• Home
  • Blogs
  • [Nov 27, 2021] CyberArk CAU302 Real Exam Questions and Answers FREE [Q71-Q94]

[Nov 27, 2021] CyberArk CAU302 Real Exam Questions and Answers FREE [Q71-Q94]

Share

[Nov 27, 2021] CyberArk CAU302 Real Exam Questions and Answers FREE

Pass CyberArk CAU302 Exam Info and Free Practice Test


CAU302 Exam topics

Candidates must know the exam topics before they start of preparation. Because it will really help them in hitting the core. Our CAU-302 practice test will include the following topics:

  • Securely Managing
  • Defining the CyberArk Privileged Account Security Solution Architecture
  • Target Hosts Using Privileged Session Manager
  • Monitoring Privileged Account Access

Certification Path

There is no prerequisite for this exam. Completing this exam will give you CyberArk Defender + Sentry certified status.

 

NEW QUESTION 71
During the process of installing the Central Policy Manager (CPM), the Vault administrator will be asked to provide the credentials for an administrative user in the Vault. For which purpose are these credentials used?

  • A. The credentials will be used later by the CPM to update passwords in the Vault.
  • B. The credentials are used by the installer to authenticate to the Vault and create the Central Policy Manager (CPM) environment (Safes, users, etc.).
  • C. The credentials will be used later by the CPM to retrieve passwords from the Vault.
  • D. The credentials are used by the installer to register the CPM in the CyberArk database.

Answer: B

 

NEW QUESTION 72
Using the SSH Key Manager it is possible to allow CPM to manage SSH Keys similarly to passwords.

  • A. FALSE
  • B. TRUE

Answer: A

 

NEW QUESTION 73
Which report could show all accounts that are past their expiration dates?

  • A. Privileged Account Compliance Status report
  • B. Applications Inventory report
  • C. Activity log
  • D. Privileged Account Inventory report

Answer: A

 

NEW QUESTION 74
Which of the following components can be used to create a tape backup of the Vault?

  • A. Replicate
  • B. Distributed Vaults
  • C. High Availability
  • D. Disaster Recovery

Answer: A

Explanation:
Explanation/Reference: https://cyberark-customers.force.com/s/article/00001864

 

NEW QUESTION 75
A user has successfully conducted a short PSM session and logged off. However, the user cannot access the Monitoring tab to view the recordings. What is the issue?

  • A. The user is not a member of the PVWAMonitor group.
  • B. The user is not a member of the Auditors group.
  • C. The PSM service is not running.
  • D. The user must login as PSMAdminConnect.

Answer: B

 

NEW QUESTION 76
Match the log file name with the CyberArk Component that generates the log.

Answer:

Explanation:

 

NEW QUESTION 77
One can create exceptions to the Master Policy based on ____________.

  • A. Safes
  • B. Platforms
  • C. Policies
  • D. Accounts

Answer: D

 

NEW QUESTION 78
When the PSM Gateway (also known as the HTML5 Gateway) is implemented, users must have an RDP client, such as MSTSC, installed on their endpoint in order to launch connections via the PSM.

  • A. False. When the PSM Gateway is implemented, the user only requires a browser in order launch a connection via the PSM.
  • B. True

Answer: B

 

NEW QUESTION 79
The vault supports a number of dual factor authentication methods.

  • A. FALSE
  • B. TRUE

Answer: A

Explanation:
Explanation/Reference:

 

NEW QUESTION 80
What is the name of the Platform parameter that determines the amount of time a person is allowed to use a One Time Password?

  • A. Timeout
  • B. ImmediateInterval
  • C. MinValidityPeriod
  • D. Interval

Answer: C

Explanation:
Explanation

 

NEW QUESTION 81
Which file would you modify to configure your Vault Server to forward Activity Logs to a SIEM or SYSLOG server?

  • A. padre.ini
  • B. PARagent.ini
  • C. ENEConf.ini
  • D. dbparm.ini

Answer: D

 

NEW QUESTION 82
Via Password Vault Web Access (PVWA), a user initiates a PSM connection to the target Linux machine using RemoteApp. When the client's machine makes an RDP connection to the PSM server, which user will be utilized?

  • A. Shadowuser
  • B. PSMConnect
  • C. Credentials stored in the Vault for the target machine
  • D. PSMAdminConnect

Answer: B

Explanation:
Explanation/Reference: https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/MESSAGES/RDP%
20file%20and%20RemoteApp%20connections.htm

 

NEW QUESTION 83
Multiple Password Vault Web Access (PVWA) servers are always all active.

  • A. FALSE
  • B. TRUE

Answer: B

 

NEW QUESTION 84
Select the best practice for storing the Master CD.

  • A. Store the CD in a secure location, such as a physical safe, and copy the contents of the CD to a folder secured with NTFS permissions on the vault.
  • B. Copy the files to the Vault Server and discard the CD.
  • C. Store the CD in a secure location, such as a physical safe.
  • D. Copy the contents of the CD to a Hardware Security Module (HSM) and discard the CD.

Answer: A

 

NEW QUESTION 85
Can ITALOG records be forwarded to the monitoring solution via Security Information and Event Management (SIEM) integration?

  • A. No
  • B. Yes

Answer: B

 

NEW QUESTION 86
In a Disaster Recovery (DR) environment, which of the following should NEVER be configured for automatic failover due to the possibility of split-brain phenomenon?

  • A. Password Vault Web Access (PVWA)
  • B. PTA
  • C. CPM
  • D. PSM

Answer: B

 

NEW QUESTION 87
Which file would you modify to configure your Vault Server to forward Activity Logs to a SIEM or SYSLOG server?

  • A. PARagent.ini
  • B. padr.ini
  • C. ENEConf.ini
  • D. dbparm.ini

Answer: D

 

NEW QUESTION 88
The Vault Internal safe contains the configuration for an LDAP integration.

  • A. FALSE
  • B. TRUE

Answer: A

 

NEW QUESTION 89
Assuming a safe has been configured to be accessible during certain hours of the day, a Vault Admin may still access that safe outside of those hours.

  • A. FALSE
  • B. TRUE

Answer: A

 

NEW QUESTION 90
Which file is used to integrate the Vault with your Radius server?

  • A. radius.ini
  • B. ENEConf.ini
  • C. paragent ini
  • D. dbparm.ini

Answer: D

 

NEW QUESTION 91
What is the primary purpose of Dual Control?

  • A. Non-repudiation (individual accountability)
  • B. Reduced risk of credential theft
  • C. More frequent password changes
  • D. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization

Answer: D

 

NEW QUESTION 92
When working with the CyberArk Disaster Recovery (DR) solution, which services should be running on the DR Vault?

  • A. CyberArk Vault Disaster Recovery, PrivateArk Database, CyberArk Event Notification Engine
  • B. CyberArk Vault Disaster Recovery
  • C. CyberArk Vault Disaster Recovery, PrivateArk Database, PrivateArk Server
  • D. CyberArk Vault Disaster Recovery (DR), PrivateArk Database

Answer: A

 

NEW QUESTION 93
An Auditor needs to login to the PSM in order to live monitor an active session. Which User ID is used to establish the RDP connection to the PSM server?

  • A. PSMAdminConnect
  • B. PSMMaster
  • C. PSMGwUser
  • D. PSMConnect

Answer: A

 

NEW QUESTION 94
......

Latest CAU302 Exam Dumps CyberArk Exam: https://www.exams-boost.com/CAU302-valid-materials.html

Related Blogs

more
CyberArk CAU302 Certification Practice Exam

Copyright © 2026 EXAMS-BOOST.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.