CyberArk Sentry – PAM — Question 21

Your customer upgraded recently to version 12.2 to allow the Linux team to use the new MFA caching feature. The PSM for SSH was installed with default configuration settings. After setting the Authentication to SSH key and enabling MFA Caching from the PVWA interface, the Linux Team cannot connect successfully using the new MFA caching feature.
What is the most probable cause?

Answer options

• A. OpenSSH 7.8 or above is not installed.
• B. The MFACaching parameter in the psmpparms file is not set to True.
• C. A passphrase policy must be added.
• D. MFA caching is not supported when the PSM for SSH is deployed with default settings.

Correct answer: A

Explanation

The correct answer is A because OpenSSH version 7.8 or above is necessary for the MFA caching feature to function correctly. If this version is not installed, the Linux team will face connectivity issues. The other options do not directly address the requirement for the specific OpenSSH version needed for MFA caching to work.