CyberArk Defender – PAM — Question 90

You have been given the requirement that certain accounts cannot have their passwords updated during business hours.

How can you set up a configuration to meet this requirement?

Answer options

• A. Change settings on the CPM configuration safe so that access is permitted after business hours only.
• B. Update the password change parameters of the platform to match the permitted time frame.
• C. Disable automatic CPM management for all accounts that are assigned to this platform.
• D. Add an exception to the Master Policy to allow the action for this platform during the permitted time.

Correct answer: B

Explanation

The correct answer is B because updating the password change parameters ensures that the account passwords can only be modified during the specified time frame, thus meeting the requirement. Option A does not directly address the password update timing, C would prevent all automatic management which is not the goal, and D would incorrectly allow changes during business hours instead of restricting them.