2023年最新の有効なEPM-DEFテスト解答とCyberArk試験PDF問題を試そう
無料CyberArk EPM-DEF試験問題と解答トレーニングを提供していますFast2test
Cyberark EPM-DEF認定試験は、サイバーセキュリティ業界の専門家にとって挑戦的であるがやりがいのある成果です。 Cyberarkのソリューションにおける高レベルの専門知識を検証し、エンドポイントとサーバーでの特権アクセスを保護する際の卓越性へのコミットメントを実証します。
Cyberark EPM -DEF(Cyberark Defender -EPM)認定試験は、Cyberark Endpoint Privilege Manager(EPM)と協力しているサイバーセキュリティの専門家のスキルと知識を評価するために設計されています。この認定試験は、サイバーセキュリティの専門家が組織のエンドポイント全体で特権アクセスを効果的に管理する能力を検証するように設計されています。この試験では、Cyberark Endpoint Privilege Managerソリューションの実装、構成、および管理に焦点を当てています。
質問 # 16
A company is looking to manage their Windows Servers and Desktops with CyberArk EPM. Management would like to define different default policies between the Windows Servers and Windows Desktops.
What should the EPM Administrator do?
- A. CyberArk does not recommend installing EPM Agents on Windows Servers.
- B. Create a separate Set for Windows Servers and Windows Desktops.
- C. Create Advanced Policies to apply different policies between Windows Servers and Windows Desktops.
- D. In the Default Policies, exclude either the Windows Servers or the Windows Desktops.
正解:C
質問 # 17
Select the default threat intelligence source that requires additional licensing.
- A. VirusTotal
- B. Palo Alto WildFire
- C. NSRL
- D. CyberArk Application Risk Analysis Service
正解:B
質問 # 18
An EPM Administrator would like to include a particular file extension to be monitored and protected under Ransomware Protection. What setting should the EPM Administrator configure to add the extension?
- A. Files to be Ignored Always
- B. Authorized Applications (Ransomware Protection)
- C. Default Policies
- D. Anti-tampering Protection
正解:B
質問 # 19
What are valid policy options for JIT and elevation policies?
- A. Grant temporary access for all users, Policy name, Restart administrative processes in admin approval mode, Collect audit information
- B. Grant administrative access, Policy name, Log off to apply policy, Collect policy violation information
- C. Terminate administrative services, Grant policy access for, Policy name, Collect audit reports
- D. Grant temporary access for, Policy name, Terminate administrative processes when the policy expires, Collect audit information
正解:B
質問 # 20
For the CyberArk EPM Threat Deception Credential Lure feature, what is the recommendation regarding the username creation?
- A. The username should have a strong password associated.
- B. The username should not match to an existing account.
- C. The username should match the built-in local Administrator.
- D. The username should match to an existing account.
正解:B
質問 # 21
What is required to configure SAML authentication on EPM?
- A. Encrypted Assertion
- B. OAuth token
- C. Signed SAML Response
- D. Signed Authentication Request
正解:C
質問 # 22
When deploying EPM and in the Privilege Management phase what is the purpose of Discovery?
- A. To identify all administrative level events
- B. To identify both administrative and non-administrative level events
- C. To identify non-administrative threats
- D. To identify all non-administrative events
正解:B
質問 # 23
An EPM Administrator is looking to enable the Threat Deception feature, under what section should the EPM Administrator go to enable this feature?
- A. Threat Protection Inbox
- B. Threat Intelligence
- C. Policy Audit
- D. Policies
正解:D
質問 # 24
Match the Trusted Source to its correct definition:
正解:
解説:

質問 # 25
Which user or group will not be removed as part of CyberArk EPM's Remove Local Administrators feature?
- A. Admin Users
- B. Built-in Local Administrator
- C. Power Users
- D. Domain Users
正解:B
質問 # 26
Match the Application Groups policy to their correct description.
正解:
解説:

質問 # 27
How does a Trusted Source policy affect an application?
- A. Applications will be allowed to run and will inherit the process token from the EPM agent.
- B. Applications will be allowed to run always in elevated mode.
- C. Applications will be allowed to run and will only elevate if required.
- D. Application from the defined trusted sources must be configured on a per application basis, in order to define run and elevation parameters.
正解:D
質問 # 28
How does EPM help streamline security compliance and reporting?
- A. Use of automated distribution of reports to the security team
- B. Provides reports in standard formats such as PDF, Word and Excel
- C. Create custom reports
- D. Print reports
正解:B
質問 # 29
When enabling Threat Protection policies, what should an EPM Administrator consider? (Choose two.)
- A. Threat Protection features are not available in all regions.
- B. Certain Threat Protection policies apply for specific applications not found on all machines
- C. Threat Protection policies requires an additional agent to be installed.
- D. Some Threat Protection policies are applicable only for Windows Servers as opposed to Workstations.
正解:B、D
質問 # 30
When working with credential rotation at the EPM level, what is the minimum time period that can be set between connections?
- A. 5 hours
- B. 72 hours
- C. 1 hour
- D. 24 hours
正解:B
質問 # 31
Where can you view CyberArk EPM Credential Lures events?
- A. Application Catalog
- B. Threat Protection Inbox
- C. Policy Audit
- D. Events Management
正解:B
質問 # 32
Can the EPM Set Administrator configure Audit Dialog Pop-ups for the Record Audit Video option?
- A. Yes, when Audit Video recording started, when not enough disk space to start the video recording, and when video recording is initializing.
- B. No, Audit Video is only available without the possibility of having End-User dialog pop-ups.
- C. Yes, when Audit Video recording started, when Audit Video recording stopped, and when Audit Recording video reached size limit.
- D. Yes, when Audit Video recording started, when Audit Video recording is uploaded to the EPM server, and when audit recording cannot be initialized.
正解:B
質問 # 33
If Privilege Management is not working on an endpoint, what is the most likely cause that can be verified in the EPM Agent Log Files?
- A. Agent version is incompatible.
- B. UAC policy Run all administrators in Admin Approval Mode is set to "Enabled".
- C. UAC policy Admin Approval for the Built-in Administrator Account is set to "Disabled".
- D. Behavior of the elevation prompt for administrators in Admin Approval Mode is set to "Prompt for Consent for non-Windows binaries".
正解:B
質問 # 34
A Helpdesk technician needs to provide remote assistance to a user whose laptop cannot connect to the Internet to pull EPM policies. What CyberArk EPM feature should the Helpdesk technician use to allow the user elevation capabilities?
- A. Elevate Trusted Application If Necessary
- B. Loosely Connected Devices Credential Management
- C. Offline Policy Authorization Generator
- D. Just In Time Access and Elevation
正解:D
質問 # 35
An EPM Administrator would like to enable CyberArk EPM's Ransomware Protection in Restrict mode. What should the EPM Administrator do?
- A. Set Protect Against Ransomware to Restrict and Set Block unhandled applications to On.
- B. Set Block unhandled applications to On.
- C. Set Protect Against Ransomware to Restrict.
- D. Set Control unhandled applications to Detect.
正解:A
質問 # 36
......
トップクラスCyberArk EPM-DEFオンライン問題集:https://jp.fast2test.com/EPM-DEF-premium-file.html
EPM-DEF練習問題集で検証済みのFast2test更新された62問題あります:https://drive.google.com/open?id=1w4QXerq1EW8gx4amS1akjr3Lk72QHToh