CyberArk ACCESS-DEF Exam Practice Test Instant Access

Question 1

When logging on to the User Portal, which authentication methods can enable the user to bypass authentication rules and default profile? (Choose two.)

ACertification-Based Authentication (CBA)

BIntegrated Windows Authentication (IWA)

CQR Code Authentication

DFIDO2 Authentication

ERADIUS Authentication

Answer : B, D

Question 2

Your Chief Executive Officer lost his phone and cannot perform MFA to log in to work.

How can you enable him to bypass MFA right away and not delay his work?

AAdd a security question to his account on his behalf.

BAsk him to configure on-device authenticator.

CAsk him to change his phone PIN.

DSelect the MFA Unlock action for him through the Admin Portal.

Answer : D

Question 3

What can cause users to be prompted for unrecognized MFA factors, such as a wrong phone number or unregistered MFA factor?

ASomeone installed the CyberArk Identity mobile app on a different phone with their credentials.

BThe administrator switched authentication profiles.

CThey mistyped their username.

DSomeone registered their phone number to the wrong username.

Answer : C

Question 4

CyberArk Identity has created a CLI integration with which vendor?

AAmazon Web Services

BSalesforce

CMicrosoft

DZoom

Answer : A

Question 5

Refer to the exhibit.

How should you configure this default authentication policy to ensure users must authenticate every time they try to access the CyberArk Identity portal or web applications?

ACheck and enable QR Code under the 'Single Authentication Mechanism' section.

BCheck and enable Security Questions and set the number to '1'.

CCheck and Select 'Challenge Pass-Through Duration' to be 'No Pass Through'.

DCheck and Select QR Code under Challenge 1.

Answer : C

Question 6

A user's account information required for multi-factor authentication is not set up properly and is preventing the user from logging in.

What should you do?

AUse the MFA Unlock command in the Admin Portal to suspend multifactor authentication for 10 minutes.

BDelete the user's account and create a new one.

CAsk the user to delete all browser cookies, then try again.

DChange the user's director/ source from Active Directory to LDAP for authentication.

Answer : A

Question 7

Which 2FA/MFA options can be used if users cannot use their mobile device? (Choose two.)

AFID02

BSecurity questions

COAUTH2

DQRcode

EPush notification app

Answer : A, B

CyberArk ACCESS-DEF CyberArk Defender Access Exam Practice Test