QUESTION: 9

Which processes reduce the risk of credential theft? (Choose two.)

require dual control password access approval
require password change every X days
enforce check-in/check-out exclusive access
enforce one-time password access

Answer(s): C,D

You are onboarding 5,000 UNIX root accounts for rotation by the CPM. You discover that the CPM is unable to log in directly with the root account and will need to use a secondary account.
How can this be con gured to allow for password management using least privilege?

Con gure each CPM to use the correct logon account.
Con gure each CPM to use the correct reconcile account.
Con gure the UNIX platform to use the correct logon account.
Con gure the UNIX platform to use the correct reconcile account.

Answer(s): C

Reveal Solution Next Question

QUESTION: 11

DRAG DROP (Drag and Drop is not supported).
ADR Vault became active due to a failure of the primary Vault. Service on the primary Vault has now been restored. Arrange the steps to return the DR vault to its normal standby mode in the correct sequence.

See Explanation section for answer.

Answer(s): A

Explanation:

1. Shut down the PrivateArk Server Service on the DR Vault.
2. In the PADR.ini le, set Failover Mode = No and remove the last two lines.
3. Start the PrivateArk Disaster Recovery Service.

Reveal Solution Next Question

QUESTION: 12

Which methods can you use to add a user directly to the Vault Admin Group? (Choose three.)

REST API
PrivateArk Client
PACLI
PVWA
Active Directory
Sailpoint

Answer(s): A,B,E

Reveal Solution Next Question

Free PAM-DEF Exam Braindumps (page: 3)

QUESTION: 9

QUESTION: 10

QUESTION: 11

Explanation:

QUESTION: 12