A customer's environment has three data centers consisting of 5,000 servers in Germany, 10,000 servers in Canada, and 1,500 servers in Singapore. You want to manage target servers and avoid complex firewall rules. How many CPMs should you deploy?
A customer's environment has three data centers consisting of 5,000 servers in Germany, 10,000 servers in Canada, and 1,500 servers in Singapore. You want to manage target servers and avoid complex firewall rules. How many CPMs should you deploy?
Given the customer's environment having data centers in Germany, Canada, and Singapore, deploying three CPMs, one per data center, is the optimal choice. This approach ensures local management of servers in each data center, reducing the need for complex firewall rules and facilitating efficient management operations.
Can't really find a specific reference for this however I would say that the reccomendation would be to have a CPM at each site to manage the targets in those datacenters and to avoid the compleities associated with creating firewall rules so the answer in that instance would be B. https://docs.cyberark.com/PAS/Latest/en/Content/PAS%20INST/CPM-install-multiple-CPM.htm?tocpath=Installation%7CInstall%20PAM%20-%20Self-Hosted%7CInstall%20CPM%7C_____8#:~:text=Password%20management%20in%20different%20networks
Answer is B
The question is "How many CPMs should you deploy?" instead of "What is the minimum number of CPM required?" You should deploy 6 CPM so that you have a standby CPM for each location without needing additional firewall rules.
You will reduce the complexity of firewall rules by taking a CPM for each location, in this complex scenario you must use multiple CPMs with load balance this will not increase the complexity of the firewall rules
Answer C also makes sense if you think that in this environment with hundreds of servers there will be several segmented networks