CyberArk Defender and Sentry Level
__________ Report provides information about all the accounts in the System.
- answer-Privileged Accounts Inventory Report
__________ Report is for each user and shows Accounts and Safes what they
can access in the System. - answer-Entitlement Report
File for:
- main configuration file of the Vault.
- any change requests requires a restart of the Vault Service. - answer-
DBParm.ini
PTA Statistics Log Name - answer-Statistics.log
Within the Vault, each password is encrypted by? - answer-Its own unique
key
Good use case for Disaster Recovery module - answer-Offsite replication is
required
What would be a good use case for the Replicate Module? - answer-
Integration with an Enterprise Backup Solution is required
PTA Utility Log Name - answer-Diamond-Utility.log
What account automatically onboards unmanaged privileged account? -
answer-PTAUser
Provides information about all the privileged accounts in the system required
permissions:
- list accounts
- view safe members - answer-Privileged Accounts Inventory Report
The Vault Internal Safe contains all of the configuration for the Vault? -
answer-False
Who is in the only user that can edit the Directory Mappings? - answer-Built
in Administrator
What is Applocker used for? - answer-Limits the applications that may be raw
on the PSM machine
Can you set the Cluster Vault Debug Level Dynamically without restarting
the Cluster Vault? - answer-Yes
,Can the PVWA be load balanced? - answer-Yes
What happens when multiple discoveries of accounts are on the same
domain accounts? - answer-Multiple discoveries will synchronize all the
shared discovered accounts
Purpose and permissions needed for the Activity Log Report - answer-- All
audit information in the Vault
- View audit and audit users
File for:
- configure Remote Control Agent in the Vault
- SNTP Configuration - answer-PARagent.ini
What is the purpose of the Immediate Interval setting in the CPM Policy? -
answer-To control how often the CPM looks for User Initiated CPM work
At what point is a transparent user provisioned in the Vault? - answer-The
first time the user logs in
HA, DR, and Replication are mutually exclusive and cannot be used in the
same environment. - answer-False
Password Upload Utility must be installed on the CPM server. - answer-False
File for:
- Configuring Password Policy for users of the Vault - answer-Passparm.ini
Which report could show all audit data in the Vault? - answer-Activity Log
What is the primary reason for installing more than one active CPM? -
answer-Installing CPMS in multiple sites prevents complex rules to manage
devices at remote sites
Through which component do you configure the CPM? - answer-PVWA
Through which component do you manage internal CyberArk users? -
answer-PrivateArk Client
Which file would you modify to configure your Vault server to forward
Activity Logs to a a SIEM or SYSLOG Server? - answer-DBParm.ini
Which file configures password policy for Vault Users? - answer-Passparm.ini
, What does the Export Vault Data Utility do? - answer-Exports the data from
the Vault to .txt or .csu files
What file would you edit to adjust the LDAP Synchronization Parameters? -
answer-DBParm.ini
__________ Report provides information about the Application ID's in the
System. - answer-Application Inventory or AIM Report
Domain Accounts are categorized as either __________ or __________? -
answer-Privileged or non-privileged
Vault authorizations may be granted to __________ - answer-LDAP Users and
Vault Users
What are the two types of linked accounts? - answer-Logon and reconcile
How do you install the Password Upload Utility? - answer-This doesn't require
installation, the files needed to run are in the folder
You can successfully manage passwords in the alpha.cyberark.com domain
but you can not manage passwords in beta.cyberark.com, You receive
"Network path not found." What should you check first? - answer-That the
CPM can successfully resolve addresses in the beta.cyberark.com
Users may be created in the PVWA. - answer-False, accounts may be
manually onboarded but users must be created in PrivateArk
Safe permissions may be applied to users and groups. - answer-True
Can the PVWA be automatically load balanced? - answer-No
A SIEM Integration allows you to forward ITALog records to a monitoring
solution. - answer-False
A logon account can be specified in the Master Policy. - answer-False
__________ Report is used to show the CPM status for each account. - answer-
Privileged Accounts Compliance Status Report
The Vault Internal Safe contains all of the configurations for the Vault. -
answer-False
How many different reports may be generated by components? - answer-10
__________ Report provides information about all the accounts in the System.
- answer-Privileged Accounts Inventory Report
__________ Report is for each user and shows Accounts and Safes what they
can access in the System. - answer-Entitlement Report
File for:
- main configuration file of the Vault.
