CyberArk Certification - Defender & Sentry Practice Exam




CyberArk Certification - Defender & Sentry Practice Exam

This practice test will prepare you to Pass CyberArk Defender (PAM-DEF) and Sentry (PAM-SEN) Certification.


CyberArk Defender PAM (PAM-DEF, previously known as CAU201)

This certification provides the practical knowledge and technical skills to maintain day-to-day operations and support the on-going performance of the relevant CyberArk Solution.


CyberArk Sentry PAM (PAM-SEN, previously known as CAU301)

This certification track provides participants with the tools to deploy, install, and configure the CyberArk Solution.


The exam prep has currently 400+ multiple-choice unique questions divided into six Practice tests and 120 minutes each practice test to complete the exam.

Passing score (at least 70% correct)


In Defender: This certification provides the practical knowledge and technical skills to maintain day-to-day operations and support the on-going performance of the CyberArk Privileged Access Security Solution

The CyberArk Defender Certification tests examinees ability to form the following tasks in seven knowledge domains. Only functions of the Core PAS Solution are included.

Account Onboarding

• Perform a bulk upload of accounts using Password Upload Utility or REST

• Create an Onboarding Rule

• Onboard an account from the pending accounts list

• Setup a Unix Discovery

• Setup a Windows Discovery

• Manually onboard an account

• Onboard SSH Keys with Account Uploader

Application Management

• Describe tools that could be used to monitor CyberArk Application Health

• Use PrivateArk with Proficiency

• Describe how each component communicates with others or devices on network at a high level

• Maintain an appropriate chain of custody for Encryption Keys

Ongoing Maintenance

• Restore DR to normal operation after a failover

• Backup Vault Data with PAReplicate

• Resync a credential file by running create credfile manually on the command line


In Sentry: The Sentry certification track provides participants with the tools to deploy, install and configure a basic setup of the CyberArk PAS Solution

The CyberArk Sentry Certification tests examinees ability to form the following tasks in seven knowledge domains. Only functions of the Core PAS Solution are included.

Deploy the Vault

  • Identify and describe the steps to migrate the server key to an HSM

  • Identify and describe the steps to complete a post-install hardening

  • Identify and describe the components and steps to complete a Vault installation

  • Describe how to prepare a Windows server for Vault installation

  • Describe how to register a primary vault in AWS using AMIs

  • Describe how to register a primary vault in Azure using the CyberArk image

Deploy the Password Vault Web Access (PVWA)

  • Identify and describe the steps to install the first and additional PVWAs

  • Evaluate and scope a customer environment to determine the appropriate number of PVWAs and their placement within the network

  • Describe the process to correctly harden a PVWA server

  • Describe various PVWA load balancing options  Prepare a Windows server for PVWA installation

Deploy the Central Policy Manager (CPM)

  • Identify and describe the steps to correctly harden a CPM server

  • Identify and describe the steps required to prepare a Windows server for CPM installation

  • Identify and describe the steps to install the first and additional CPMs

  • Identify and describe the steps to rename a CPM

  • Evaluate and scope a customer environment to determine the number of CPMs required and their placement within the network

  • Identify and describe Fault Tolerant Architecture components

  • Determine the quantities and locations of components needed to provide a fault tolerant architecture to meet customer needs

  • Identify and describe distributed architecture components

  • Determine the quantities and locations of components needed to provide a distributed architecture to meet customer needs

Deploy the Privileged Session Manager (PSM)

  • Identify and describe the steps to install the first and additional PSMs

  • Identify and describe preparation considerations for PSM deployment

  • Evaluate and scope a customer environment to calculate the amount of storage that should be available to the PSMs for PSM recordings

  • Evaluate and scope a customer environment to calculate the amount of storage that should be available to the Vault and PAReplicate for PSM recordings

  • Evaluate and scope a customer environment to determine the appropriate number of PSMs and their placement within the network

  • Identify and describe the steps to prepare a Windows server for PSM installation

  • Describe post-installation processes  Identify and describe the steps to complete an HTML5 Gateway installation

  • Identify and describe the steps to prepare a UNIX server for HTML5 Gateway installation

  • Describe various PSM load-balancing options  Describe how to correctly harden a PSM server

Deploy the PSM For SSH

  • Identify and describe the steps to install the first and additional PSMs for SSH

  • Describe how to configure usrmng accounts

  • Describe the process to correctly harden a PSM for SSH server

  • Describe how to prepare a UNIX server for PSM for SSH installation

Configure Integrations

  • Configure authentication methods

  • Describe the steps required to combine a Vault and a PVWA authentication method to create two-factor authentication

  • Describe how to configure PKI authentication

  • Describe how to configure RADIUS authentication

  • Describe how to configure SAML authentication

  • Identify and describe the components that work with each authentication method

  • Describe how to generate a custom connection component using the PGU

  • Perform integration tasks, including integrating with NTP, SMTP, SNMP, LDAP, and Syslog/SIEM

Performance tune the solution

  • Identify and describe the steps to convert a platform from PMTerminal to TPC

  • Identify and describe how to correctly configure Interval and concurrent settings

  • Identify and describe how to correctly configure the Allowed Safes parameter

  • Evaluate and scope a customer environment to correctly size the servers to meet customer needs

  • Install and deploy on a public cloud

Install and deploy on a public cloud

  • Identify best practices agnostic to public cloud deployments

  • Identify and describe different cloud architectures

  • Describe key management considerations in a public cloud

  • Identify and describe various cost reduction strategies when deploying into a public cloud

Updated July 2022 | Get ready before PAM-DEF (CAU201) and PAM-SEN (CAU301) | 400+ Questions | 06 Full Practice Exam

Url: View Details

What you will learn
  • Understand CyberArk components Vault, CPM , PVWA , PSM , PTA
  • Account Onboarding
  • Application Management

Rating: 3.9

Level: All Levels

Duration: 435 questions

Instructor: Ali Muhammad


Courses By:   0-9  A  B  C  D  E  F  G  H  I  J  K  L  M  N  O  P  Q  R  S  T  U  V  W  X  Y  Z 

About US

The display of third-party trademarks and trade names on this site does not necessarily indicate any affiliation or endorsement of hugecourses.com.


© 2021 hugecourses.com. All rights reserved.
View Sitemap