CyberArk Defender – PAM — Question 70

You have been asked to secure a set of shared accounts in CyberArk whose passwords will need to be used by end users. The account owner wants to be able to track who was using an account at any given moment.

Which security configuration should you recommend?

Answer options

• A. Configure one-time passwords for the appropriate platform in Master Policy.
• B. Configure shared account mode on the appropriate safe.
• C. Configure both one-time passwords and exclusive access for the appropriate platform in Master Policy.
• D. Configure object level access control on the appropriate safe.

Correct answer: C

Explanation

The correct answer, C, combines one-time passwords with exclusive access, ensuring both secure use and traceability of who accesses the accounts. Option A only provides a one-time password without monitoring, while B allows shared access without tracking, and D focuses on access control but doesn't address password security effectively.