Weekend Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmaspas7

Easiest Solution 2 Pass Your Certification Exams

CAU302 CyberArk Defender + Sentry Free Practice Exam Questions (2025 Updated)

Prepare effectively for your CyberArk CAU302 CyberArk Defender + Sentry certification with our extensive collection of free, high-quality practice questions. Each question is designed to mirror the actual exam format and objectives, complete with comprehensive answers and detailed explanations. Our materials are regularly updated for 2025, ensuring you have the most current resources to build confidence and succeed on your first attempt.

Page: 1 / 4
Total 237 questions

Which user(s) can access all passwords in the vault

A.

Administrator

B.

Any member of Vault Admins

C.

Any member of Auditors

D.

Master

Time of day of week restrictions on when password changes can occur are configured in ________________.

A.

The Master Policy

B.

The Platform settings

C.

The Safe settings

D.

The Account Details

Which file is used to open up a non-standard Firewall port to the Vault?

A.

dbparm.ini

B.

PARagent.ini

C.

passparm.ini

D.

Vault.ini

The Vault does not support dual factor authentication.

A.

True

B.

False

Multiple CPM Servers can be load balanced.

A.

TRUE

B.

FALSE

To support a fault tolerant and high-availability architecture, the Password Vault Web Access (PVWA) servers need to be configured to communicate with the Primary Vault and Satellite Vaults. What file needs to be changed on the PVWA to enable this setup?

A.

Vault.ini

B.

dbparm.ini

C.

pvwa.ini

D.

Satellite.ini

For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure access a password without approval

A.

Create an exception to the Master Policy to exclude the group from the workflow process.

B.

Edit the master policy rule and modify the advanced 'Access safe without approval' rule to include the group.

C.

On the safe in which the account is stored grant the group the 'Access safe without audit' authorization.

D.

On the safe in which the account is stored grant the group the 'Access safe without confirmation' authorization

Which one of the following reports is NOT generated by using the Password Vault Web Access (PVWA)?

A.

Accounts Inventory

B.

Application Inventory

C.

Active/Non-Active Users

D.

Compliance Status

Which parameter controls how often the CPM looks for Exclusive Passwords that need to be changed?

A.

HeadStartInterval

B.

Interval

C.

ImmediateInterval

D.

The CPM does not change the password under this circumstance

What is the chief benefit of PSM?

A.

Privileged session isolation

B.

Automatic password management

C.

Privileged session recording

D.

Privileged session isolation and privileged session recording

Multiple PVWA servers provide automatic load balancing.

A.

TRUE

B.

FALSE

What are the chief benefits of PSM? Choose all that apply

A.

Privileged Session Isolation

B.

Automatic Password Management

C.

Privileged Session Recording

D.

A & C

Which type of automatic remediation can be performed by the PTA in case of a suspicious password change security event?

A.

Password change

B.

Password reconciliation

C.

Session suspension

D.

Session termination

Where do you configure in PVWA the fully-qualified domain name (FQDN) of your target email server during SMTP integration?

A.

PVWA > Platform Management > Notification Settings

B.

PVWA > Options > Notification Settings

C.

PVWA > Administration > Notification Settings

D.

PVWA > LDAP Integartion > Notification Settings

Which type of automatic remediation can be performed by the PTA in case of a Suspecious Password Change security event?

A.

Password Change

B.

Password Reconcilation

C.

Session Suspension

D.

Session Terminiation

In an SIEM integration it is recommended to use the fully-qualified domain name (FGDN) when specifying the SIEM server address(es).

A.

TRUE

B.

FALSE

SAFE Authorizations may be granted to___________________.

Select all that apply.

A.

Vault Users

B.

Vault Groups

C.

LDAP Users

D.

LDAP Groups

Which Master Policy Setting(s) must be active in order to have an account checked-out by one user for a predetermined amount of time?

A.

Require dual control password access Approval

B.

Enforce check-in/check-out exclusive access

C.

Enforce one-time password access

D.

Enforce check-in/check-out exclusive access & Enforce one-time password access

PSM requires the Remote Desktop Session Host role service.

A.

TRUE

B.

FALSE

The vault supports a number of dual factor authentication methods.

A.

TRUE

B.

FALSE

Page: 1 / 4
Total 237 questions
Copyright © 2014-2025 Solution2Pass. All Rights Reserved