Due to corporate storage constraints, you have been asked to disable session monitoring and recording for 500 testing accounts used for your lab environment.
How do you accomplish this?
Due to corporate storage constraints, you have been asked to disable session monitoring and recording for 500 testing accounts used for your lab environment.
How do you accomplish this?
To disable session monitoring and recording for specific accounts, you need to add exceptions to the master policy for the relevant platforms. This allows you to selectively disable these features rather than applying the changes across all platforms or configurations indiscriminately. Hence, the correct approach is to access the Master Policy, select Session Management, add Exceptions to the platform(s), and disable Session Monitoring and Recording policies.
I think Answer is A
You can only change the session recording policy on the platform level is by adding an exception to the Master Policy for that platform. So, answer should be 'A'.
The option B is the best option because it is more specific and only disables session monitoring and recording policies for the selected platform. That means that session recording and monitoring policies will only be disabled for test accounts in the lab Option A would disable session monitoring and recording policies for all platforms, which is not necessary.
I think it should be done with an exception on de the Master policy
A is correct
B is correct. Check this lick to see how you disable session monitoring and recording at platform lvl. https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/Configuring-Live-Session-Monitoring.htm?TocPath=Administrator%7CComponents%7CPrivileged%20Session%20Manager%7CConfiguration%7C_____6#:~:text=You%20can%20enable%20or%20disable,that%20authorized%20users%20will%20have.&text=In%20the%20PVWA%2C%20click%20Administration,Settings%3E%20Live%20Sessions%20Monitoring%20Settings.
Other than option A, the rest of the option doesn't make sense
A is the correct answer
B: https://docs.cyberark.com/pam-self-hosted/Latest/en/Content/PASIMP/Configuring-Live-Session-Monitoring.htm?Highlight=disable%20Session%20Monitoring%20and%20Recording Overview Authorized users can monitor active sessions from their workstation and take part in controlling these sessions. Users can also suspend or terminate active sessions based on their group assignment. By default, active session monitoring is enabled at system level for all authorized users, and can be disabled at platform level. Active session monitoring can also be disabled at system level, but when it is disabled, it cannot be enabled at platform level.
Selected Answer: A Correct Answer: A
A is correct
https://docs.cyberark.com/PAS/13.2/en/Content/PASIMP/Exceptions.htm
A is correct
B In the PVWA, click Administration , and then click Platform Management. Click the platform type that you want to edit=>edit In the left pane, expand UI & Workflows, right-click Privileged Session Management and select Add Exclude Recorded Users and Groups. In the left pane, expand UI & Workflows, right-click Privileged Session Management and select Add Recorded Users and Groups.
I thinks is A. The step is missing "PSM" before step disabled session monitoring, also the word disable session monitoring seems not accurate cause we are adding excluded users & group. Using A we can add exception at platform level.
Definitely A We want to save disk space by not recording and not disable live monitoring. See here: https://www.youtube.com/watch?v=ZweZ1odi-XI
Enable session recording in the Master Policy for all platforms or for specific platforms by use of exceptions. From training.