Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

CyberArk PAM-DEF Exam - Topic 6 Question 75 Discussion

A Vault administrator have associated a logon account to one of their Unix root accounts in the vault. When attempting to verify the root account's password the Central Policy Manager (CPM) will:
C) log in first with the logon account, then run the SU command to log in as root using the password in the Vault
A) ignore the logon account and attempt to log in as root
B) prompt the end user with a dialog box asking for the login account to use
D) none of these

CyberArk PAM-DEF Exam - Topic 6 Question 75 Discussion

Actual exam question for CyberArk's PAM-DEF exam
Question #: 75
Topic #: 6
[All PAM-DEF Questions]

A Vault administrator have associated a logon account to one of their Unix root accounts in the vault. When attempting to verify the root account's password the Central Policy Manager (CPM) will:

Show Suggested Answer Hide Answer
Suggested Answer: C

According to the web search results, when a Vault administrator has associated a logon account to one of their Unix root accounts in the vault, the CPM will log in first with the logon account, then run the SU command to log in as root using the password in the Vault1.This is a common use case for using a logon account, as the best practice for Unix systems is to disallow the root user from logging in using SSH, which is what the CPM uses to sign in to a system to manage the password2.The logon account can be defined on the target account level or on the platform level, making it available to all accounts associated with the platform2.The CPM can also use the logon account to initiate PSM sessions to the target machine3.


Contribute your Thoughts:

0/2000 characters
Alline
3 days ago
I feel like option C makes sense because using the SU command is a common way to switch users in Unix, but I can't recall if that's how CPM operates.
upvoted 0 times
...
Wilda
8 days ago
I remember a practice question where it asked about using a logon account, and I think it involved prompting the user. Could it be option B?
upvoted 0 times
...
Gayla
14 days ago
I think the CPM might just try to log in as root directly, but I'm not entirely sure if that's the right approach.
upvoted 0 times
...

Save Cancel