Free Ping Identity PAP-001 Exam Dumps

When a PingAccess agent is compromised, the secure approach is to invalidate the existing credentials and issue a new configuration file from the PingAccess Admin Console. This provides a fresh agent.properties file with new secrets, ensuring compromised keys cannot be reused.

Exact Extract:

''If an agent is compromised, revoke and regenerate the agent configuration by downloading a new agent.properties file from the administrative console.''

Option A is incorrect --- manually changing the secret in the file does not propagate it to PingAccess.

Option B is incorrect --- trusted certificates are not tied to agent authentication.

Option C is unnecessary --- reinstalling the agent does not reset credentials.

Option D is correct --- downloading a new agent.properties file re-secures the agent.

To pass user attributes into HTTP headers for applications, PingAccess uses Identity Mappings. When attributes need to be passed specifically as headers, the administrator must update the Header Identity Mapping.

Exact Extract:

''Header identity mappings map attributes from a user's web session to HTTP headers that are then sent to the back-end application.''

Option A (HTTP Request Header Rule) is incorrect --- this adds or modifies static request headers, not user attributes.

Option B (Header Identity Mapping) is correct --- this maps identity attributes into headers dynamically.

Option C (JWT Identity Mapping) is incorrect --- that's used for passing attributes as claims in JWTs.

Option D (Web Session Attribute Rule) is incorrect --- that is for access control evaluation, not propagation of attributes.