days
- D. Accounts that were discovered by CyberArk that have not yet been onboarded
Answer: A
Explanation:
Explanation
NEW QUESTION 55
Which Master Policy Setting must be active in order to have an account checked-out by one user for a pre- determined amount of time?
- A. Require dual control password access Approval
- B. Enforce one-time password access
- C. Enforce check-in/check-out exclusive access
- D. Enforce check-in/check-out exclusive access & Enforce one-time password access
Answer: C
Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PrivCloud/Latest/en/Content/Privilege%
20Cloud/privCloud-master-policy-rules.htm
NEW QUESTION 56
Which of the following PTA detections require the deployment of a Network Sensor or installing the PTA Agent on the domain controller?
- A. Golden Ticket
- B. Unmanaged privileged access
- C. Suspected credential theft
- D. Over-Pass-The-Hash
Answer: A
NEW QUESTION 57
A user with administrative privileges to the vault can only grant other users privileges that he himself has.
- A. FALSE
- B. TRUE
Answer: A
NEW QUESTION 58
Which parameter controls how often the CPM looks for accounts that need to be changed from recently completed Dual control requests.
- A. The CPM does not change the password under this circumstance
- B. HeadStartInterval
- C. Interval
- D. ImmediateInterval
Answer: C
NEW QUESTION 59
Vault admins must manually add the auditors group to newly created safes so auditors will have sufficient access to run reports.
- A. FALSE
- B. TRUE
Answer: A
NEW QUESTION 60
You are logging into CyberArk as the Master user to recover an orphaned safe.
Which items are required to log in as Master?
- A. Master CD, Master Password, console access to the Vault server, Private Ark Client
- B. Operator CD, Master Password, console access to the Vault server, Recover.exe
- C. Master CD, Master Password, console access to the PVWA server, Recover.exe
- D. Operator CD, Master Password, console access to the PVWA server, PVWA access
Answer: A
NEW QUESTION 61
All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. Themembers of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group Operations Staff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of Operations Managers never need to be able to use the show, copy or connect buttons themselves.
Which safe permission do you need to grant Operations Staff? Check all that apply.
- A. Authorize Password Requests
- B. Use Accounts
- C. Access Safe without Authorization
- D. Retrieve Accounts
Answer: D
NEW QUESTION 62
For a safe with Object Level Access enabled you can turn off Object Level Access Control when it no longer needed on the safe.
- A. FALSE
- B. TRUE
Answer: A
NEW QUESTION 63
Which of the Following can be configured in the Master Poky? Choose all that apply.
- A. Required Properties
- B. Custom Connection Components
- C. Exclusive Passwords
- D. Password Reconciliation
- E. One Time Passwords
- F. Password Aging Rules
- G. Dual Control
- H. Ticketing Integration
Answer: C,E,F,G
NEW QUESTION 64
Which of the following files must be created or configured in order to run Password Upload Utility? Select all that apply.
- A. conf.ini
- B. A comma delimited upload file
- C. PACli.ini
- D. Vault.ini
Answer: A
Explanation:
Explanation/Reference: https://www.reddit.com/r/CyberARk/comments/84gfsb/password_upload_utility_error/
NEW QUESTION 65
......
How to book the CAU201 Exam
These are following steps for registering the CyberArk CAU201 exam.
- Step 1: Visit to Pearson VUE Exam Registration
- Step 2: Signup/Login to Pearson VUE account
- Step 3: Search for CyberArk CAU201 Exam Certifications Exam
- Step 4: Select Date, time and confirm with payment method
Get instant access of 100% real exam questions with verified answers: https://www.itcertmagic.com/CyberArk/real-CAU201-exam-prep-dumps.html
Exam Dumps for the Preparation of Latest CAU201 Exam Questions: https://drive.google.com/open?id=1SoArhS4BoLNCWgiZ6uelxxsF5m-2dZoX