CyberArk Exam ACCESS-DEF Topic 1 Question 14 Discussion

Actual exam question for CyberArk's ACCESS-DEF exam

Question #: 14
Topic #: 1

Refer to the exhibit.

Which statements are correct regarding this Authentication Policy? (Choose two.)

AUsers will still be asked for their MFA even if they mistyped their username.

BIf users have set up CyberArk Mobile Authenticator as an MFA, they will still receive the Push Notification to confirm the request even if they mistyped their password.

CUsers will not be notified which challenge they failed if their login attempt failed.

DIf users have set up a Security Question as an MFA, the Security Question will not be displayed to the user to answer even if they mistyped their password.

EIf the first factor is password and the user is an Active Directory user and the Active Directory is unavailable, this setting does not matter because the user will not be able to authenticate through Active Directory credentials and will see the message 'Active Directory not available'.

Show Suggested Answer

Suggested Answer: B

by Helene at Jul 02, 2024, 05:28 PM

Limited Time Offer

25%

Off

Get Premium ACCESS-DEF Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Silva

14 days ago

C is also incorrect. Users will be notified if their login attempt failed, even if they don't know which challenge they failed. Gotta keep that security tight, even if it's a little cryptic.

upvoted 0 times

Rosita

21 hours ago

A) Users will still be asked for their MFA even if they mistyped their username.

upvoted 0 times

...

Trinidad

18 days ago

A is incorrect. Users will not be asked for their MFA if they mistyped their username. Maybe they should try 'password1234' instead?

upvoted 0 times

...

Martina

20 days ago

E is a tricky one. If the first factor is password and the user is an Active Directory user and the Active Directory is unavailable, the user won't be able to authenticate at all. Talk about a real 'active' directory jam!

upvoted 0 times

...

Ciara

21 days ago

D is also correct. If users have set up a Security Question as an MFA, the Security Question will not be displayed to the user to answer even if they mistyped their password.

upvoted 0 times

Cherry

3 days ago

A) Users will still be asked for their MFA even if they mistyped their username.

upvoted 0 times

...

Celeste

1 months ago

B is the correct answer. If users have set up CyberArk Mobile Authenticator as an MFA, they will still receive the Push Notification to confirm the request even if they mistyped their password.

upvoted 0 times

...

Lorean

2 months ago

I'm not sure about option C and D. It seems like users won't be notified about the challenge they failed, but I'm not sure if the Security Question will be displayed if they mistyped their password.

upvoted 0 times

...

Dannette

2 months ago

I agree with you, Pamela. I also believe option B is correct because users will still receive Push Notification even if they mistyped their password.

upvoted 0 times

...

Pamela

2 months ago

I think option A is correct because users will still be asked for MFA even if they mistyped their username.

upvoted 0 times

...