EMT Practice Test

1. Question Content...


Question List

Question1: Which administrative right is required to manually start a provisioning synchronization job?

Question2: Which predefined roles does CyberArk Identity provide?

Question3: Cindy just joined a company's IT Audit Department and needs CyberArk Identity access to perform her daily job activities.
Which administrative right(s) should she be assigned to match her job requirement?

Question4: On which operating systems can the CyberArk Authenticator desktop application be installed? (Choose two.)

Question5: ACME Corporation employees access critical business web applications through CyberArk Identity. You notice a constant high volume of unauthorized traffic from 103.1.200.0/24 trying to gain access to the CyberArk Identity portal. Access to the CyberArk Identity portal is time sensitive. ACME decides to enforce IP restrictions to reduce vulnerability.
Which configuration can help achieve this?

Question6: You get the following error: "Not Authorized. You do not have permission to access this feature".
What is most likely the cause of the error?

Question7: For each statement listed, indicate if it may be a potential cause of this problem.

Question8: Your Chief Executive Officer lost his phone and cannot perform MFA to log in to work.
How can you enable him to bypass MFA right away and not delay his work?

Question9: Which 2FA/MFA options can be used if users cannot use their mobile device? (Choose two.)

Question10: Which feature does the CyberArk Identity Connector provide?

Question11: What is the most likely reason a CyberArk Identity admin would turn on the "Provisioning" feature within a Web App connector?

Question12: Refer to the exhibit.
Within the "Allow user notifications on multiple devices", if you leave the setting as Default (--), what happens if a user triggers a MFA Push notification and has enrolled three different devices?

Question13: Match each listed task to indicate if an administrator can perform it in the Admin Portal.

Question14: The Security Operation Team requested a report to show users who have logged in the last seven days.
Which report in the Builtin Reports Library should you use?
The Security Operation Team requested a report to show users who have logged in the last seven days.
Which report in the Builtin Reports Library should you use?

Question15: What is considered an "Identity Provider Initiated" login to an application?

Question16: A user wants to install the CyberArk Identity mobile app by using a QR code.
Arrange the steps to do this in the correct sequence.

Question17: For each option listed, identify if it is a CyberArk Identity connector function.

Question18: Where can you download the CyberArk Identity mobile app? (Choose two.)

Question19: As part of an ongoing incident investigation, you want to examine all data/events that are relevant to updating user profiles.
Which dataset from the UBA portal should you use?

Question20: Refer to the exhibit.
This exhibit shows the base authentication policy for ACME Corporation. You must edit the policy to allow users to authenticate once if they fulfill certain authentication criteria.
How should you configure this policy to support BOTH?

Question21: What does enabling "Workflow" allow within an app connector?

Question22: When configuring an application to use the App Gateway, you do not have to change any configurations in the application directly. You enable the application for App Gateway access in the Admin Portal and input the existing URL that users enter to open the application. You can either use an external URL that CyberArk Identity automatically generates, or you can continue using an existing internal URL.
What is a disadvantage of using an existing internal URL for App Gateway connections?

Question23: Which protocols can CyberArk provide MFA for VPN? (Choose two.)

Question24: Which risk factors contribute to the user behavior risk score? (Choose two.)

Question25: Your organization wants to implement passwordless authentication for business critical web applications. CyberArk Identity manages access to these applications.
What can you do to facilitate the enforcement of this passwordless authentication initiative? (Choose two.)

Question26: Which 2FA/MFA options can fulfill the "Something you are" requirement? (Choose two.)

Question27: Admins can enable self-service for users to unlock their accounts. There are four options under the Admin Portal Core Services > Policies > User Security Policies > Self Service > Account Unlock options.
Match each option to the correct description.

Question28: Which Custom Template app connectors are appropriate to use if a website does not require user authentication?

Question29: Which HR system supports synchronization to both Active Directory and CyberArk Identity Cloud Directory?