CyberArk Trustee – Privileged Access Management — Question 39

You have been asked to secure a set of shared accounts in CyberArk whose passwords will need to be used by end users. The account owner wants to be able to track who was using an account at any given moment.
Which security configuration should you recommend?

Answer options

• A. Configure one-time passwords for the appropriate platform in Master Policy.
• B. Configure shared account mode on the appropriate safe.
• C. Configure both one-time passwords and exclusive access for the appropriate platform in Master Policy.
• D. Configure object level access control on the appropriate safe.

Correct answer: C

Explanation

The correct answer is C because configuring both one-time passwords and exclusive access allows for individual accountability while using shared accounts. This setup ensures that each user has a unique password at any time, thus enabling tracking. Options A and B do not provide sufficient tracking capabilities on their own, and D does not address the need for password management and user accountability.