CyberArk Sentry - Privilege Cloud

Here you have the best CyberArk CPC-SEN practice exam questions

You have 45 total questions to study from
Each page has 5 questions, making a total of 9 pages
You can navigate through the pages using the buttons at the bottom
This questions were last updated on May 15, 2025
This site is not affiliated with or endorsed by CyberArk.

Question 1 of 45

You are planning to configure Multi-Factor Authentication (MFA) for your CyberArk Privilege Cloud Shared Service.

What are the available authentication methods?

LDAP, RADIUS, SAML, OpenID Connect (OIDC)

Windows, PKI, RADIUS, CyberArk, LDAP, SAML, OpenID Connect (OIDC)

Privilege Cloud Shared Services fully utilize CyberArk Identity and its MFA options.

Only RADIUS can be used to achieve MFA across all components, such as PSM for RDP and PSM for SSH.

Correct Answer: A

Question 2 of 45

Which users are Privilege Cloud Standard built-in users? (Choose two.)

NASCorp

saascorps

CyberArkAdmin

remoteAccessAppUser

RASReporterUser

Correct Answer: C, D

CyberArkAdmin and remoteAccessAppUser are the Privilege Cloud Standard built-in users. These users typically have predefined roles and permissions that are integral to the system's administration and remote access functionalities.

Question 3 of 45

You are configuring firewall rules between the Privilege Cloud components and the Privilege Cloud.

Which firewall rules should be set up to allow connections?

from the CyberArk Privilege Cloud to the Privilege Cloud components

from the Privilege Cloud components to the CyberArk Privilege Cloud

bi-directionally between the Privilege Cloud components and the CyberArk Privilege cloud

from the Privilege Cloud components to CyberArk.com

Correct Answer: C

Question 4 of 45

Which statement is correct regarding the LDAP integration with CyberArk Privilege Cloud Standard?

You must track the expiration date of the directory server certificate and contact CyberArk Support to renew it.

LDAPS integration with Privilege Cloud requires StartTLS for secure and encrypted communication.

For certificate trust to your directory server, only the issuing CA certificate is required.

The top-level domain entry of the directory must be unique in the chosen Privilege Cloud region.

Correct Answer: C

For certificate trust to your directory server, only the issuing CA certificate is required. This means that when setting up LDAP integration with CyberArk Privilege Cloud Standard, it is sufficient to import the Certificate Authority (CA) certificate that signed the directory server's certificate. This ensures the trust chain needed for secure communication.

Question 5 of 45

Which tool configures the user object that will be used during the installation of the PSM for SSH component?

CreateUserPass

CreateCredFile

ConfigureCredFile

ConfigureUserPass

Correct Answer: B