CAU302 Practice Questions

Which combination of safe member permissions will allow End Users to log in to a remote machine

transparently but NOT show or copy the password?

The Accounts Feed contains:

All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the

accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and

connect buttons on those passwords at any time without confirmation. The members of the AD group

OperationsStaff need to be able to use the show, copy and connect buttons on those passwords on an

emergency basis, but only with the approval of a member of OperationsManagers. The members of

OperationsManagers never need to be able to use the show, copy or connect buttons themselves.

Which safe permissions do you need to grant to OperationsManagers? (Choose all that apply.)

Which Master Policy Setting(s) must be active in order to have an account checked-out by one user for a predetermined amount of time?

A SIEM integration allows you to forward audit records to a monitoring solution.

In a Distributed Vaults environment, which of the following components will NOT be communicating with the Satellite Vaults?

A safe was recently created by a user who is a member of the LDAP Vault Administrators group. Which of the

following users does not have access to the newly created safe by default?

If a transparent user belongs two different directory mappings, how does the system determine which user template to use?

What is the maximum number of levels of authorizations you can set up in Dual Control?

For an account attached to a platform that requires Dual Control based on a Master Policy exception, how would you configure access a password without approval