CyberArk cau201 practice test

Question 1

Users are unable to launch Web Type Connection components from the PSM server. Your manager
asked you to open the case with CyberArk Support.
Which logs will help the CyberArk Support Team debug the issue? (Choose three.)

• A. PSMConsole.log
• B. PSMDebug.log
• C. PSMTrace.log
• D. <Session_ID>.Component.log
• E. PMconsole.log
• F. ITAlog.log

Question 2

Which Automatic Remediation is configurable for a PTA detection of a “Suspected Credential Theft”?

• A. Add to Pending
• B. Rotate Credentials
• C. Reconcile Credentials
• D. Disable Account

Question 3

Which of the following properties are mandatory when adding accounts from a file? (Choose three.)

• A. Safe Name
• B. Platform ID
• C. All required properties specified in the Platform
• D. Username
• E. Address
• F. Hostname

Question 4

Which option in the Private Ark client is used to update users’ Vault group memberships?

• A. Update > General tab
• B. Update > Authorizations tab
• C. Update > Member Of tab
• D. Update > Group tab

Question 5

Your customer, ACME Corp, wants to store the Safes Data in Drive D instead of Drive C.
Which file should you edit?

• A. TSparm.ini
• B. Vault.ini
• C. DBparm.ini
• D. user.ini

Question 6

DRAG DROP
Match each PTA alert category with the PTA sensors that collect the data for it.

Question 7

Which item is an option for PSM recording customization?

• A. Windows events text recorder with automatic play-back
• B. Windows events text recorder and universal keystrokes recording simultaneously
• C. Universal keystrokes text recorder with windows events text recorder disabled
• D. Custom audio recording for windows events

Question 8

Which statement is correct concerning accounts that are discovered, but cannot be added to the
Vault by an automated onboarding rule?

• A. They are added to the Pending Accounts list and can be reviewed and manually uploaded.
• B. They cannot be onboarded to the Password Vault.
• C. They must be uploaded using third party tools.
• D. They are not part of the Discovery Process.

Question 9

A new domain controller has been added to your domain. You need to ensure the CyberArk
infrastructure can use the new domain controller for authentication.
Which locations must you update?

• A. on the Vault server in Windows\System32\Etc\Hosts and in the PVWA Application under Administration > LDAP Integration > Directories > Hosts
• B. on the Vault server in Windows\System32\Etc\Hosts and on the PVWA server in Windows\System32\Etc\Hosts
• C. in the Private Ark client under Tools > Administrative Tools > Directory Mapping
• D. on the Vault server in the certificate store and on the PVWA server in the certificate store

Question 10

You received a notification from one of your CyberArk auditors that they are missing Vault level audit
permissions. You confirmed that all auditors are missing the Audit Users Vault permission.
Where do you update this permission for all auditors?

• A. Private Ark Client > Tools > Administrative Tools > Directory Mapping > Vault Authorizations
• B. Private Ark Client > Tools > Administrative Tools > Users and Groups > Auditors > Authorizations tab
• C. PVWA User Provisioning > LDAP integration > Vault Auditors Mapping > Vault Authorizations
• D. PVWA> Administration > Configuration Options > LDAP integration > Vault Auditors Mapping > Vault Authorizations

Question 11

If the AccountUploader Utility is used to create accounts with SSH keys, which parameter do you use
to set the full or relative path of the SSH private key file that will be attached to the account?

• A. KeyPath
• B. KeyFile
• C. ObjectName
• D. Address

Question 12

In PVWA, you are attempting to play a recording made of a session by user jsmith, but there is no
option to Fast Forward within the video. It plays and only allows you to skip between commands
instead. You are also unable to download the video.
What could be the cause?

• A. Recording is of a PSM for SSH session.
• B. The browser you are using is out of date and needs an update to be supported.
• C. You do not have the “View Audit” permission on the safe where the account is stored.
• D. You need to update the recorder settings in the platform to enable screen capture every 10000ms or less.

Question 13

When onboarding multiple accounts from the Pending Accounts list, which associated setting must
be the same across the selected accounts?

• A. Platform
• B. Connection Component
• C. CPM
• D. Vault

Question 14

Your organization has a requirement to allow users to check out passwords and connect to targets
with the same account through the PSM.
What needs to be configured in the Master policy to ensure this will happen?

• A. Enforce check-in/check-out exclusive access = active; Require privileged session monitoring and isolation = active
• B. Enforce check-in/check-out exclusive access = inactive; Require privileged session monitoring and isolation = inactive
• C. Enforce check-in/check-out exclusive access = inactive; Record and save session activity = active
• D. Enforce check-in/check-out exclusive access = active; Record and save session activity = inactive

Question 15

To manage automated onboarding rules, a CyberArk user must be a member of which group?

• A. Vault Admins
• B. CPM User
• C. Auditors
• D. Administrators