QUESTION: 5

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group Operations Staff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of Operations Managers never need to be able to use the show, copy or connect buttons themselves.
Which safe permission do you need to grant Operations Staff? Check all that apply.

Use Accounts
Retrieve Accounts
Authorize Password Requests
Access Safe without Authorization

Answer(s): A,B,C

Reveal Solution Next Question

QUESTION: 6

What is the purpose of the Immediate Interval setting in a CPM policy?

To control how often the CPM looks for System Initiated CPM work.
To control how often the CPM looks for User Initiated CPM work.
To control how often the CPM rests between password changes.
To Control the maximum amount of time the CPM will wait for a password change to complete.

Answer(s): B

Explanation:

When the Master Policy enforces check-in/check-out exclusive access, passwords are changed when the user clicks the Release button and releases the account. This is based on the ImmediateInterval parameter in the applied platform. If the user forgets to release the account, it is automatically released and changed by the CPM after a predetermined number of minutes, defined in the MinValidityPeriod parameter specified in the platform

Reveal Solution Next Question