Spring Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Vce CPC-CDE-RECERT Questions Latest

CyberArk CDE-CPC Recertification Questions and Answers

Question 5

You are implementing LDAPS Integration for a standard Privilege Cloud environment.

Which information must be provided to the CyberArk Privilege Cloud support team through a Service Request? (Choose 2.)

Options:

A.

LDAPS certificate chain for all domain controllers to be integrated

B.

LDAP bind username and password used to authenticate to the directory to be integrated

C Domain Base Context used to locate the users and groups in the Active Directory to be integrated

C.

Fully Qualified Domain Name and IP Address of the domain controllers to be integrated

D.

remote port set during secure tunnel configuration for each domain controller to be integrated

Question 6

What is the purpose of the PSM Health Check hardening?

Options:

A.

Remove IIS settings which can be considered security vulnerabilities.

B.

Validate that the PSM is ready to be placed behind a load balancer.

C.

Confirm that the Windows Services for PSM are running on the server.

D.

Ensure that the AppLocker script does not have any syntax errors.

Question 7

You want to add an additional maintenance user on the PSM for SSH. How can you accomplish this if InstallCyberArkSSHD is set to Integrated?

Options:

A.

Create a local user and add it to the PSMP_MaintenanceUsers group.

B.

Create a local user called proxymaster and add it to /etc/pam.d/auth-password.

C.

Create a local user and add it to the group configured for the parameter AllowGroups in the /etc/ssh/sshd_config file.

D.

Create a local user called psmpmng and add it to the PSMMaintenance group in /etc/pam.d/auth-password.

Question 8

Which actions must be performed when manually hardening a SUSE server with PSM for SSH? (Choose two.)

Options:

A.

Update settings in the sshd_config file on the server.

B.

Add the PSM for SSH gateway user to the passwd file.

C.

Validate that the psmpgwuser.cred file has correct permissions.

D.

Remove all users and groups from the passwd file.

E.

Add the PSM gateway user to the wheel group.