marks4sure logo
You are configuring the Vault to send syslog audit data to your organization’s SIEM solution.
What is a valid value for the SyslogServerProtocol parameter in DBPARM.INI file?
As Vault Admin, you have been asked to enable your organization's CyberArk users to authenticate using LDAP.
In addition to Audit Users, which permission do you need to complete this task?
What must you do to synchronize a new Vault server with an organization’s NTP server?
Which configuration file and Vault utility are used to migrate the server key to an HSM?
This value needs to be added to the PVWA configuration file:
Assuming all CyberArk PVWA servers were installed using default paths/folders, which configuration file should you locate and edit to accomplish this?
Which file would you modify to configure your Vault Server to forward Activity Logs to a SIEM or SYSLOG server?
You are installing PSM for SSH with AD-Bridge and CyberArkSSHD mode set to integrated for your customer.
Which additional packages do you need to install to meet the customer’s needs? (Choose two.)
Which user is enabled when replicating data between active and stand-by Vaults?
Which statement is correct about CPM behavior in a distributed Vault environment?
Which of the following are secure options for storing the contents of the Operator CD, while still allowing the contents to be accessible upon a planned Vault restart? Choose all that apply
In which configuration file do you add LoadBalancerClientAddressHeader when you enable x-forwarding on the PVWA loadbalancer?
When configuring RADIUS authentication, which utility is used to create a file containing an encrypted version of the RADIUS secret?
You are successfully managing passwords in the alpha cyberark com domain; however, when you attempt to manage a password in the beta cyberark com domain, you receive the 'network path not found' error. What should you check first?
What is the default username for the PSM for SSH maintenance user when InstallCyberarkSSHD is set to yes?
You are designing the number of PVWAs a customer must deploy. The customer has three data centers with a distributed Vault in each, requires high availability, and wants to use all Vaults at all times.
How many PVWAs does the customer need?
All 80 employees from your satellite Tokyo office are complaining that browsing the PVWA site is very slow; however, your New York headquarters users are not experiencing this. The current PAM solution is:
2 distributed Vaults, the primary one in New York and a satellite in Tokyo
2 PVWA servers, both in New York with load balancing configured
2 PSM servers, both in New York without load balancing configured
1 CPM server in New York
All PVWA, PSM, and CPM servers are connected to the primary Vault
Which proposal optimally resolves the performance issue while minimizing the impact to production?
What is a prerequisite step before CyberArk can be configured to support RADIUS authentication?
Which component should be installed on the Vault if Distributed Vaults are used with PSM?
Your customer wants to store the Safes Data on Vault Drive D instead of Drive C.
Which file should you edit?
In a SIEM integration it is possible to use the fully-qualified domain name (FQDN) when specifying the SIEM server address(es)
In large-scale environments, it is important to enable the CPM to focus its search operations on specific Safes instead of scanning all Safes it sees in the Vault.
How is this accomplished?
When SAML authentication is used to sign in to the PVWA, which service performs the actual authentication?
Before the hardening process, your customer identified a PSM Universal Connector executable that will be required to run on the PSM.
Which file should you update to allow this to run?
In order to retrieve data from the vault a user MUST use an interface provided by CyberArk.
You are setting up a Linux host to act as an HTML 5 gateway for PSM sessions.
Which servers need to be trusted by the Linux host to secure communications through the gateway?
CyberArk User Neil is trying to connect to the Target Linux server 192.168.1.164 using a domain account ACME/linuxuser01 on domain acme.corp using PSM for SSH server 192.168.65.145.
What is the correct syntax?
Which of the following are supported authentication methods for CyberArk? Check all that apply
In order to avoid conflicts with the hardening process, third party applications like Antivirus and Backup Agents should be installed on the Vault server before installing the Vault.
The account used to install a PVWA must have ownership of which safes? (Choose two.)
You want to change the name of the PVWAappuser of the second PVWA server.
Which steps are part of the process? (Choose two.)
TESTED 26 Apr 2024