CyberArk ACCESS DEF CyberArk Defender Access (ACC-DEF) Online Training
CyberArk ACCESS DEF Online Training
The questions for ACCESS DEF were last updated at Nov 19,2024.
- Exam Code: ACCESS DEF
- Exam Name: CyberArk Defender Access (ACC-DEF)
- Certification Provider: CyberArk
- Latest update: Nov 19,2024
DRAG DROP
A user wants to install the CyberArk Identity mobile app by using a QR code.
Arrange the steps to do this in the correct sequence.
Where can MFA filters be used? (Choose three.)
- A . User and Admin Portal login
- B . App level 2FA/MFA
- C . RADIUS
- D . Self-service password reset
- E . Editing personal profile attributes
- F . OAUTH2 connections
Which 2FA/MFA options can be used if users cannot use their mobile device? (Choose two.)
- A . FID02
- B . Security questions
- C . OAUTH2
- D . QRcode
- E . Push notification app
A user’s account information required for multi-factor authentication is not set up properly and is preventing the user from logging in.
What should you do?
- A . Use the MFA Unlock command in the Admin Portal to suspend multifactor authentication for 10 minutes.
- B . Delete the user’s account and create a new one.
- C . Ask the user to delete all browser cookies, then try again.
- D . Change the user’s director/ source from Active Directory to LDAP for authentication.
Which statement is correct about the CyberArk Identity Windows Device Trust enrollment process?
- A . An enrollment code is optional.
- B . The endpoint does not need to be a domain-joined machine.
- C . You can define the maximum number of joinable endpoints.
- D . You can define the minimum number of joinable endpoints.
ACME Corporation employees access critical business web applications through CyberArk Identity. You notice a constant high volume of unauthorized traffic from 103.1.200.0/24 trying to gain access to the CyberArk Identity portal. Access to the CyberArk Identity portal is time sensitive. ACME decides to enforce IP restrictions to reduce vulnerability.
Which configuration can help achieve this?
- A . Login in to the CyberArk Identity Admin portal and define the IP range of 103 1 200 0/24 into the ACME Corporation IP range.
- B . Log in to the CyberArk Identity Admin portal and define the IP range of 103 1 200 0/24 into the blocked IP range.
- C . Implement device trust through the Windows Cloud Agent.
- D . Implement zero trust through the App Gateway.
Refer to the exhibit.
Which statements are correct regarding this Authentication Policy? (Choose two.)
- A . Users will still be asked for their MFA even if they mistyped their username.
- B . If users have set up CyberArk Mobile Authenticator as an MFA, they will still receive the Push Notification to confirm the request even if they mistyped their password.
- C . Users will not be notified which challenge they failed if their login attempt failed.
- D . If users have set up a Security Question as an MFA, the Security Question will not be displayed to the user to answer even if they mistyped their password.
- E . If the first factor is password and the user is an Active Directory user and the Active Directory is unavailable, this setting does not matter because the user will not be able to authenticate through Active Directory credentials and will see the message "Active Directory not available".
DRAG DROP
Your organization wants to automatically create user accounts with different Salesforce licenses (e.g., Salesforce, Identity, Chatter External).
In CyberArk Identity, arrange the steps to achieve this in the correct sequence.
Refer to the exhibit.
Within the "Allow user notifications on multiple devices", if you leave the setting as Default (–), what happens if a user triggers a MFA Push notification and has enrolled three different devices?
- A . The push notification will be sent to none of the enrolled devices.
- B . The push notification will be sent to the first enrolled device only.
- C . The push notification will be sent to all enrolled devices.
- D . The push notification will be sent to the last enrolled device only.
Latest ACCESS DEF Dumps Valid Version with 64 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
