CyberArk Defender Access (ACCESS-DEF) Free Practice Test

Question 1

What is considered an "Identity Provider Initiated" login to an application?

A. After visiting a third-party web app, a user is redirected to CyberArk Identity for authentication.

B. After signing in to the CyberArk Identity portal, a user launches a SAML app by clicking an app tile.

C. A user signs in to the CyberArk Identity portal and takes a screenshot of the portal to send to IT.

D. A user visits a third party web app directly and signs in with local credentials.

Correct Answer: B

Question 2

Your organization wants to limit access to the CyberArk Identity user portal to only corporate issued domain-joined laptops without the use of a VPN.
How can you achieve this?

A. 'Use the CyberArk Conjur integration.

B. Use the Windows Cloud Agent and CyberArk Identity Connector with Integrated Windows Authentication

C. Define a range of internal corporate IP addresses and use them to restrict access.

D. Use the Windows Device Trust agent with certificate-based authentication.

Correct Answer: D

Question 3

Which CyberArk Identity service do you use to find a list of pre-built app connectors?

A. Reports

B. AppCatalogue

C. CyberArk Identity Downloads

D. User Directory

Correct Answer: B

Question 4

When configuring an application to use the App Gateway, you do not have to change any configurations in the application directly. You enable the application for App Gateway access in the Admin Portal and input the existing URL that users enter to open the application. You can either use an external URL that CyberArk Identity automatically generates, or you can continue using an existing internal URL.
What is a disadvantage of using an existing internal URL for App Gateway connections?

A. More configuration is needed because you must upload the URL certificate and private key, and edit DNS settings.

B. Users must use different URLs depending on whether they access the application internally or externally.

C. Users must use the same URLs regardless of whether they access the application internally or externally and this may confuse them.

D. Existing links and bookmarks do not work outside of the corporate network.

Correct Answer: A

Question 5

Refer to the exhibit.
Within the "Allow user notifications on multiple devices", if you leave the setting as Default (--), what happens if a user triggers a MFA Push notification and has enrolled three different devices?

A. The push notification will be sent to the last enrolled device only.

B. The push notification will be sent to all enrolled devices.

C. The push notification will be sent to none of the enrolled devices.

D. The push notification will be sent to the first enrolled device only.

Correct Answer: D

Question 6

Which browsers are supported for the "Land and Catch" feature? (Choose three.)

A. Microsoft Edge

B. Firefox

C. Opera

D. [Microsoft Internet Explorer

E. Google Chrome

F. Apple Safari

Correct Answer: A,B,E

Question 7

What should you do if you forget your CyberArk Authenticator PIN?

A. Reinstall CyberArk Authenticator on top of the existing installation.

B. Submit a support case to request a new PIN.

C. Click on the Reset PIN code button.

D. Contact the Administrator to unlock the CvberArk Authenticator.

Correct Answer: C

Welcome to TestSimulate

CyberArk Defender Access (ACCESS-DEF) Free Practice Test