1. Home
  2. CyberArk
  3. Sentry
  4. PAM-SEN
  5. CyberArk Sentry PAM Questions and Answers

Pass the CyberArk Sentry PAM-SEN Questions and answers with CertsForce

 CyberArk Exams      Go to Exam Detail      Get Premium Access
Viewing page 2 out of 4 pages
Viewing questions 11-20 out of questions
Questions # 11:

What is the recommended method to determine if a PVWA is unavailable and should be disabled in a load balancing pool?

Options:
A.

Monitor Port 443 on the PVWA server

B.

Monitor Port 1858 on the PVWA server

C.

Ping the PVWA server

D.

Monitor Port 3389 on the PVWA server

Expert Solution
Questions # 12:

You are installing a CPM.

In addition to Add Safes, Add/Update Users, Reset Users’ Passwords and Manage Server File Categories, which Vault authorization(s) does a CyberArk user need to install the CPM?

Options:
A.

Manage Directory Mapping

B.

Activate Users

C.

Backup All Safes, Restore All Safes

D.

Audit Users, Add Network Areas

Expert Solution
Questions # 13:

Which method can be used to directly authenticate users to PSM for SSH? (Choose three.)

Options:
A.

CyberArk authentication Most Voted

B.

LDAP authentication Most Voted

C.

RADIUS authentication Most Voted

D.

Windows authentication

E.

SAML authentication

F.

OpenID Connect (OIDC) authentication

Expert Solution
Questions # 14:

You are configuring SNMP remote monitoring for your organization’s Vault servers.

In the PARAgent.ini, which parameter specifies the destination of the Vault SNMP traps?

Options:
A.

SNMPHostIP Most Voted

B.

SNMPTrapPort

C.

SNMPCommunity

D.

SNMPVersion

Expert Solution
Questions # 15:

Which components support load balancing? (Choose two.)

Options:
A.

CPM

B.

PVWA

C.

PSM

D.

PTA

E.

EPV

Expert Solution
Questions # 16:

A vault admin received an email notification that a password verification process has failed Which service sent the message?

Options:
A.

The PrivateArk Server Service on the Vault.

B.

The CyberArk Password Manager service on the Components Server.

C.

The CyberArk Event Notification Engine Service on the Vault

D.

The CyberArk Privileged Session Manager service on the Vault.

Expert Solution
Questions # 17:

Which parameter must be identical for both the Identity Provider (IdP) and the PVWA?

Options:
A.

IdP “EntityID” and “PartnerIdentityProvider Name” in PVWA saml.config file

B.

IdP “User name” and “SingleSignOnServiceUrl” in PVWA saml.config file

C.

IdP “Audience” and “ServiceProviderName” in the PVWA saml.config file

D.

IdP “Secure hash algorithm” and “Certificate” in the PVWA saml.config file

Expert Solution
Questions # 18:

What utility is used to create or update a credential file?

Options:
A.

CreateCredFile exe

B.

CAVaultManager.exe

C.

Central Policy Manager

D.

Password Vault Web Access

Expert Solution
Questions # 19:

In addition to bit rate and estimated total duration of recordings per day, what is needed to determine the amount of storage required for PSM recordings?

Options:
A.

retention period

B.

number of PSMs

C.

number of users

D.

number of targets

Expert Solution
Questions # 20:

You are installing multiple PVWAs behind a load balancer.

Which statement is correct?

Options:
A.

Port 1858 must be opened between the load balancer and the PVWAs.

B.

The load balancer must be configured in DNS round robin.

C.

The load balancer must support "sticky sessions".

D.

The LoadBalancerClientAddressHeader parameter in the PVWA.ini file must be set.

Expert Solution
Viewing page 2 out of 4 pages
Viewing questions 11-20 out of questions