PAM-DEF試験無料問題集「CyberArk Defender - PAM 認定」
Match each component to its respective Log File location.
正解:
Explanation
Comprehensive Explanation: The log file locations for each component in CyberArk's Privileged Access Management (PAM) are specific to the function and operation of that component. The PTA System logs are typically found in the PrivateArk Server directory, specifically in the PADR folder. The PSM for SSH, which is the Privileged Session Manager for SSH, stores its logs in the tomcat logs directory. Lastly, the logs for Disaster Recovery operations are located in the CARKsymop logs directory on a Linux-based system.
References: The information is based on the CyberArk documentation and best practices for managing and maintaining log files for different components within the PAM solution123. The log file locations are essential for troubleshooting and auditing purposes, ensuring that all activities and changes are properly recorded and can be reviewed when necessary.
Match the connection component to the corresponding OS/Function.
正解:
Explanation
* A connection component is a set of parameters that defines how PSM connects to a target system using a specific protocol or application. Different connection components are suitable for different types of systems or functions. The correct matches are as follows:
* PSM-SSH: This connection component enables transparent connections to UNIX machines using the SSH protocol. It supports various UNIX flavors, such as Linux, Solaris, AIX, and HP-UX.
* PSM-RDP: This connection component enables transparent connections to Windows machines using the RDP protocol. It supports various Windows versions, such as Windows Server, Windows 10, and Windows 7.
* PSM-WinSCP: This connection component enables transparent connections to UNIX machines using the WinSCP application. It supports file transfer operations, such as upload, download, delete, and
* rename, between the local and remote machines.
* PSM-SQLPlus: This connection component enables transparent connections to Oracle databases using the SQL*Plus application. It supports various Oracle versions, such as Oracle 12c, Oracle 11g, and Oracle 10g.
* PSM-OS390: This connection component enables transparent connections to IBM mainframes using the OS/390 protocol. It supports various mainframe applications, such as TSO, CICS, and IMS.
References: Connection Components, Connection Component Parameters
You are onboarding 5,000 UNIX root accounts for rotation by the CPM. You discover that the CPM is unable to log in directly with the root account and will need to use a secondary account.
How should this be configured to allow for password management using least privilege?
How should this be configured to allow for password management using least privilege?
正解:C
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
Match each automatic remediation to the correct PTA security event.
正解:
Explanation
* Add To Pending: Unmanaged privileged account
* Rotate Credentials: Suspected credential theft
* Reconcile Credentials: Suspicious password change
Comprehensive Explanation: In CyberArk's Privileged Threat Analytics (PTA), automatic remediations are actions that can be configured to respond to specific security events. For the event of an unmanaged privileged account, the remediation "Add To Pending" is used to add the account to the pending accounts queue. When there is a suspected credential theft, "Rotate Credentials" is the remediation that initiates a password change. Lastly, for a suspicious password change event, "Reconcile Credentials" is the remediation that ensures the credentials are correct and valid1.
References:
* CyberArk Docs: Configure security events