Question No. 1

Where can all the self-signed/imported certificates be found in Conjur?

A/opt/conjur/etc/ssl from the Conjur containers

B/opt/conjur/certificates from the Conjur containers

C/opt/cyberark/dap/certs from the Conjur containers

DLog in to the Conjur UI > Conjur Cluster > Certificates > view.

Show Answer

Correct Answer: A

Question No. 2

What is the correct process to upgrade the CCP Web Service?

ARun ''sudo yum update aimprv'' from the CLI.

BDouble-click the Credential Provider installer executable and select upgrade.

CDouble-click the AimWebService.msi and select upgrade.

DUninstall and reinstall the CCP Web Service.

Show Answer

Correct Answer: D

Question No. 3

You are setting up a Kubernetes integration with Conjur. With performance as the key deciding factor, namespace and service account will be used as identity characteristics.

Which authentication method should you choose?

AJWT-based authentication

BCertificate-based authentication

CAPI key authentication

DConnect (OIDC) authentication

Show Answer

Correct Answer: A

Question No. 4

Refer to the exhibit.

How can you confirm that the Follower has a current copy of the database?

ACompare the pgcurrentxlog_locationlocation from the Leader to the Follower you need to validate against.

BCount the number of components in pgstartreplication and compare this to the total number of Followers in the deployment.

CValidate that the Follower container ID matches the node in the info endpoint on the Leader.

DRetrieve the credential from a test application on the Leader cluster; then retrieve against the Follower and compare if they are accurate.

Show Answer

Correct Answer: A

Question No. 5

When using the Seed Fetcher to deploy Kubernetes Followers, an error occurs in the Seed Fetcher container. You check the logs and discover that although the Seed Fetcher was able to authenticate, it shows a 500 error in the log and does not successfully retrieve a seed file. What is the cause?

AThe certificate based on the Follower DNS name is not present on the Leader.

BThe host you configured does not have access to see the certificates.

CThe synchronizer service crashed and needs to be restarted.

DThe Leader does not have the authenticator webservice enabled.

Show Answer

Correct Answer: A

Free CyberArk SECRET-SEN Exam Actual Questions

The questions for SECRET-SEN were last updated On Nov 7, 2024