- any change requests requires a restart of the Vault Service. - answer-
DBParm.ini
PTA Statistics Log Name - answer-Statistics.log
Within the Vault, each password is encrypted by? - answer-Its own unique
key
Good use case for Disaster Recovery module - answer-Offsite replication is
required
What would be a good use case for the Replicate Module? - answer-
Integration with an Enterprise Backup Solution is required
PTA Utility Log Name - answer-Diamond-Utility.log
What account automatically onboards unmanaged privileged account? -
answer-PTAUser
Provides information about all the privileged accounts in the system required
permissions:
- list accounts
- view safe members - answer-Privileged Accounts Inventory Report
The Vault Internal Safe contains all of the configuration for the Vault? -
answer-False
Who is in the only user that can edit the Directory Mappings? - answer-Built
in Administrator
What is Applocker used for? - answer-Limits the applications that may be raw
on the PSM machine
Can you set the Cluster Vault Debug Level Dynamically without restarting
the Cluster Vault? - answer-Yes
,Can the PVWA be load balanced? - answer-Yes
What happens when multiple discoveries of accounts are on the same
domain accounts? - answer-Multiple discoveries will synchronize all the
shared discovered accounts
Purpose and permissions needed for the Activity Log Report - answer-- All
audit information in the Vault
- View audit and audit users
File for:
- configure Remote Control Agent in the Vault
- SNTP Configuration - answer-PARagent.ini
What is the purpose of the Immediate Interval setting in the CPM Policy? -
answer-To control how often the CPM looks for User Initiated CPM work
At what point is a transparent user provisioned in the Vault? - answer-The
first time the user logs in
HA, DR, and Replication are mutually exclusive and cannot be used in the
same environment. - answer-False
Password Upload Utility must be installed on the CPM server. - answer-False
File for:
- Configuring Password Policy for users of the Vault - answer-Passparm.ini
Which report could show all audit data in the Vault? - answer-Activity Log
What is the primary reason for installing more than one active CPM? -
answer-Installing CPMS in multiple sites prevents complex rules to manage
devices at remote sites
Through which component do you configure the CPM? - answer-PVWA
Through which component do you manage internal CyberArk users? -
answer-PrivateArk Client
Which file would you modify to configure your Vault server to forward
Activity Logs to a a SIEM or SYSLOG Server? - answer-DBParm.ini
Which file configures password policy for Vault Users? - answer-Passparm.ini
, What does the Export Vault Data Utility do? - answer-Exports the data from
the Vault to .txt or .csu files
What file would you edit to adjust the LDAP Synchronization Parameters? -
answer-DBParm.ini
__________ Report provides information about the Application ID's in the
System. - answer-Application Inventory or AIM Report
Domain Accounts are categorized as either __________ or __________? -
answer-Privileged or non-privileged
Vault authorizations may be granted to __________ - answer-LDAP Users and
Vault Users
What are the two types of linked accounts? - answer-Logon and reconcile
How do you install the Password Upload Utility? - answer-This doesn't require
installation, the files needed to run are in the folder
You can successfully manage passwords in the alpha.cyberark.com domain
but you can not manage passwords in beta.cyberark.com, You receive
"Network path not found." What should you check first? - answer-That the
CPM can successfully resolve addresses in the beta.cyberark.com
Users may be created in the PVWA. - answer-False, accounts may be
manually onboarded but users must be created in PrivateArk
Safe permissions may be applied to users and groups. - answer-True
Can the PVWA be automatically load balanced? - answer-No
A SIEM Integration allows you to forward ITALog records to a monitoring
solution. - answer-False
A logon account can be specified in the Master Policy. - answer-False
__________ Report is used to show the CPM status for each account. - answer-
Privileged Accounts Compliance Status Report
The Vault Internal Safe contains all of the configurations for the Vault. -
answer-False
How many different reports may be generated by components? - answer-10
