CAU201 Exam Questions

If the AccountUploader Utility is used to create accounts with SSH keys, which parameter do you use to set the full or relative path of the SSH private key file that will be attach...

You received a notification from one of your CyberArk auditors that they are missing Vault level audit permissions. You confirmed that all auditors are missing the Audit Users Vaul...

A new domain controller has been added to your domain. You need to ensure the CyberArk infrastructure can use the new domain controller for authentication. Which locations must you...

Which statement is correct concerning accounts that are discovered, but cannot be added to the Vault by an automated onboarding rule?

Which Automatic Remediation is configurable for a PTA detection of a "Suspected Credential Theft"?

Users are unable to launch Web Type Connection components from the PSM server. Your manager asked you to open the case with CyberArk Support. Which logs will help the CyberArk Supp...

If a user is a member of more than one group that has authorizations on a safe, by default that user is granted________.

It is possible to control the hours of the day during which a user may log into the vault.

VAULT authorizations may be granted to_____.

What is the purpose of the Interval setting in a CPM policy?

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be ab...

What is the purpose of the Immediate Interval setting in a CPM policy?

Which utilities could you use to change debugging levels on the vault without having to restart the vault. Select all that apply.

A Logon Account can be specified in the Master Policy.

Which item is an option for PSM recording customization?

Your customer, ACME Corp, wants to store the Safes Data in Drive D instead of Drive C. Which file should you edit?

Which option in the Private Ark client is used to update users' Vault group memberships?

Which of the following properties are mandatory when adding accounts from a file? (Choose three.)

What is the name of the Platform parameters that controls how long a password will stay valid when One Time Passwords are enabled via the Master Policy?

It is possible to leverage DNA to provide discovery functions that are not available with auto- detection.

Which of the following files must be created or configured m order to run Password Upload Utility? Select all that apply.

Users can be resulted to using certain CyberArk interfaces (e.g.PVWA or PACLI).

What is the purpose of the HeadStartlnterval setting m a platform?

It is possible to restrict the time of day, or day of week that a [b]reconcile[/b] process can occur

Which of the following options is not set in the Master Policy?

The primary purpose of exclusive accounts is to ensure non-repudiation (Individual accountability).

For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure a group of users to access a password without approval.

As long as you are a member of the Vault Admins group, you can grant any permission on any safe that you have access to.

Which report provides a list of account stored in the vault.

When on-boarding account using Accounts Feed, Which of the following is true?

Target account platforms can be restricted to accounts that are stored m specific Safes using the Allowed Safes property.

PSM captures a record of each command that was executed in Unix.

Platform settings are applied to _________.

Customers who have the `Access Safe without confirmation' safe permission on a safe where accounts are configured for Dual control, still need to request approval to use the accoun...

The System safe allows access to the Vault configuration files.

To ensure all sessions are being recorded, a CyberArk administrator goes to the master policy and makes configuration changes. Which configuration is correct?

Which certificate type do you need to configure the vault for LDAP over SSL?

You are onboarding an account that is not supported out of the box. What should you do first to obtain a platform to import?

You have been asked to identify the up or down status of Vault services. Which CyberArk utility can you use to accomplish this task?

You are logging into CyberArk as the Master user to recover an orphaned safe. Which items are required to log in as Master?

Your organization requires all passwords be rotated every 90 days. Where can you set this regulatory requirement?

To enable the Automatic response "Add to Pending" within PTA when unmanaged credentials are found, what are the minimum permissions required by PTAUser for the PasswordManager_pend...

You have been asked to turn off the time access restrictions for a safe. Where is this setting found?

Which onboarding method would you use to integrate CyberArk with your accounts provisioning process?

What is the purpose of a linked account?

Which of the following PTA detections are included in the Core PAS offering?

One can create exceptions to the Master Policy based on ____________________.

The vault supports Role Based Access Control.

Can the 'Connect' button be used to initiate an SSH connection, as root, to a Unix system when SSH access for root is denied?

A user with administrative privileges to the vault can only grant other users privileges that he himself has.