1. What is CyberArk?
CyberArk is basically an information security company. It is a global leader offering Privileged Access Security to a wide range of industries including but not limited to financial service, healthcare sector, retail industry, and energy.
2. What are the primary functions of CyberArk?
CyberArk or CyberArk Enterprise Password Vault forms the primary function of CyberArk which has been designed to control the very confidential passwords that are used to access the systems throughout the organization in its environment.
3. Explain CyberArk endpoint Privilege Manager?
It helps organizations to block and restrict the attacks happening at the endpoint reducing the risk of the content from being stolen in any way. It is hosted by CyberArk and helps in removing the barriers of enforcing the least privilege.
4. What is the maximum count for wrong password access?
To a maximum of 99
5. What is the least time to change a password to configure CPM after each usage?
6. What’s the minimum password complexity required to authenticate CyberArk?
One lowercase and one uppercase alphabet character each and one numeric character must be included in the password.
7. How Does CyberArk Security Work?
To each and every safe, multiple layers of encryption are provided for the maximum security of the content by CyberArk Digital Vault which is also known as the Enterprise Password Vault (EPV). The safely encrypted keys are then stored in the vault and again encrypted with another unique vault encryption key. All these keys are then handed or delivered to a person having appropriate access rights. In order to access the safe and its contents, the user has to confirm manually with the safety supervisor who is allotted by the administrator.
8. Define identity and access management?
Identity and access management also know as identity management is a framework of policies and technologies which make sure that the right individual has the access to the right technology resource at a particular time for a particular reason.
9. What does CyberArk’s PIM stand for?
PIM is an acronym for Privilege Identity Management
10. What do you understand by identity and privilege management?
The major use of Privileged Identity Management (PIM) is to protect or supervise Superuser accounts in the IT environments of an organization. This helps in making sure that the accessing ability to the superuser accounts is not misused.
11. What needs to be done to create a PIM policy?
Firstly, we need to create a CPM policy, then PIM policy and create a PSM connection component & enable it if needed.
12. What CyberArk’s modules are responsible for a recording session?
PSM (Privileged Session Manager) is the one responsible for a recording session
13. What do you understand by Privileged Session Manager?
This is one of the key modules of CyberArk. Privileged Session Manager (PSM) secures and takes into account all the privileged users’ access and activities to any kind of OS platforms, databases, virtual machines, mainframes websites etc. It counts every single keystroke and mouse click and takes utmost care not to enter any malware into the target system and provides only one point of access control.
14. What are the CyberArk Vault protection layers?
Below are the CyberArk Vault Protection Layers:
- Strong Authentication & Granular Access Control
- Firewall & Code-Data Isolation
- File Encryption & Dual Control Security
- Encrypted Network Communication & Visual Security Audit Trail
15. What needs to be enabled for auto password reconciliation policy?
For auto password reconciliation policy, the following should enable
- Password reconciliation for specific policy
- An additional account on the target server with sufficient rights
- Automatic password verification
- Password reconciliation when a password is unync
16. Mention the User Directories supported by CyberArk?
CyberArk supports the following User Directories
- Active Directory
- Novell eDirectory
- IBM Tivoli DS
- Oracle Internet Directory
17. Bring Your Own Clients (BYOC) means
BYOC – “Bring Your Own Clients” means
- If PSM is enabled, you can use any client to access the target system if PSM enabled
- CyberArk PSM covers more target system types than others
- PSM is flexible
18. Can CyberArk change a password in a text file?
Yes, a password can be changed using encryption algorithm if it is in plaintext or encrypted.
19. What is the Component that is used on all CyberArk solutions?
CyberArk Vault is the component used on all CyberArk solutions.
20. What are Authentication schemes supported by CyberArk Vault?
LDAP, Radius, PKI are the authentication schemes that are supported by CyberArk vault.