Examice

Exam CAU302 All QuestionsBrowse all questions from this exam

Question 37

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group

UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group

OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of OperationsManagers. The members of OperationsManagers never need to be able to use the show, copy or connect buttons themselves.

Which safe permissions do you need to grant to UnixAdmins?

Use Accounts

Retrieve Accounts

List Accounts

Authorize Password Requests

Access Safe without Authorization

Correct Answer: A, B, E

To allow UnixAdmins to use the show, copy, and connect buttons at any time without confirmation, they need the following permissions: 'Use Accounts', 'Retrieve Accounts', and 'Access Safe without Authorization'. 'Use Accounts' allows them to log on and use the accounts, 'Retrieve Accounts' allows them to view and copy passwords, and 'Access Safe without Authorization' allows them unrestricted access to the safe without needing additional approval. 'List Accounts' is not necessary for the specified actions, and 'Authorize Password Requests' is irrelevant as UnixAdmins do not need to approve requests.

Discussion

crazymonkeyOption: E

Correct is A,B,C,E.

NLT

A,B,C,E are correct answers.

nereprezentativOption: E

A, B, C, D https://cyberark-customers.force.com/s/article/Safe-Authorizations-and-what-they-mean