CyberArk Trustee – Privileged Access Management — Question 46

Your organization has a requirement to allow users to `check out passwords` and connect to targets with the same account through the PSM.
What needs to be configured in the Master policy to ensure this will happen?

Answer options

• A. Enforce check-in/check-out exclusive access = active; Require privileged session monitoring and isolation = active
• B. Enforce check-in/check-out exclusive access = inactive; Require privileged session monitoring and isolation = inactive
• C. Enforce check-in/check-out exclusive access = inactive; Record and save session activity = active
• D. Enforce check-in/check-out exclusive access = active; Record and save session activity = inactive

Correct answer: A

Explanation

The correct answer, A, ensures that both exclusive access for check-in/check-out and session monitoring are active, which is necessary for users to securely check out passwords and manage sessions. Options B and C do not meet the requirements for session monitoring or exclusive access, while option D allows check-out but fails to monitor sessions, making it insufficient for the organization's needs.