Download CyberArk PAM-CDE-RECERT Sample Questions [Mar-2023]
Real PAM-CDE-RECERT Exam Questions and Answers FREE
NEW QUESTION 38
After the Vault server is installed, the Microsoft Windows firewall is now commandeered by the Vault.
Can the administrator change these firewall rules?
- A. Yes, but the administrator can only modify the firewall rules by editing the dbparm.ini file and the restarting the Vault.
- B. Yes, but the administrator can only modify the firewall rules by editing the FirewallRules.ini file and the restarting the Vault.
- C. No, the Vault does not permit any changes to the firewall due to security requirements.
- D. Yes, the administrator can still modify firewall rules via the Windows firewall interface.
Answer: A
NEW QUESTION 39
The password upload utility must run from the Central Policy Manager (CPM) server.
- A. False
- B. True
Answer: A
NEW QUESTION 40
What is the purpose of EVD?
- A. To create a backup of the MySQL database.
- B. To extract vault metadata into an open database platform.
- C. To extract audit data from the vault.
- D. To allow editing of vault metadata.
Answer: B
NEW QUESTION 41
Which is the purpose of a linked account?
- A. To ensure that a particular collection of accounts all have the same password.
- B. To ensure a particular set of accounts all change at the same time.
- C. To allow the use of additional passwords within a password management process.
- D. To connect the CPM to a target system.
Answer: B
NEW QUESTION 42
A Security Information and Event Management (SIEM) integration is a powerful way to correlate privileged account usage with privileged account activity.
- A. True
- B. False
Answer: A
NEW QUESTION 43
Which report shows the accounts that are accessible to each user?
- A. Privileged Accounts Compliance Status report
- B. Entitlement report
- C. Activity report
- D. Applications Inventory report
Answer: B
NEW QUESTION 44
What is the purpose of the password verify process?
- A. To test that CyberArk is storing accurate credentials for accounts.
- B. To change the password of an account according to organizationally defined password rules.
- C. To generate a new complex password.
- D. To allow CyberArk to manage unknown or lost credentials.
Answer: A
NEW QUESTION 45
What are the functions of the Remote Control Agent service? (Choose three.)
- A. Sends SNMP traps from the Vault
- B. Maintains audit data
- C. Allows CyberArk services to be managed (start/stop/status) remotely
- D. Allows remote monitoring the Vault
Answer: A,C,D
NEW QUESTION 46
Where does the Vault administrator configure in Password Vault Web Access (PVWA) the Fully Qualified Domain Name (FQDN) of the domain controller during LDAP/S integration?
- A. PVWA > Platform Management > LDAP Integration
- B. PVWA > LDAP Integration
- C. PVWA > Administration > Options > LDAP Integration
- D. PVWA > Administration > LDAP Integration
Answer: D
NEW QUESTION 47
Which file is used to configure the ENE service?
- A. PARagent.ini
- B. dbparm.ini
- C. ENE.ini
- D. ENEConfig.ini
Answer: C
NEW QUESTION 48
To support a fault tolerant and high-availability architecture, the Password Vault Web Access (PVWA) servers must to be configured to communicate with the Primary Vault and Satellite Vaults.
Which file needs to be changed on the PVWA to enable this setup?
- A. dbparm.ini
- B. Satellite.ini
- C. pvwa.ini
- D. Vault.ini
Answer: D
NEW QUESTION 49
During the process of installing the Central Policy Manager (CPM), the Vault administrator will be asked to provide the credentials for an administrative user in the Vault.
For which purpose are these credentials used?
- A. The credentials will be used later by the CPM to retrieve passwords from the Vault.
- B. The credentials will be used later by the CPM to update passwords in the Vault.
- C. The credentials are used by the installer to authenticate to the Vault and create the Central Policy Manager (CPM) environment (Safes, users. etc.).
- D. The credentials are used by the installer to register the CPM in the CyberArk database.
Answer: C
NEW QUESTION 50
When working with the CyberArk High Availability Cluster, which services are running on the passive node?
- A. Cluster Vault Manager
- B. Cluster Vault Manager and Remote Control Agent
- C. Cluster Vault Manager, PrivateArk Database and Remote Control Agent
- D. Cluster Vault Manager and PrivateArk Database
Answer: A
NEW QUESTION 51
Access control to passwords is implemented by __________.
- A. Safe authorizations
- B. platform settings
- C. Vault authorizations
- D. Master Policy
Answer: A
NEW QUESTION 52
According to the default web options settings, which group grants access to the reports page?
- A. Vault administrators
- B. PVWAMonitor
- C. Auditors
- D. PVWAUsers
Answer: B
NEW QUESTION 53
What is the purpose of the CyberArk Event Notification Engine service?
- A. It sends email messages from the Central Policy Manager (CPM).
- B. It sends email messages from the Vault.
- C. It processes audit report messages.
- D. It makes Vault data available to components.
Answer: B
NEW QUESTION 54
Which onboarding method is used to integrate CyberArk with the accounts provisioning process?
- A. Accounts Discovery
- B. PTA rules
- C. Onboarding RestAPI functions
- D. Auto Detection
Answer: D
NEW QUESTION 55
For a Safe with object level access control enabled the Vault administrator is able to turn off object level access control when it no longer needed on the Safe.
- A. False
- B. True
Answer: A
NEW QUESTION 56
......
Truly Beneficial For Your CyberArk Exam: https://www.lead2passed.com/CyberArk/PAM-CDE-RECERT-practice-exam-dumps.html
View All PAM-CDE-RECERT Actual Exam Questions, Answers and Explanations for Free: https://drive.google.com/open?id=1km9O4oSdI5FuhiRYoIijoAM4av6WSKcn
