CyberArk ACCESS-DEF Exam Questions Instant Access

Question 1

The Security Operation Team requested a report to show users who have logged in the last seven days.

Which report in the Builtin Reports Library should you use?

The Security Operation Team requested a report to show users who have logged in the last seven days.

Which report in the Builtin Reports Library should you use?

AActive Users

BMFA Summary

CLogins Map

DTop User Logins

Answer : D

Question 2

Refer to the exhibit.

Within the "Allow user notifications on multiple devices", if you leave the setting as Default (--), what happens if a user triggers a MFA Push notification and has enrolled three different devices?

AThe push notification will be sent to none of the enrolled devices.

BThe push notification will be sent to the first enrolled device only.

CThe push notification will be sent to all enrolled devices.

DThe push notification will be sent to the last enrolled device only.

Answer : B

Question 3

CyberArk Identity has created a CLI integration with which vendor?

AAmazon Web Services

BSalesforce

CMicrosoft

DZoom

Answer : A

Question 4

When can 2FA/MFA be prompted? (Choose two.)

Awhen clicking on an app file while in the User Portal

Bafter clicking on the Forgot Your Password link

Cwhen making changes to a policy while in the Admin Portal

Dwhen exporting a compliance report while in the Admin Portal

Ewhen adding a new web app

Answer : A, C

Question 5

Which 2FA/MFA options can be used if users cannot use their mobile device? (Choose two.)

AFID02

BSecurity questions

COAUTH2

DQRcode

EPush notification app

Answer : A, B

Question 6

Refer to the exhibit.

If an Authentication Policy is configured as shown in the exhibit, which statement is correct?

AThe Initial MFA challenge will be sent to the account in CyberArk Cloud Directory (Tarqet).

BUpon successful logon, the user will be logged in as the account in CyberArJS Cloud Directory (Target).

CFuture MFA challenges will be sent to the account in AD (Source).

DIf there is no matching email between two accounts in AD (Source) and CyberArt Cloud Directory (Target), the mapping will then look for a matching User ID.

Answer : A

Question 7

When logging on to the User Portal, which authentication methods can enable the user to bypass authentication rules and default profile? (Choose two.)

ACertification-Based Authentication (CBA)

BIntegrated Windows Authentication (IWA)

CQR Code Authentication

DFIDO2 Authentication

ERADIUS Authentication

Answer : B, D

CyberArk Defender Access ACCESS-DEF Exam Questions