CyberArk cau302 practice test

What is the purpose of the Allowed Safes parameter in a CPM policy? Select all that apply.

• A. To improve performance by reducing CPU workload.
• B. To prevent accidental use of a policy in the wrong safe.
• C. To allow users to access only the passwords they should be able to access.
• D. To enforce Least Privilege in CyberArk.

The Vault Internal safe contains all of the configuration for the vault.

• A. TRUE
• B. FALSE

One time passwords reduce the risk of Pass the Hash vulnerabilities in Windows

• A. TRUE
• B. FALSE

What are the operating system prerequisites for installing CPM? Select all that apply.

• A. NET 3.51 Framework Feature
• B. Web Services Role
• C. Remote Desktop Services Role
• D. Windows 2008 R2 or higher

The vault provides a tamper-proof audit trail.

• A. TRUE
• B. FALSE

It is possible to restrict the time of day. or day of week that a verify process can occur

• A. TRUE
• B. FALSE

When managing SSH keys. CPM automatically pushes the Private Key to all systems that use it

• A. TRUE
• B. FALSE

It is possible to restrict the time of day. or day of week that a change process can occur

• A. TRUE
• B. FALSE

Which one of the built-in Vault users is not automatically added to the safe when it is first created in
PVWA?

• A. Master
• B. Administrator
• C. Auditor
• D. Operator

What conditions must be met in order to log into the vault as the Master user? Select all that apply

• A. Logon must be originated from the console of the Vault server or an EmergencyStation defined in DBParm.ini
• B. User must provide the correct master password
• C. Logon requires the Recovery Private Key to be accessible to the vault
• D. Logon must satisfy a challange response request