CyberArk Trustee – Privileged Access Management — Question 29

Which Master Policy Setting must be active in order to have an account checked-out by one user for a pre-determined amount of time?

Answer options

• A. Require dual control password access Approval
• B. Enforce check-in/check-out exclusive access
• C. Enforce one-time password access
• D. Enforce check-in/check-out exclusive access & Enforce one-time password access

Correct answer: D

Explanation

The correct answer is D because both 'Enforce check-in/check-out exclusive access' and 'Enforce one-time password access' are necessary to ensure that a user can check out an account for a set period. Options A, B, and C do not provide the combined functionality required for this specific check-out process.