Questions for the CAU201 were updated on : Jan 11 ,2025
If a user is a member of more than one group that has authorizations on a safe, by default that user is
granted________.
B
It is possible to control the hours of the day during which a user may log into the vault.
A
VAULT authorizations may be granted to_____.
C
What is the purpose of the Interval setting in a CPM policy?
A
All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of
the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the
show, copy, and connect buttons on those passwords at any time without confirmation. The
members of the AD group Operations Staff need to be able to use the show, copy and connect
buttons on those passwords on an emergency basis, but only with the approval of a member of
Operations Managers never need to be able to use the show, copy or connect buttons themselves.
Which safe permission do you need to grant Operations Staff? Check all that apply.
ABC
What is the purpose of the Immediate Interval setting in a CPM policy?
B
Explanation:
When the Master Policy enforces check-in/check-out exclusive access, passwords are changed when
the user clicks the Release button and releases the account. This is based on the ImmediateInterval
parameter in the applied platform. If the user forgets to release the account, it is automatically
released and changed by the CPM after a predetermined number of minutes, defined in the
MinValidityPeriod parameter specified in the platform
Which utilities could you use to change debugging levels on the vault without having to restart the
vault. Select all that apply.
AB
Explanation:
PAR-Private Ark Remote Control Agent allows you to perform several Vault admin tasks (without
restarting the Vault) and view machine statistics.
A Logon Account can be specified in the Master Policy.
B
For an account attached to a platform that requires Dual Control based on a Master Policy exception,
how would you configure a group of users to access a password without approval.
D
As long as you are a member of the Vault Admins group, you can grant any permission on any safe
that you have access to.
B
Explanation:
Being in Vault admins group only give you access to safes which are created during installation (safe
created in installation process ) -This is clearly mentioned in documents .
Which report provides a list of account stored in the vault.
A
When on-boarding account using Accounts Feed, Which of the following is true?
B
Target account platforms can be restricted to accounts that are stored m specific Safes using the
Allowed Safes property.
A
Which one the following reports is NOT generated by using the PVWA?
C
PSM captures a record of each command that was executed in Unix.
A