[Q24-Q42] EPM-DEF試験正確な問題集、学習ノートと理論 [2023年12月]

Share

EPM-DEF試験正確な問題集、学習ノートと理論 [2023年12月]

100%高得点合格保証EPM-DEF無制限62解答

質問 # 24
An EPM Administrator would like to include a particular file extension to be monitored and protected under Ransomware Protection. What setting should the EPM Administrator configure to add the extension?

  • A. Files to be Ignored Always
  • B. Anti-tampering Protection
  • C. Authorized Applications (Ransomware Protection)
  • D. Default Policies

正解:C


質問 # 25
When enabling Threat Protection policies, what should an EPM Administrator consider? (Choose two.)

  • A. Some Threat Protection policies are applicable only for Windows Servers as opposed to Workstations.
  • B. Certain Threat Protection policies apply for specific applications not found on all machines
  • C. Threat Protection policies requires an additional agent to be installed.
  • D. Threat Protection features are not available in all regions.

正解:A、B


質問 # 26
A policy needs to be created to block particular applications for a specific user group. Based on CyberArk's policy naming best practices, what should be included in the policy's name?

  • A. Creator of the policy
  • B. The policy's Set name
  • C. Policy creation date
  • D. Target use group

正解:D


質問 # 27
Before enabling Ransomware Protection, what should the EPM Administrator do first?

  • A. Enable Threat Protection and Threat Intelligence modules.
  • B. Enable the Control Applications Downloaded From The Internet feature in Restrict mode.
  • C. Review the Authorized Applications (Ransomware Protection) group and update if necessary.
  • D. Enable the Privilege Management Inbox in Elevate mode.

正解:C


質問 # 28
What type of user can be created from the Threat Deception LSASS Credential Lures feature?

  • A. A domain admin user
  • B. A standard user
  • C. It does not create any users
  • D. A local administrator user

正解:B


質問 # 29
What feature is designed to exclude applications from CyberArk EPM's Ransomware Protection, without whitelisting the application launch?

  • A. Threat Intelligence
  • B. Authorized Applications (Ransomware Protection)
  • C. Trusted Sources
  • D. Policy Recommendations

正解:B


質問 # 30
What are Trusted sources for Windows endpoints used for?

  • A. Managing groups added by recommendation.
  • B. Creating policies that contain trusted sources of applications.
  • C. Defining applications that can be used by the developers.
  • D. Listing all the approved application to the end users.

正解:D


質問 # 31
When deploying Ransomware Protection, what tasks should be considered before enabling this functionality?
(Choose two.)

  • A. Add additional files, folders, and/or file extensions to be included to Ransomware Protection
  • B. Add trusted software to the Authorized Applications (Ransomware protection) Application Group
  • C. Add trusted software to the Allow Application Group
  • D. Enable Detect privileged unhandled applications under Default Policies

正解:A、B


質問 # 32
An EPM Administrator needs to create a policy to allow the MacOS developers elevation to an application.
What type of policy should be used?

  • A. Elevate Application Group
  • B. Developer Applications Application Group
  • C. Elevate Trusted Applications If Necessary Advanced Policy
  • D. Elevate MacOS Policy

正解:C


質問 # 33
What are the policy targeting options available for a policy upon creation?

  • A. OS Computers, EPM Sets, AD Users
  • B. AD Users and Groups, Computers in AD Security Groups, Servers
  • C. Computers in this set, Computers in AD Security Groups, Users and Groups
  • D. EPM Sets, Computers in AD Security Groups, AD Users and AD Security Groups

正解:D


質問 # 34
If Privilege Management is not working on an endpoint, what is the most likely cause that can be verified in the EPM Agent Log Files?

  • A. UAC policy Run all administrators in Admin Approval Mode is set to "Enabled".
  • B. Agent version is incompatible.
  • C. Behavior of the elevation prompt for administrators in Admin Approval Mode is set to "Prompt for Consent for non-Windows binaries".
  • D. UAC policy Admin Approval for the Built-in Administrator Account is set to "Disabled".

正解:A


質問 # 35
Can the EPM Set Administrator configure Audit Dialog Pop-ups for the Record Audit Video option?

  • A. Yes, when Audit Video recording started, when Audit Video recording is uploaded to the EPM server, and when audit recording cannot be initialized.
  • B. Yes, when Audit Video recording started, when not enough disk space to start the video recording, and when video recording is initializing.
  • C. No, Audit Video is only available without the possibility of having End-User dialog pop-ups.
  • D. Yes, when Audit Video recording started, when Audit Video recording stopped, and when Audit Recording video reached size limit.

正解:C


質問 # 36
An EPM Administrator would like to exclude an application from all Threat Protection modules. Where should the EPM Administrator make this change?

  • A. Protect Against Ransomware under Default Policies.
  • B. Authorized Applications under Application Groups.
  • C. Threat Protection under Agent Configurations.
  • D. Privilege Threat Protection under Policies.

正解:B


質問 # 37
An EPM Administrator would like to enable a Threat Protection policy, however, the policy protects an application that is not installed on all endpoints.
What should the EPM Administrator do?

  • A. Split up the endpoints in to separate Sets and enable Threat Protection for only one of the Sets.
  • B. Enable the Threat Protection policy and configure the Policy Targets.
  • C. Do not enable the Threat Protection policy.
  • D. Enable the Threat Protection policy only in Detect mode.

正解:A


質問 # 38
CyberArk's Privilege Threat Protection policies are available for which Operating Systems? (Choose two.)

  • A. MacOS
  • B. Linux
  • C. Windows Workstations
  • D. Windows Servers

正解:C、D


質問 # 39
When working with credential rotation at the EPM level, what is the minimum time period that can be set between connections?

  • A. 1 hour
  • B. 72 hours
  • C. 24 hours
  • D. 5 hours

正解:B


質問 # 40
When blocking applications, what is the recommended practice regarding the end-user UI?

  • A. Show a block prompt for blocked applications.
  • B. Enable the Default Deny policy.
  • C. Hide the CyberArk EPM Agent icon in the system tray.
  • D. Show no prompts for blocked applications.

正解:A


質問 # 41
What can you manage by using User Policies?

  • A. Access to Windows Services only.
  • B. Filesystem and registry access, access to removable drives, and Services access.
  • C. Just-In-Time endpoint access and elevation, access to removable drives, filesystem and registry access, Services access, and User account control monitoring.
  • D. Just-In-Time endpoint access and elevation, access to removable drives, and Services access.

正解:C


質問 # 42
......

EPM-DEF問題集PDF、EPM-DEF最速合格したいなら:https://jp.fast2test.com/EPM-DEF-premium-file.html

EPM-DEF練習試験問題集試験:https://drive.google.com/open?id=1w4QXerq1EW8gx4amS1akjr3Lk72QHToh


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어