CyberArk Sentry – Privileged Access Management — Question 94

If a user is a member of more than one group that has authorizations on a Safe, by default that user is granted __________________.

Answer options

• A. the Vault will not allow this situation to occur.
• B. only those permissions that exist on the group added to the Safe first.
• C. only those permissions that exist in all groups to which the user belongs.
• D. the cumulative permissions of all the groups to which that user belongs.

Correct answer: D

Explanation

The correct answer is D because when a user is part of multiple groups, they receive the combined permissions from all those groups. Options A, B, and C are incorrect as they either suggest a restriction on group memberships, limit permissions to the first group added, or require all permissions to match across groups, which does not reflect how cumulative permissions work.