Base Flashcards
Can the CPM be installed on the same server as the Vault?
No
What’s the different between User and Account?
User is the person accessing CyberArk, the Accounts are the data.
What’s the benifit for using the HTML5 GW vs RDP through firewall for remote users?
HTML5 GW is not Client specific. Win, Mac, Unix..etc.
What locations should you install the CPM?
Closest to the Target Systems, as it resembles user password change events. Better Performace.
What network conditions should you concider when installing the Vault Sever?
Never in a Domain
Seperate VLAN
No Thrid Party Software
Physical Servers
Should the CPM and PSM be mebers of your Domain?
Yes
Durring Vault installation, there is the option to ‘NOT Harden the Server’, when would you use that?
Durring installing Vault into AWS, hardening would be after Vault install.
How many Windows Services, after a Vault Install?
6
Vault server hardending is following which standard?
Microsoft Security Center Manager (SCM) *Validate This
What port does the Remote Control Agent (on the Vault Server) communicate on?
Port: 9022
What other service does the Remote Control Agent provide, hint auditing?
SMNP
What do you install on the Vault server, beore CyberArk?
HSM software (Hardware Security Module) to store the keys
What tool can you use to test Hardware Security Module communication?
nCipher *validate, many vendors possible
How do you ENROLL the Vault in the HSM server?
Add Port 9004 to dbparm.ini to allow Hardware Security Module (HSM) in the FireWall rules
On Vault install, what 3 default Safes are created?
System, VaultInternal, Notification Engine
