Which statement about the Master Policy best describes the differences between one-time password and exclusive access functionality?
Which statement about the Master Policy best describes the differences between one-time password and exclusive access functionality?
Exclusive access allows only one person to check-out an account at a time. This means that control is maintained by ensuring only one user has access at any given moment, thus preventing simultaneous usage conflicts. On the other hand, a one-time password schedules an account for a password change after the MinValidityPeriod expires, ensuring that passwords are not reused and hence providing an added layer of security.
The answer is D. https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/13.0/en/Content/PASIMP/Accounts-Check-out-and-Check-in.htm?tocpath=End%20user%7CPrivileged%20Accounts%7CClassic%20Interface%7C_____9
D is correct.
One-Time Passwords (OTP): When using one-time accounts, their password changes after every usage, based on the Master Policy. If Exclusive Access is enforced by the Master Policy, the account is automatically locked during usage. For interactive users, one-time passwords trigger password changes and account locks. Applications retrieving passwords via the Credential Provider do not trigger password changes or account locks for one-time passwords. Exclusive Access: Exclusive access means that only a specific group of users may use the account. After an account on a one-time password platform is used, the account is automatically deleted from the safe. Unlike one-time passwords, exclusive access does not lock the account indefinitely.