
EPM-DEF試験正確な問題集、学習ノートと理論 [2023年12月]
100%高得点合格保証EPM-DEF無制限62解答
質問 # 24
An EPM Administrator would like to include a particular file extension to be monitored and protected under Ransomware Protection. What setting should the EPM Administrator configure to add the extension?
- A. Files to be Ignored Always
- B. Anti-tampering Protection
- C. Authorized Applications (Ransomware Protection)
- D. Default Policies
正解:C
質問 # 25
When enabling Threat Protection policies, what should an EPM Administrator consider? (Choose two.)
- A. Some Threat Protection policies are applicable only for Windows Servers as opposed to Workstations.
- B. Certain Threat Protection policies apply for specific applications not found on all machines
- C. Threat Protection policies requires an additional agent to be installed.
- D. Threat Protection features are not available in all regions.
正解:A、B
質問 # 26
A policy needs to be created to block particular applications for a specific user group. Based on CyberArk's policy naming best practices, what should be included in the policy's name?
- A. Creator of the policy
- B. The policy's Set name
- C. Policy creation date
- D. Target use group
正解:D
質問 # 27
Before enabling Ransomware Protection, what should the EPM Administrator do first?
- A. Enable Threat Protection and Threat Intelligence modules.
- B. Enable the Control Applications Downloaded From The Internet feature in Restrict mode.
- C. Review the Authorized Applications (Ransomware Protection) group and update if necessary.
- D. Enable the Privilege Management Inbox in Elevate mode.
正解:C
質問 # 28
What type of user can be created from the Threat Deception LSASS Credential Lures feature?
- A. A domain admin user
- B. A standard user
- C. It does not create any users
- D. A local administrator user
正解:B
質問 # 29
What feature is designed to exclude applications from CyberArk EPM's Ransomware Protection, without whitelisting the application launch?
- A. Threat Intelligence
- B. Authorized Applications (Ransomware Protection)
- C. Trusted Sources
- D. Policy Recommendations
正解:B
質問 # 30
What are Trusted sources for Windows endpoints used for?
- A. Managing groups added by recommendation.
- B. Creating policies that contain trusted sources of applications.
- C. Defining applications that can be used by the developers.
- D. Listing all the approved application to the end users.
正解:D
質問 # 31
When deploying Ransomware Protection, what tasks should be considered before enabling this functionality?
(Choose two.)
- A. Add additional files, folders, and/or file extensions to be included to Ransomware Protection
- B. Add trusted software to the Authorized Applications (Ransomware protection) Application Group
- C. Add trusted software to the Allow Application Group
- D. Enable Detect privileged unhandled applications under Default Policies
正解:A、B
質問 # 32
An EPM Administrator needs to create a policy to allow the MacOS developers elevation to an application.
What type of policy should be used?
- A. Elevate Application Group
- B. Developer Applications Application Group
- C. Elevate Trusted Applications If Necessary Advanced Policy
- D. Elevate MacOS Policy
正解:C
質問 # 33
What are the policy targeting options available for a policy upon creation?
- A. OS Computers, EPM Sets, AD Users
- B. AD Users and Groups, Computers in AD Security Groups, Servers
- C. Computers in this set, Computers in AD Security Groups, Users and Groups
- D. EPM Sets, Computers in AD Security Groups, AD Users and AD Security Groups
正解:D
質問 # 34
If Privilege Management is not working on an endpoint, what is the most likely cause that can be verified in the EPM Agent Log Files?
- A. UAC policy Run all administrators in Admin Approval Mode is set to "Enabled".
- B. Agent version is incompatible.
- C. Behavior of the elevation prompt for administrators in Admin Approval Mode is set to "Prompt for Consent for non-Windows binaries".
- D. UAC policy Admin Approval for the Built-in Administrator Account is set to "Disabled".
正解:A
質問 # 35
Can the EPM Set Administrator configure Audit Dialog Pop-ups for the Record Audit Video option?
- A. Yes, when Audit Video recording started, when Audit Video recording is uploaded to the EPM server, and when audit recording cannot be initialized.
- B. Yes, when Audit Video recording started, when not enough disk space to start the video recording, and when video recording is initializing.
- C. No, Audit Video is only available without the possibility of having End-User dialog pop-ups.
- D. Yes, when Audit Video recording started, when Audit Video recording stopped, and when Audit Recording video reached size limit.
正解:C
質問 # 36
An EPM Administrator would like to exclude an application from all Threat Protection modules. Where should the EPM Administrator make this change?
- A. Protect Against Ransomware under Default Policies.
- B. Authorized Applications under Application Groups.
- C. Threat Protection under Agent Configurations.
- D. Privilege Threat Protection under Policies.
正解:B
質問 # 37
An EPM Administrator would like to enable a Threat Protection policy, however, the policy protects an application that is not installed on all endpoints.
What should the EPM Administrator do?
- A. Split up the endpoints in to separate Sets and enable Threat Protection for only one of the Sets.
- B. Enable the Threat Protection policy and configure the Policy Targets.
- C. Do not enable the Threat Protection policy.
- D. Enable the Threat Protection policy only in Detect mode.
正解:A
質問 # 38
CyberArk's Privilege Threat Protection policies are available for which Operating Systems? (Choose two.)
- A. MacOS
- B. Linux
- C. Windows Workstations
- D. Windows Servers
正解:C、D
質問 # 39
When working with credential rotation at the EPM level, what is the minimum time period that can be set between connections?
- A. 1 hour
- B. 72 hours
- C. 24 hours
- D. 5 hours
正解:B
質問 # 40
When blocking applications, what is the recommended practice regarding the end-user UI?
- A. Show a block prompt for blocked applications.
- B. Enable the Default Deny policy.
- C. Hide the CyberArk EPM Agent icon in the system tray.
- D. Show no prompts for blocked applications.
正解:A
質問 # 41
What can you manage by using User Policies?
- A. Access to Windows Services only.
- B. Filesystem and registry access, access to removable drives, and Services access.
- C. Just-In-Time endpoint access and elevation, access to removable drives, filesystem and registry access, Services access, and User account control monitoring.
- D. Just-In-Time endpoint access and elevation, access to removable drives, and Services access.
正解:C
質問 # 42
......
EPM-DEF問題集PDF、EPM-DEF最速合格したいなら:https://jp.fast2test.com/EPM-DEF-premium-file.html
EPM-DEF練習試験問題集試験:https://drive.google.com/open?id=1w4QXerq1EW8gx4amS1akjr3Lk72QHToh