U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CyberArk ACCESS-DEF Exam - Topic 1 Question 17 Discussion

Your organization wants to limit access to the CyberArk Identity user portal to only corporate issued domain-joined laptops without the use of a VPN.How can you achieve this?
B) Use the Windows Cloud Agent and CyberArk Identity Connector with Integrated Windows Authentication and D) 'Use the CyberArk Conjur integration.
A) Use the Windows Device Trust agent with certificate-based authentication.
C) Define a range of internal corporate IP addresses and use them to restrict access.

CyberArk ACCESS-DEF Exam - Topic 1 Question 17 Discussion

Actual exam question for CyberArk's ACCESS-DEF exam
Question #: 17
Topic #: 1
[All ACCESS-DEF Questions]

Your organization wants to limit access to the CyberArk Identity user portal to only corporate issued domain-joined laptops without the use of a VPN.

How can you achieve this?

Show Suggested Answer Hide Answer
Suggested Answer: B, D

by Apolonia at Aug 04, 2024, 10:42 AM

Limited Time Offer

25%

Off

Get Premium ACCESS-DEF Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Ora
7 months ago
D is interesting, but I doubt it’s the right fit here.
upvoted 0 times
...
Hillary
7 months ago
Wait, can we really restrict access without a VPN?
upvoted 0 times
...
Adrianna
7 months ago
C seems risky, what if someone spoofs an IP?
upvoted 0 times
...
Hildred
7 months ago
I think B could work too, but not as secure.
upvoted 0 times
...
Alyssa
8 months ago
A is the best option for device trust!
upvoted 0 times
...
Terrilyn
8 months ago
I don't remember much about option D with Conjur. Wasn't that more about secrets management? It doesn't seem to fit this scenario.
upvoted 0 times
...
Ayesha
8 months ago
I recall discussing IP address restrictions in class, so option C might be a possibility, but it seems less secure than the others.
upvoted 0 times
...
Lilli
8 months ago
I'm not entirely sure, but I feel like option B could work too. Integrated Windows Authentication was mentioned in some practice questions we did.
upvoted 0 times
...
Deeann
8 months ago
I think option A sounds familiar, especially with the Device Trust agent. I remember something about certificate-based authentication being secure.
upvoted 0 times
...
Lawrence
8 months ago
This is a tricky one. I'm not super familiar with all the CyberArk Identity features, so I'll need to do some research on the differences between the options. Gotta make sure I pick the right solution.
upvoted 0 times
...
Josephine
8 months ago
Okay, I've got a plan. I'll focus on the requirement to limit access to domain-joined laptops without a VPN. That points me towards the Windows Device Trust agent with certificate-based auth in option A.
upvoted 0 times
...
Pansy
8 months ago
Hmm, I'm a bit confused by the different options here. I'm not sure if the Windows Cloud Agent or Conjur integration are the right fit for this scenario. I'll need to review the details more carefully.
upvoted 0 times
...
Vivienne
9 months ago
This seems like a straightforward question about device authentication. I think option A using the Windows Device Trust agent is the way to go.
upvoted 0 times
...
Britt
9 months ago
I think this is a tricky one, but I'm going to give it my best shot. Let me re-read the question carefully and think through the key points.
upvoted 0 times
...
Domonique
9 months ago
I've got this one! The answer is A. I remember the instructor mentioning that you can set the "Maximum Entries in Dropdowns" field to # to always use popup lists instead of dropdowns. That's a handy tip to know for the exam.
upvoted 0 times
...
Milly
1 year ago
Option B it is! Windows authentication, the corporate way to keep the hackers at bay. Now, where did I put my domain admin credentials again?
upvoted 0 times
Corazon
1 year ago
User 3: Make sure to keep your domain admin credentials safe and secure!
upvoted 0 times
...
Melissa
1 year ago
User 2: I agree, it's a secure way to limit access to the user portal.
upvoted 0 times
...
Madonna
1 year ago
User 1: Option B it is! Windows authentication, the corporate way to keep the hackers at bay.
upvoted 0 times
...
...
Samuel
1 year ago
Ah, corporate laptops and security, the never-ending dance. At least they're not asking us to use a VPN, that would be too easy!
upvoted 0 times
...
Lauryn
1 year ago
Hmm, the Conjur integration, huh? Sounds like a magic trick to me. I'll stick with the classic Windows Cloud Agent approach.
upvoted 0 times
...
Roslyn
1 year ago
I'm not sure, but I think option C) Define a range of internal corporate IP addresses could also work to restrict access.
upvoted 0 times
...
Glenna
1 year ago
I'm not sure about using a range of internal IP addresses, that could get messy. The certificate-based authentication with the Windows Device Trust agent sounds cleaner to me.
upvoted 0 times
Paola
1 year ago
User 2
upvoted 0 times
...
Layla
1 year ago
The certificate-based authentication with the Windows Device Trust agent sounds cleaner to me.
upvoted 0 times
...
Alaine
1 year ago
User 1
upvoted 0 times
...
Latonia
1 year ago
I'm not sure about using a range of internal IP addresses, that could get messy.
upvoted 0 times
...
Stephaine
1 year ago
B) Use the Windows Cloud Agent and CyberArk Identity Connector with Integrated Windows Authentication
upvoted 0 times
...
Dierdre
1 year ago
A) Use the Windows Device Trust agent with certificate-based authentication.
upvoted 0 times
...
...
Felicitas
1 year ago
I agree with Dyan, using certificate-based authentication is a secure way to limit access to the user portal.
upvoted 0 times
...
Ellsworth
1 year ago
Option B seems like the way to go here. The Windows Cloud Agent and CyberArk Identity Connector with Integrated Windows Authentication should do the trick.
upvoted 0 times
...
Dyan
1 year ago
I think the answer is A) Use the Windows Device Trust agent with certificate-based authentication.
upvoted 0 times
...

Save Cancel