Which of these accounts onboarding methods is considered proactive?

• A.A DNA scan
• B.A Rest API integration with account provisioning software
• C.Accounts Discovery
• D.Detecting accounts with PTA

Comment: *

Name: *

Email: *

Verification: *

As long as you are a member of the Vault Admins group, you can grant any permission on any safe that you have access to.

• A.TRUE
• B.FALSE

Comment: *

Name: *

Email: *

Verification: *

Target account platforms can be restricted to accounts that are stored in specific Safes using the AllowedSafes
property.

• A.TRUE
• B.FALSE

Comment: *

Name: *

Email: *

Verification: *

Which Master Policy Setting must be active in order to have an account checked-out by one user for a pre- determined amount of time?

• A.Require dual control password access Approval
• B.Enforce check-in/check-out exclusive access
• C.Enforce one-time password access
• D.Enforce check-in/check-out exclusive access & Enforce one-time password access

Comment: *

Name: *

Email: *

Verification: *

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group Operations Staff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of Operations Managers never need to be able to use the show, copy or connect buttons themselves.
Which safe permission do you need to grant Operations Staff? Check all that apply.

• A.Authorize Password Requests
• B.Access Safe without Authorization
• C.Use Accounts
• D.Retrieve Accounts

Comment: *

Name: *

Email: *

Verification: *