CyberArk cau302 practice test
CyberArk Defender + Sentry
Last exam update: Nov 27 ,2025
Page 1 out of 16. Viewing questions 1-15 out of 235
Question 1
The vault does not support Role Based Access Control
Question 2
The Remote Desktop Services role must be property licensed by Microsoft.
Question 3
One can create exceptions to the Master Policy based on_________.
-
A.
Safes
-
B.
Platforms
-
C.
Policies
-
D.
Accounts
Question 4
Which of the following statements are NOT true when enabling PSM recording for a target Windows
server? Choose all that apply
-
A.
The PSM software must be installed on the target server
-
B.
PSM must be enabled in the Master Policy {either directly, or through exception).
-
C.
PSMConnect must be added as a local user on the target server
-
D.
RDP must be enabled on the target server
Question 5
It is possible to disable the Show and Copy buttons without removing the Retrieve permission on a
safe.
Question 6
During LDAP/S integration you should specify the Fully Qualified Domain Name (FQDN) of the
Domain Controller
Question 7
Which Master Policy?
-
A.
Password Expiration Time
-
B.
Enabling and Disabling of the Connection Through the PSM
-
C.
Password Complexity
-
D.
The use of "One-Time-Passwords"
Question 8
When on-boarding accounts using Accounts Feed. Which of the following is true"?
-
A.
You must specify an existing Safe where the account will be stored when it is on-boarded to the Vault.
-
B.
You can specify the name of a new safe that will be created where the account will be stored when it is on-boarded to the Vault.
-
C.
You can specify the name of a new Platform that will be created and associated with the account.
-
D.
Any account that is on-boarded can be automatically reconciled regardless of the platform it is associated with
Question 9
The Vault Internal safe contains the configuration for an LDAP integration
Question 10
PSM captures a record of each command that was issues in SQL Plus.
Question 11
What is the purpose of the Allowed Safes parameter in a CPM policy? Select all that apply.
-
A.
To improve performance by reducing CPU workload.
-
B.
To prevent accidental use of a policy in the wrong safe.
-
C.
To allow users to access only the passwords they should be able to access.
-
D.
To enforce Least Privilege in CyberArk.
Question 12
The Vault Internal safe contains all of the configuration for the vault.
Question 13
One time passwords reduce the risk of Pass the Hash vulnerabilities in Windows
Question 14
What are the operating system prerequisites for installing CPM? Select all that apply.
-
A.
NET 3.51 Framework Feature
-
B.
Web Services Role
-
C.
Remote Desktop Services Role
-
D.
Windows 2008 R2 or higher
Question 15
The vault provides a tamper-proof audit trail.