• Home
  • Articles
  • Reliable Defender - Sentry (Combined) CAU302 Dumps PDF Dec 03, 2021 Recently Updated Questions [Q84-Q100]

Reliable Defender - Sentry (Combined) CAU302 Dumps PDF Dec 03, 2021 Recently Updated Questions [Q84-Q100]

Share

Reliable Defender - Sentry (Combined) CAU302 Dumps PDF Dec 03, 2021 Recently Updated Questions

Pass Your  CyberArk CAU302 Exam with Correct 230 Questions and Answers


Understanding functional and technical aspects of PSM Deployment

The following will be discussed in the CAU-302 dumps:

  • Calculate how much storage should be available to the PSM(s) for PSM recordings
  • Properly harden a PSM Server
  • Complete a 1st PSM Installation
  • Prepare a Windows Server for PSM Installation
  • Calculate how much storage should be available to the vault for PSM recordings
  • Complete an additional PSM Installation
  • Determine how many PSMs should be in a given environment and their placement in the network
  • Complete an HTML5 Gateway Installation
  • Explain how a PSM might be load balanced
  • Prepare a UNIX Server for HTML5 Gateway Installation

How much CAU302 Exam Cost

The price of the CAU302 exam is $200 USD.

 

NEW QUESTION 84
Which of the Following can be configured in the Master Policy? Choose all that apply

  • A. Ticketing Integration
  • B. Password Aging Rules
    https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/11.4/en/Content/PASIMP/Working-with-Master-Policy-Rules.htm
  • C. Password Reconciliation
  • D. One Time Passwords
  • E. Dual Control
  • F. Required Properties
  • G. Custom Connection Components
  • H. Exclusive Passwords

Answer: B,D,E,H

 

NEW QUESTION 85
PSM requires the Remote Desktop Session Host role service.

  • A. TRUE
  • B. FALSE

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 86
Which of the following statements are NOT true when enabling PSM recording for a target Windows
server? Choose all that apply.

  • A. PSMConnect must be added as a local user on the target server.
  • B. The PSM software must be installed on the target server.
  • C. RDP must be enabled on the target server.
  • D. PSM must be enabled in the Master Policy (either directly, or through exception).

Answer: B

 

NEW QUESTION 87
In accordance with best practice, SSH access is denied for root accounts on UNIX/LINUX systems. What is the BEST way to allow Central Policy Manager (CPM) to manage root accounts?

  • A. Create a privileged account on the target server. Allow this account the ability to SSH directly from the CPM machine. Configure this account as the Reconcile account of the target server's root account.
  • B. Create a non-privileged account on the target server. Allow this account the ability to SSH directly from the CPM machine. Configure this account as the Logon account of the target server's root account.
  • C. Configure the CPM to allow SSH logins.
  • D. Configure the Unix system to allow SSH logins.

Answer: B

 

NEW QUESTION 88
Which of the Following can be configured in the Master Policy? Choose all that apply.

  • A. Ticketing Integration
  • B. Password Reconciliation
  • C. One Time Passwords
  • D. Custom Connection Components
  • E. Dual Control
  • F. Required Properties
  • G. Exclusive Passwords
  • H. Password Aging Rules

Answer: C,D,E,H

 

NEW QUESTION 89
In the vault each password is encrypted with a unique encryption key.

  • A. TRUE
  • B. FALSE

Answer: A

Explanation:
Explanation/Reference:

 

NEW QUESTION 90
A SIEM integration allows you to forward ITALOG records to a monitoring solution.

  • A. TRUE
  • B. FALSE

Answer: A

 

NEW QUESTION 91
During the process of installing the Central Policy Manager (CPM), the Vault administrator will be asked to provide the credentials for an administrative user in the Vault. For which purpose are these credentials used?

  • A. The credentials will be used later by the CPM to update passwords in the Vault.
  • B. The credentials are used by the installer to authenticate to the Vault and create the Central Policy Manager (CPM) environment (Safes, users, etc.).
  • C. The credentials are used by the installer to register the CPM in the CyberArk database.
  • D. The credentials will be used later by the CPM to retrieve passwords from the Vault.

Answer: B

 

NEW QUESTION 92
Which credentials does CyberArk use when managing a target account?

  • A. A Domain Administrator account created for this purpose
  • B. The credentials of the target account
  • C. Those of the service account for the CyberArk Password Manager serviceD18912E1457D5D1DDCBD40AB3BF70D5D
  • D. An account assigned by the Master Policy

Answer: C

 

NEW QUESTION 93
Access Control to passwords is implemented by ________________.

  • A. Platform Settings
  • B. Safe Authorizations
  • C. Virtual Authorizations
  • D. Master Policy

Answer: B

 

NEW QUESTION 94
Match the log file name with the CyberArk Component that generates the log.

Answer:

Explanation:

 

NEW QUESTION 95
For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure access a password without approval

  • A. On the safe in which the account is stored grant the group the 'Access safe without confirmation' authorization
  • B. Create an exception to the Master Policy to exclude the group from the workflow process.
  • C. On the safe in which the account is stored grant the group the 'Access safe without audit' authorization.
  • D. Edit the master policy rule and modify the advanced 'Access safe without approval' rule to include the group.

Answer: A

 

NEW QUESTION 96
The vault supports Subnet Based Access Control.

  • A. TRUE
  • B. FALSE

Answer: A

 

NEW QUESTION 97
What values are acceptable in the address field on the Accounts Details?

  • A. It must be a Fully Qualified Domain Name (FQDN)
  • B. It must be NetBIOS name
  • C. It must be an IP address
  • D. Any name that is resolvable on the Central Policy Manager (CPM) server is acceptable

Answer: D

 

NEW QUESTION 98
What is the purpose of the PrivateArk Database service?

  • A. Executes password changes.
  • B. Communicates with components.
  • C. Maintains Vault metadata.
  • D. Sends email alerts from the vault.

Answer: D

Explanation:
Explanation/Reference:

 

NEW QUESTION 99
When a DR vault server becomes an active vault, it will automatically fail bacK to the original state once the primary vault comes back online.

  • A. True, if the 'AllowFailback' setting is set to yes in the dbparm ini file.
  • B. True, this is the default behavior
  • C. False, this is not possible
  • D. True, if the 'AllowFailback' setting is set to yes in the PADR.ini file.

Answer: D

 

NEW QUESTION 100
......

Latest 2021 Realistic Verified CAU302 Dumps: https://www.torrentvalid.com/CAU302-valid-braindumps-torrent.html

Related Articles

more
CyberArk CAU302 Certification Practice Exam

Our Latest and Valid Exam Torrent is a comprehensive self-study tool for preparing for the coming Actual Test. Just Download the Update Free Valid Demo for a try. Your pressure will be relieved and the actual test is Easy to Pass.

Contact Us

Our Working Time: ( GMT 0:00-15:00 )   From Monday to Saturday

Contact now

Copyright © 2026 TorrentValid NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy