EPM-DEF Online Practice Questions and Answers

A Helpdesk technician needs to provide remote assistance to a user whose laptop cannot connect to the Internet to pull EPM policies. What CyberArk EPM feature should the Helpdesk technician use to allow the user elevation capabilities?

A. Offline Policy Authorization Generator

B. Elevate Trusted Application If Necessary

C. Just In Time Access and Elevation

D. Loosely Connected Devices Credential Management

Which setting in the agent configuration controls how often the agent sends events to the EPM Server?

A. Event Queue Flush Period

B. Heartbeat Timeout

C. Condition Timeout

D. Policy Update Rate

Which policy can be used to improve endpoint performance for applications commonly used for software development?

A. Developer Applications

B. Trusted Application

C. Trusted Source

D. Software Updater

CyberArk's Privilege Threat Protection policies are available for which Operating Systems? (Choose two.)

A. Windows Workstations

B. Windows Servers

C. MacOS

D. Linux

An EPM Administrator would like to include a particular file extension to be monitored and protected under Ransomware Protection. What setting should the EPM Administrator configure to add the extension?

A. Authorized Applications (Ransomware Protection)

B. Files to be Ignored Always

C. Anti-tampering Protection

D. Default Policies

When enabling Threat Protection policies, what should an EPM Administrator consider? (Choose two.)

A. Some Threat Protection policies are applicable only for Windows Servers as opposed to Workstations.

B. Certain Threat Protection policies apply for specific applications not found on all machines

C. Threat Protection policies requires an additional agent to be installed.

D. Threat Protection features are not available in all regions.

How does EPM help streamline security compliance and reporting?

A. Use of automated distribution of reports to the security team

B. Provides reports in standard formats such as PDF, Word and Excel

C. Print reports

D. Create custom reports

After a clean installation of the EPM agent, the local administrator password is not being changed on macOS and the old password can still be used to log in.

What is a possible cause?

A. Secure Token on macOS endpoint is not enabled.

B. EPM agent is not able to connect to the EPM server.

C. After installation, Full Disk Access for the macOS agent to support EPM policies was not approved.

D. Endpoint password policy is too restrictive.

Which EPM reporting tool provides a comprehensive view of threat detection activity?

A. Threat Detection Dashboard

B. Detected Threats

C. Threat Detection Events

D. McAfee ePO Reports

What is a valid step to investigate an EPM agent that is unable to connect to the EPM server?

A. On the end point, open a browser session to the URL of the EPM server.

B. Ping the endpoint from the EPM server.

C. Ping the server from the endpoint.

D. Restart the end point