Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

PAM-DEF by CyberArk - Page 1 | ExamCademy

Mode Selection

Question 1

Question 2

Question 3

Which parameters can be used to harden the Credential Files (CredFiles) while using CreateCredFile Utility? (Choose three.)

A OS Username
B Current machine IP
C Current machine hostname
D Operating System Type (Linux/Windows/HP-UX)
E Vault IP Address
F Time Frame

Question 4

You created a new safe and need to ensure the user group cannot see the password, but can connect through the PSM.
Which safe permissions must you grant to the group? (Choose two.)

A List Accounts
B Use Accounts
C Access Safe without Confirmation
D Retrieve Files
E Confirm Request

Question 5

You are onboarding 5,000 UNIX root accounts for rotation by the CPM. You discover that the CPM is unable to log in directly with the root account and will need to use a secondary account.
How can this be configured to allow for password management using least privilege?

A Configure each CPM to use the correct logon account.
B Configure each CPM to use the correct reconcile account.
C Configure the UNIX platform to use the correct logon account.
D Configure the UNIX platform to use the correct reconcile account.

Question 6

When are external vault users and groups synchronized by default?

A They are synchronized once every 24 hours between 1 AM and 5 AM.
B They are synchronized once every 24 hours between 7 PM and 12 AM.
C They are synchronized every 2 hours.
D They are not synchronized according to a specific schedule.

Question 7

Where can a user with the appropriate permissions generate a report? (Choose two.)

A PVWA > Reports
B PrivateArk Client
C Cluster Vault Manager
D PrivateArk Server Monitor
E PARClient

Question 8

Users are unable to launch Web Type Connection components from the PSM server. Your manager asked you to open the case with CyberArk Support.
Which logs will be most useful for the CyberArk Support Team to debug the issue? (Choose three.)

A PSMConsole.log
B PSMDebug.log
C PSMTrace.log
D <Session_ID>.Component.log
E PMconsole.log
F ITALog.log

Question 9

You have been asked to identify the up or down status of Vault Services.
Which CyberArk utility can you use to accomplish this task?

A PrivateArk Central Administration Console
B PAS Reporter
C PrivateArk Remote Control Agent
D Syslog

Question 10

Which file must be edited on the Vault to configure it to send data to PTA?

A dbparm.ini
B PARAgent.ini
C my.ini
D padr.ini

Question 11

DRAG DROP -
A new HTML5 Gateway has been deployed in your organization.
From the PVWA, arrange the steps to configure a PSM host to use the HTML5 Gateway in the correct sequence.

Question Image

Question 12

To change the safe where recordings are kept for a specific platform, which setting must you update in the platform configuration?

A SessionRecorderSafe
B SessionSafe
C RecordingsPath
D RecordingLocation

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Log In / Sign Up

Page 1 of 3 • Questions 1-25 of 56

1 2 3

→

Know a question that should be here? Contribute to this exam

What do you need on the Vault to support LDAP over SSL?

A CA Certificate(s) used to sign the External Directory certificate
B RECPRV.key
C a private key for the external directory
D self-signed Certificate(s) for the Vault

What is the easiest way to duplicate an existing platform?

A From PrivateArk, copy/paste the appropriate Policy.ini file; then rename it.
B From the PVWA, navigate to the platforms page, select an existing platform that is similar to the new target account platform and then click Duplicate; name the new platform.
C From PrivateArk, copy/paste the appropriate settings in PVConfiguration.xml; then update the policyName variable.
D From the PVWA, navigate to the platforms page, select an existing platform that is similar to the new target account platform, manually update the platform settings and click "Save as" INSTEAD of save to duplicate and rename the platform.