1. Home
  2. CyberArk
  3. CAU302

CyberArk CAU302 Online Practice Questions and Exam Preparation

CAU302 Exam Details

  • Exam Code
    :CAU302
  • Exam Name
    :CyberArk Defender - Sentry
  • Certification
    :CyberArk Certifications
  • Vendor
    :CyberArk
  • Total Questions
    :237 Q&As
  • Last Updated
    :May 31, 2026

CyberArk CAU302 Online Questions & Answers

  • Question 101:

    The vault supports Subnet Based Access Control.

    A. TRUE
    B. FALSE

  • Question 102:

    Which of these accounts onboarding methods is considered proactive?

    A. Accounts Discovery
    B. Detecting accounts with PTA
    C. A Rest API integration with account provisioning software
    D. A DNA scan

  • Question 103:

    Users complain they are unsuccessful attempting to authenticate to the PVWA web site.

    After entering their credentials, they receive a "Timeout has expired". You test the URL using multiple browsers and receive the same error. The CyberArk.WebApplication.log shows the "ITACM012S Timeout has expired" log entry.

    What is the next troubleshooting step you should take?

    A. Run an IISRESET on the PVWA server
    B. Check the CyberArk.WebConsole.log for errors
    C. Check network firewall rules to ensure the PVWA can communicate to the Vault over tcp_1858
    D. Check the health of the Vault Server and ensure all services are running

  • Question 104:

    Which report could show all accounts that are past their expiration dates?

    A. Activity log
    B. Privileged Account Inventory report
    C. Privileged Account Compliance Status report
    D. Applications Inventory report

  • Question 105:

    CyberArk creates exceptions for Data Execution Prevention (DEP) on selected executable files. This is done as part of installing, which of the following components?

    A. PSM
    B. CPM
    C. PVWA
    D. AAM Credential Provider (previously known as AIM Credential Provider)

  • Question 106:

    Within the Vault each password is encrypted by:

    A. The Server Key
    B. The Recovery Public Key
    C. The Recovery Private key
    D. Its own unique key.

  • Question 107:

    CyberArk Logical Container.

    A. CPMLOG
    B. CPM_errorlog
    C. pmlog
    D. pm errors log

  • Question 108:

    What values are acceptable in the address field on the Accounts Details?

    A. It must be a fully qualified domain name (FQDN)
    B. It must be an IP address
    C. It must be NetBIOS name
    D. Any name that is resolvable on the CPM server is acceptable

  • Question 109:

    How does the Vault administrator apply a new license file?

    A. Upload the license.xml file to the system Safe and restart the PrivateArk Server service.
    B. Upload the license.xml file to the system Safe.
    C. Upload the license.xml file to the Vault Internal Safe and restart the PrivateArk Server service.
    D. Upload the license.xml file to the Vault Internal Safe.

  • Question 110:

    What is the process to remove object level access control from a Safe?

    A. Uncheck the 'Enable Object Level Access Control' on the Safe Details page in the PVWA.
    B. Uncheck the 'Enable Object Level Access Control' box in the Safe Properties in PrivateArk.
    C. This cannot be done.
    D. Remove all ACLs from the Safe.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CyberArk exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAU302 exam preparations and CyberArk certification application, do not hesitate to visit our Vcedump.com to find your solutions here.