CyberArk EPM-DEF Exam Practice Test Instant Access

Question 1

Which user or group will not be removed as part of CyberArk EPM's Remove Local Administrators feature?

ABuilt-in Local Administrator

BDomain Users

CAdmin Users

DPower Users

Answer : A

Question 2

What EPM component is responsible for communicating password changes in credential rotation?

AEPM Agent

BEPM Server

CEPM API

DEPM Discovery

Answer : B

Question 3

What type of user can be created from the Threat Deception LSASS Credential Lures feature?

AIt does not create any users

BA standard user

CA local administrator user

DA domain admin user

Answer : B

Question 4

Which setting in the agent configuration controls how often the agent sends events to the EPM Server?

AEvent Queue Flush Period

BHeartbeat Timeout

CCondition Timeout

DPolicy Update Rate

Answer : A

Question 5

An EPM Administrator would like to include a particular file extension to be monitored and protected under Ransomware Protection. What setting should the EPM Administrator configure to add the extension?

AAuthorized Applications (Ransomware Protection)

BFiles to be Ignored Always

CAnti-tampering Protection

DDefault Policies

Answer : A

Question 6

What are the predefined application groups?

ADeveloper group, Administrator group

BRun as Administrator, Run as Developer, Block

CElevate, Allow, Block, Developer Applications

DBlock Only

Answer : C

Question 7

Which threat intelligence source requires the suspect file to be sent externally?

ANSRL

BPalo Alto Wildfire

CVirusTotal

DCyberArk Application Risk Analysis Service (ARA)

Answer : C

CyberArk Defender - EPM EPM-DEF Exam Practice Test