CyberArk Defender – Endpoint Privilege Manager — Question 25

An EPM Administrator would like to enable CyberArk EPM's Ransomware Protection in Restrict mode. What should the EPM Administrator do?

Answer options

• A. Set Block unhandled applications to On.
• B. Set Protect Against Ransomware to Restrict.
• C. Set Protect Against Ransomware to Restrict and Set Block unhandled applications to On.
• D. Set Control unhandled applications to Detect.

Correct answer: C

Explanation

The correct answer is C because both enabling 'Protect Against Ransomware' to 'Restrict' and turning 'Block unhandled applications' to 'On' are necessary for full Ransomware Protection in Restrict mode. Option A only addresses the block setting, while option B only focuses on the ransomware protection setting. Option D does not align with the requirement for Restrict mode.