CyberArk PAM-CDE-RECERT Exam Practice Test Instant Access

Question 1

Which of the Following can be configured in the Master Poky? Choose all that apply.

ADual Control

BOne Time Passwords

CExclusive Passwords

DPassword Reconciliation

DTicketing Integration

FRequired Properties

GCustom Connection Components

HPassword Aging Rules

Answer : A, B, C, H

Question 2

If a user is a member of more than one group that has authorizations on a safe, by default that user is granted________.

Athe vault will not allow this situation to occur.

Bonly those permissions that exist on the group added to the safe first.

Conly those permissions that exist in all groups to which the user belongs.

Dthe cumulative permissions of all groups to which that user belongs.

Answer : B

Question 3

You are creating a shared safe for the help desk.

What must be considered regarding the naming convention?

AEnsure your naming convention is no longer than 20 characters.

BCombine environments, owners and platforms to minimize the total number of safes created.

CSafe owners should determine the safe name to enable them to easily remember it.

DThe use of these characters V:*<>'.| is not allowed.

Answer : D

Question 4

Which of these accounts onboarding methods is considered proactive?

AAccounts Discovery

BDetecting accounts with PTA

CA Rest API integration with account provisioning software

DA DNA scan

Answer : B

Question 5

Which onboarding method would you use to integrate CyberArk with your accounts provisioning process?

AAccounts Discovery

BAuto Detection

COnboarding RestAPI functions

DPTA Rules

Answer : B

Question 6

What is the primary purpose of One Time Passwords?

AReduced risk of credential theft

BMore frequent password changes

CNon-repudiation (individual accountability)

DTo force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization.

Answer : A

Question 7

Which built-in report from the reports page in PVWA displays the number of days until a password is due to expire?

APrivileged Accounts Inventory

BPrivileged Accounts Compliance Status

CActivity Log

DPrivileged Accounts CPM Status

Answer : B

CyberArk CDE Recertification PAM-CDE-RECERT Exam Practice Test