Question 1

A company is looking to manage their Windows Servers and Desktops with CyberArk EPM. Management would like to define different default policies between the Windows Servers and Windows Desktops. What should the EPM Administrator do?

Options :

A : In the Default Policies, exclude either the Windows Servers or the Windows Desktops.

B : Create Advanced Policies to apply different policies between Windows Servers and Windows Desktops.

C : CyberArk does not recommend installing EPM Agents on Windows Servers.

D : Create a separate Set for Windows Servers and Windows Desktops.

Answer: B

Question 2

When deploying Ransomware Protection, what tasks should be considered before enabling this functionality? (Choose two.)

Options :

A : Add trusted software to the Authorized Applications (Ransomware protection) Application Group

B : Add trusted software to the Allow Application Group

C : Add additional files, folders, and/or file extensions to be included to Ransomware Protection

D : Enable Detect privileged unhandled applications under Default Policies

Answer: A,C

Question 3

What type of user can be created from the Threat Deception LSASS Credential Lures feature?

Options :

A : It does not create any users

B : A standard user

C : A local administrator user

D : A domain admin user

Answer: B

Question 4

In EPM, creation of which user type is required to use SAML?

Options :

A :

Local CyberArk EPM User

B : AD User

C : SQL User

D : Azure AD User

Answer: D

Question 5

On the Default Policies page, what are the names of policies that can be set as soon as EPM is deployed?

Options :

A : Privilege Escalation, Privilege Management, Application Management

B :

Privilege Management, Application Control, Threat analysis

C : Privilege Management, Threat Protection, Application Escalation Control

D :

Privilege Management, Privilege Threat Protection, Local Privileged Accounts Management

Answer: D