What type of user can be created from the Threat Deception LSASS Credential Lures feature?
What type of user can be created from the Threat Deception LSASS Credential Lures feature?
The Threat Deception LSASS Credential Lures feature creates a local administrator user. This is part of a strategy to create fake local admin accounts which are then stored on an organization's computers as deception lures, aimed at monitoring and identifying unauthorized access attempts.
probably C is correct
C confirmed (LSASS lures > Policy options > create LSAAS deception lures > create fake Local Admin accounts for LSAAS to store on your organization's computers as deception lures.)
C is the correct answer. https://docs.cyberark.com/EPM/23.4.2/en/Content/EPM/Server%20User%20Guide/PrivilegeDeception.htm
C is the correct answer.
C is the correct answer. https://docs.cyberark.com/EPM/Latest/en/Content/EPM/Server%20User%20Guide/PrivilegeDeception.htm#Overview
The EPM creates policies that place user credentials in popular places and then monitor attempts to use these credentials. When the EPM agent receives that policy from the EPM server, it creates a Local Admin user to use as a credentials lure. The agent then generates a unique password for this account that cannot be used on any other endpoint.
The answer is C. https://docs.cyberark.com/epm/24.3.1/en/Content/EPM/Server%20User%20Guide/PrivilegeDeception.htm