Question No. 1

During the configuration of Conjur, what is a possible deployment scenario?

AThe Leader and Followers are deployed outside of a Kubernetes environment; Slandbys can run inside a Kubernetes environment.

BThe Conjur Leader cluster is deployed outside of a Kubernetes environment; Followers can run inside or outside the environment.

CThe Leader cluster is deployed outside a Kubernetes environment; Followers and Standbys can run inside or outside the environment.

DThe Conjur Leader cluster and Followers are deployed inside a Kubernetes environment.

Show Answer

Correct Answer: C

Question No. 2

If you rename an account or Safe, the Vault Conjur Synchronizer recreates these accounts and safes with their new name and deletes the old accounts or safes.

What does this mean?

ATheir permissions in Coniur must also be recreated to access them.

BTheir permissions in Coniur remain the same.

CYou can not rename an account or safe.

DThe Vault-Conjur Synchronizer will recreate these accounts and safes with their exact same names.

Show Answer

Correct Answer: A

Question No. 3

A customer has 100 .NET applications and wants to use Summon to invoke the application and inject secrets at run time.

Which change to the NET application code might be necessary to enable this?

AIt must be changed to include the REST API calls necessary to retrieve the needed secrets from the CCP.

BIt must be changed to access secrets from a configuration file or environment variable.

CNo changes are needed as Summon brokers the connection between the application and the backend data source through impersonation.

DIt must be changed to include the host API key necessary for Summon to retrieve the needed secrets from a Follower

Show Answer

Correct Answer: B

Question No. 4

An application owner reports that their application is suddenly receiving an incorrect password. CPM logs show the password was recently changed, but the value currently being retrieved by the application is a different value. The Vault Conjur Synchronizer service is running.

What is the most likely cause of this issue?

AThe Vault Conjur Synchronizer is not configured with the DR Vault IP address and there has been a failover event.

BDual Accounts are in use, but after the CPM changed the password for the Inactive account, it accidentally updated the password for the Active account instead.

CThe CPM is writing password changes to the Primary Vault while the Vault Conjur Synchronizer is configured to replicate from the DR Vault.

DThe application has been configured to retrieve the wrong password.

Show Answer

Correct Answer: C

Question No. 5

How many Windows and Linux servers are required for a minimal Conjur deployment that integrates with an existing CyberArk PAM Vault environment, supports high availability, and is redundant across two geographically disparate regions?

A5 Linux servers, 2 Windows servers

B9 Linux servers, 2 Windows servers

C3 Linux servers, 1 Windows server

D10 Linux servers, 2 Windows server

Show Answer

Correct Answer: B

Free CyberArk SECRET-SEN Exam Actual Questions

The questions for SECRET-SEN were last updated On Jan 17, 2025