PAM-CDE-RECERT Exam QuestionsBrowse all questions from this exam

PAM-CDE-RECERT Exam - Question 45


You are onboarding 5,000 UNIX root accounts for rotation by the CPM. You discover that the CPM is unable to log in directly with the root account and will need to use a secondary account.

How should this be configured to allow for password management using least privilege?

Show Answer
Correct Answer: C

To allow for password management using least privilege when the CPM is unable to log in directly with the root account, you should configure the UNIX platform to use the correct logon account. This ensures that the CPM can manage the passwords without requiring root-level access directly, adhering to the principle of least privilege by using an intermediary account.

Discussion

6 comments
Sign in to comment
dru0paOption: C
Jul 25, 2023

This is not to reconcile the account it to change the root password

MoneybagOption: C
Feb 26, 2024

C is the answer, login account is what is needed not a reconcile account.

d5ea0d0Option: D
Jun 19, 2024

The clue is for password management. So option will be reconcile account

144d6ddOption: C
Jul 3, 2024

C. Configure the UNIX platform to use the correct logon account.

144d6ddOption: C
Jul 3, 2024

C. Configure the UNIX platform to use the correct logon account. https://docs.cyberark.com/pam-self-hosted/13.0/en/Content/PASIMP/Linked-PAS-Accounts.htm#Overview DR

rayjohn28Option: C
Jul 12, 2024

C is the correct answer since you only need a logon account and do this via at the platform level