CyberArk Sentry – PAM — Question 56

When performing “In Domain” hardening of a PSM server, which steps must be performed? (Choose two.)

Answer options

• A. Import CyberArk policy settings from the provided file into a new GPO.
• B. Apply advanced audit on the PSM server.
• C. Link GPO to a dedicated OU containing CyberArk PSM servers.
• D. Import an INF file to the local machine.
• E. Configure AppLocker rules to block running unknown executables.

Correct answer: A, C

Explanation

Options A and C are correct because importing CyberArk policy settings into a new GPO and linking that GPO to an OU with PSM servers are essential steps for domain hardening. Options B, D, and E, while potentially useful in other contexts, are not specific to the domain hardening process for a PSM server.