CyberArk Trustee – Privileged Access Management — Question 43

You are creating a Dual Control workflow for a team's safe.
Which safe permissions must you grant to the Approvers group?

Answer options

• A. List accounts, Authorize account request
• B. Retrieve accounts, Access Safe without confirmation
• C. Retrieve accounts, Authorize account request
• D. List accounts, Unlock accounts

Correct answer: A

Explanation

The correct answer is A because the Approvers group needs the ability to view the accounts and authorize requests for access. Options B and C do not provide the necessary permissions for dual control, as they either allow retrieval without authorization or do not include the list permission. Option D lacks the authorization aspect required for approving account requests.