Question 1

PTA can automatically suspend sessions if suspicious activities are detected in a privileged session, but only if the session is made via the CyberArk PSM.

Options :

A : True

B : False, the PTA can suspend sessions whether the session is made via the PSM or not

Answer: B

Question 2

Which of the following PTA detections require the deployment of a Network Sensor or installing the PTA Agent on the domain controller?

Options :

A : Suspected credential theft

B : Over-Pass-The-Hash

C : Golden Ticket

D : Unmanaged privileged access

Answer: C

Question 3

To change the safe where recordings are kept for a specific platform, which setting must you update in the platform configuration?

Options :

A : SessionRecorderSafe Most Voted

B : SessionSafe

C : RecordingsPath

D : RecordingLocation

Answer: A

Question 4

Select the best practice for storing the Master CD.

Options :

A : Copy the files to the Vault server and discard the CD

B : Copy the contents of the CD to a Hardware Security Module (HSM) and discard the CD

C : Store the CD in a secure location, such as a physical safe

D :

Store the CD in a secure location, such as a physical safe, and copy the contents of the CD to a folder secured with NTFS permissions on the Vault

Answer: D

Question 5

In your organization the “click to connect” button is not active by default.

How can this feature be activated?

Options :

A : Policies > Master Policy > Allow EPV transparent connections > Inactive

B :

Policies > Master Policy > Session Management > Require privileged session monitoring and isolation > Add Exception

C : Policies > Master Policy > Allow EPV transparent connections > Active

D : Policies > Master Policy > Password Management

Answer: C