CyberArk Trustee – Privileged Access Management — Question 25

A Vault administrator have associated a logon account to one of their Unix root accounts in the vault. When attempting to verify the root account's password the
Central Policy Manager (CPM) will:

Answer options

• A. ignore the logon account and attempt to log in as root
• B. prompt the end user with a dialog box asking for the login account to use
• C. log in first with the logon account, then run the SU command to log in as root using the password in the Vault
• D. none of these

Correct answer: C

Explanation

The correct answer is C because the Central Policy Manager will first authenticate using the logon account and then switch to the root user with the SU command, utilizing the password stored in the Vault. Options A and B do not accurately reflect the process, as A overlooks the logon account and B incorrectly suggests user interaction. Option D is not applicable because C is indeed a valid procedure.