CyberArk Defender – Endpoint Privilege Manager — Question 26

An EPM Administrator would like to enable a Threat Protection policy, however, the policy protects an application that is not installed on all endpoints.
What should the EPM Administrator do?

Answer options

• A. Enable the Threat Protection policy and configure the Policy Targets.
• B. Do not enable the Threat Protection policy.
• C. Enable the Threat Protection policy only in Detect mode.
• D. Split up the endpoints in to separate Sets and enable Threat Protection for only one of the Sets.

Correct answer: D

Explanation

The correct choice is D because it allows the EPM Administrator to effectively manage the deployment of the Threat Protection policy only on the relevant endpoints. Option A is incorrect as enabling the policy on all endpoints could lead to issues with unsupported applications. Options B and C do not address the need to apply the policy selectively based on application availability.