Achieve the EPM-DEF Exam Best Results with Help from CyberArk Certified Experts [Q28-Q47]

NEW QUESTION 28
What can you manage by using User Policies?

Just-In-Time endpoint access and elevation, access to removable drives, and Services access.

Access to Windows Services only.

Filesystem and registry access, access to removable drives, and Services access.

Just-In-Time endpoint access and elevation, access to removable drives, filesystem and registry access, Services access, and User account control monitoring.

NEW QUESTION 29
For Advanced Policies, what can the target operating system users be set to?

Local or AD users and groups, Azure AD User, Azure AD Group

AD Groups, Azure AD Groups

Local or AD users and groups

Local or AD users, Azure AD Users

NEW QUESTION 30
What are the policy targeting options available for a policy upon creation?

AD Users and Groups, Computers in AD Security Groups, Servers

Computers in this set, Computers in AD Security Groups, Users and Groups

OS Computers, EPM Sets, AD Users

EPM Sets, Computers in AD Security Groups, AD Users and AD Security Groups

NEW QUESTION 31
Match the Application Groups policy to their correct description.

NEW QUESTION 32
Match the Trusted Source to its correct definition:

NEW QUESTION 33
If Privilege Management is not working on an endpoint, what is the most likely cause that can be verified in the EPM Agent Log Files?

Behavior of the elevation prompt for administrators in Admin Approval Mode is set to “Prompt for Consent for non-Windows binaries”.

Agent version is incompatible.

UAC policy Admin Approval for the Built-in Administrator Account is set to “Disabled”.

UAC policy Run all administrators in Admin Approval Mode is set to “Enabled”.

NEW QUESTION 34
CyberArk EPM’s Ransomware Protection comes with file types to be protected out of the box. If an EPM Administrator would like to remove a file type from Ransomware Protection, where can this be done?

Policy Scope within Protect Against Ransomware

Authorized Applications (Ransomware Protection) within Application Groups

Set Security Permissions within Advanced Policies

Protected Files within Agent Configurations

NEW QUESTION 35
A policy needs to be created to block particular applications for a specific user group. Based on CyberArk’s policy naming best practices, what should be included in the policy’s name?

Policy creation date

Target use group

Creator of the policy

The policy’s Set name

NEW QUESTION 36
Where can you view CyberArk EPM Credential Lures events?

Application Catalog

Threat Protection Inbox

Events Management

Policy Audit

NEW QUESTION 37
An end user is experiencing performance issues on their device after the EPM Agent had been installed on their machine. What should the EPM Administrator do first to help resolve the issue?

Verify any 3rd party security solutions have been added to EPM’s Files To Be Ignored Always configuration and CyberArk EPM has also been excluded from the 3rd party security solutions.

Enable the Default Policy’s Privilege Management Control, Unhandled Privileged Applications in Elevate mode.

Rerun the agent installation on the user’s machine to repair the installation.

Uninstall or disable any anti-virus software prohibiting the EPM Agent functionalities.

NEW QUESTION 38
When adding the EPM agent to a pre-existing security stack on workstation, what two steps are CyberArk recommendations. (Choose two.)

Add any pre-existing security application to the Files to Be Ignored Always.

Add EPM agent to the other security tools exclusions.

EPM agent should never be run with any other security tools.

Create new advanced policies for each security tool.

NEW QUESTION 39
An EPM Administrator would like to include a particular file extension to be monitored and protected under Ransomware Protection. What setting should the EPM Administrator configure to add the extension?

Authorized Applications (Ransomware Protection)

Files to be Ignored Always

Anti-tampering Protection

Default Policies

NEW QUESTION 40
An EPM Administrator would like to exclude an application from all Threat Protection modules. Where should the EPM Administrator make this change?

Privilege Threat Protection under Policies.

Authorized Applications under Application Groups.

Protect Against Ransomware under Default Policies.

Threat Protection under Agent Configurations.

NEW QUESTION 41
What type of user can be created from the Threat Deception LSASS Credential Lures feature?

It does not create any users

A standard user

A local administrator user

A domain admin user

NEW QUESTION 42
When working with credential rotation at the EPM level, what is the minimum time period that can be set between connections?

1 hour

5 hours

24 hours

72 hours

NEW QUESTION 43
An EPM Administrator would like to enable CyberArk EPM’s Ransomware Protection in Restrict mode. What should the EPM Administrator do?

Set Block unhandled applications to On.

Set Protect Against Ransomware to Restrict.

Set Protect Against Ransomware to Restrict and Set Block unhandled applications to On.

Set Control unhandled applications to Detect.

NEW QUESTION 44
What are Trusted sources for Windows endpoints used for?

Creating policies that contain trusted sources of applications.

Defining applications that can be used by the developers.

Listing all the approved application to the end users.

Managing groups added by recommendation.

NEW QUESTION 45
CyberArk’s Privilege Threat Protection policies are available for which Operating Systems? (Choose two.)

Windows Workstations

Windows Servers

MacOS

Linux

NEW QUESTION 46
Which EPM reporting tool provides a comprehensive view of threat detection activity?

Threat Detection Dashboard

Detected Threats

Threat Detection Events

McAfee ePO Reports

NEW QUESTION 47
What unauthorized change can CyberArk EPM Ransomware Protection prevent?

Windows Registry Keys

Website Data

Local Administrator Passwords

Certificates in the Certificate Store

Achieve the EPM-DEF Exam Best Results with Help from CyberArk Certified Experts [Q28-Q47]

Leave a Reply Cancel reply

EPM-DEF Practice Tests

Related Certifications

Recent Posts

Categories

Archives