Weekend Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: pass65

SECRET-SEN CyberArk Sentry Secrets Manager Questions and Answers

Questions 4

Match the correct network port to its function in Conjur.

SECRET-SEN Question 4

Options:

Buy Now
Questions 5

When installing the Vault Conjur Synchronizer, you see this error:

Forbidden

Logon Token is Empty – Cannot logon

Unauthorized

What must you ensure to remediate the issue?

Options:

A.

This admin user must not be logged in to other sessions during the Vault Conjur Synchronizer installation process.

B.

You specified the correct url for Conjur and it is listed as a SAN on that url’s certificate.

C.

You correctly URI encoded the url in the installation script.

D.

You ran powershell as Administrator and there is sufficient space on the server on which you are running the installation.

Buy Now
Questions 6

What does “Line of business (LOB)” represent?

Options:

A.

a business group requiring access to secrets from the Vault/Privilege Claud to facilitate syncing accounts to Conjur

B.

the services that Conjur offers and typically refers to a group of application identities in Conjur

C.

a business group that meets a certain set of Conjur policies for entitlements and policy management

D.

the services that Conjur offers and typically refers to the list of configured and enabled authenticators in Conjur

Buy Now
Questions 7

Findings were obtained after cataloging pending Secrets Manager use cases.

Arrange the findings in the correct order for prioritization.

SECRET-SEN Question 7

Options:

Buy Now
Questions 8

You have a PowerShell script that is being used on 1000 workstations. It requires a Windows Domain credential that is currently hard coded in the script.

What is the simplest solution to remove that credential from the Script?

Options:

A.

Modify the script to use the CLI SDK to fetch the secret at runtime using Credential Providers installed on each workstation.

B.

Modify the script to make a SOAP call to retrieve the secret from the Central Credential Provider.

C.

Modify the script to run on WebSphere using the Application Server Credential Provider to retrieve the secret.

D.

Use Conjur Summon to invoke the script and inject the secret at run time.

Buy Now
Questions 9

Where can all the self-signed/imported certificates be found in Conjur?

Options:

A.

/opt/conjur/etc/ssl from the Conjur containers

B.

/opt/conjur/certificates from the Conjur containers

C.

/opt/cyberark/dap/certs from the Conjur containers

D.

Log in to the Conjur UI > Conjur Cluster > Certificates > view.

Buy Now
Questions 10

Which API endpoint can be used to discover secrets inside of Conjur?

Options:

A.

Resources

B.

Roles

C.

Policies

D.

WhoAmi

Buy Now
Questions 11

Refer to the exhibit.

In which example will auto-failover occur?

SECRET-SEN Question 11

A)

SECRET-SEN Question 11

B)

SECRET-SEN Question 11

C)

SECRET-SEN Question 11

D)

SECRET-SEN Question 11

Options:

A.

Option A

B.

Option B

C.

Option C

D.

Option D

Buy Now
Questions 12

Which statement is true for the Conjur Command Line Interface (CLI)?

Options:

A.

It is supported on Windows, Red Hat Enterprise Linux, and macOS.

B.

It can only be run from the Conjur Leader node.

C.

It is required for working with the Conjur REST API.

D.

It does not implement the Conjur REST API for managing Conjur resources.

Buy Now
Questions 13

You are deploying Kubernetes resources/objects as Conjur identities.

In addition to Namespace and Deployment, from which options can you choose? (Choose two.)

Options:

A.

ServiceAccount

B.

Replica sets

C.

Secrets

D.

Tokenreviews

E.

StatefulSet

Buy Now
Questions 14

What is the correct process to upgrade the CCP Web Service?

Options:

A.

Run “sudo yum update aimprv” from the CLI.

B.

Double-click the Credential Provider installer executable and select upgrade.

C.

Double-click the AimWebService.msi and select upgrade.

D.

Uninstall and reinstall the CCP Web Service.

Buy Now
Questions 15

A Kubernetes application attempting to authenticate to the Follower load balancer receives this error:

ERROR: 2024/10/30 06:07:08 authenticator.go:139: CAKC029E Received invalid response to certificate signing request. Reason: status code 401

When checking the logs, you see this message:

authn-k8s/prd-cluster-01 is not enabled

How do you remediate the issue?

Options:

A.

Check the info endpoint on each Follower behind the load balancer and enable the authenticator on the Follower.

B.

Modify conjur.conf in /opt/conjur/etc/authenticators addinqthe authenticator webservice.

C.

A network issue is preventing the application from reaching the Follower; correct the issue and verity that it is resolved.

D.

Enable the authenticator in the Ul > Webservices > Authenticators > Enable and enable the appropriate authenticator webservice.

Buy Now
Questions 16

When using the Seed Fetcher to deploy Kubernetes Followers, an error occurs in the Seed Fetcher container. You check the logs and discover that although the Seed Fetcher was able to authenticate, it shows a 500 error in the log and does not successfully retrieve a seed file. What is the cause?

Options:

A.

The certificate based on the Follower DNS name is not present on the Leader.

B.

The host you configured does not have access to see the certificates.

C.

The synchronizer service crashed and needs to be restarted.

D.

The Leader does not have the authenticator webservice enabled.

Buy Now
Questions 17

Arrange the steps to configure authenticators in the correct the sequence.

SECRET-SEN Question 17

Options:

Buy Now
Questions 18

Arrange the manual failover configuration steps in the correct sequence.

SECRET-SEN Question 18

Options:

Buy Now
Exam Code: SECRET-SEN
Exam Name: CyberArk Sentry Secrets Manager
Last Update: Dec 2, 2024
Questions: 60

PDF + Testing Engine

$57.75  $164.99

Testing Engine

$43.75  $124.99
buy now SECRET-SEN testing engine

PDF (Q&A)

$36.75  $104.99
buy now SECRET-SEN pdf