What are the basic network requirements to deploy a CPM server?
What are the basic network requirements to deploy a CPM server?
To deploy a CPM server, the basic network requirements include specific ports being open for communication. Port 1858 is required for communication with the Vault, and Port 443 is required for communication with the PVWA (Password Vault Web Access). These ports are essential for the proper operation and management of the CPM. Therefore, the correct option is the one that includes both ports: Port 1858 to Vault and Port 443 to PVWA.
This is another very annoying question as it specifically says ports required to “Deploy” a CPM however it definitely requires TCP/443 to the PVWA to operate and perform scans. Also in order to manage accounts on targets all those required ports must be available as well however it does not use UDP as shown in D. therefore after careful consideration I think the answer they are looking for is A. https://docs.cyberark.com/PAS/Latest/en/Content/PAS%20INST/CPM-install-requirements.htm?tocpath=Installation%7CInstall%20PAM%20-%20Self-Hosted%7CInstall%20CPM%7C_____2#:~:text=must%20be%20installed.-,Network%20communication,-The%20CPM%20uses https://docs.cyberark.com/PAS/Latest/en/Content/PAS%20SysReq/Network%20Ports%20Overview.htm#:~:text=Central%20Policy%20Manager%20(CPM)
https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PAS%20SysReq/Network%20Ports%20Overview.htm?tocpath=Installation%7CSystem%20Requirements%7C_____4
- Since CPMs should be on the same network of the targets no fw rules are necessary - CPMs communicates only to Vault So only port 1858 should be the right answer