What is a main advantage of using dual accounts in password management?
A. Since passwords are cached for both rotation accounts, it ensures the password for an application will not be changed, reducing the amount of blackout dates when a password expires.
B. It ensures passwords are rotated every 90 days, which respects the expected downtime for a system, database, or application
C. It ensures no delays are incurred when the application needs credentials because a password that is currently used by an application will never be changed
D. Since there are two active accounts, it doubles the probability that a system, database, or application will successfully authenticate.
You have a PowerShell script that is being used on 1000 workstations. It requires a Windows Domain credential that is currently hard coded in the script.
What is the simplest solution to remove that credential from the Script?
A. Modify the script to use the CLI SDK to fetch the secret at runtime using Credential Providers installed on each workstation.
B. Modify the script to make a SOAP call to retrieve the secret from the Central Credential Provider.
C. Modify the script to run on WebSphere using the Application Server Credential Provider to retrieve the secret.
D. Use Conjur Summon to invoke the script and inject the secret at run time.
Which statement is correct about this message?
Message: "[number-of-deleted-rows] rows has successfully deleted "CEADBR009D Finished vacuum"?
A. It notes the number of records deleted from the database and does not require any action.
B. The user specified for Conjur does not have the appropriate permissions to retrieve the audit database (audit .db).
C. When audit retention was performed, the query on the Ul audit database (audit.db) generated an error.
D. The Vault Conjur Synchronizer successfully deleted the password objects that were marked for deletion in the PVWA.
Which statement is true for the Conjur Command Line Interface (CLI)?
A. It is supported on Windows, Red Hat Enterprise Linux, and macOS.
B. It can only be run from the Conjur Leader node.
C. It is required for working with the Conjur REST API.
D. It does not implement the Conjur REST API for managing Conjur resources.
Which API endpoint can be used to discover secrets inside of Conjur?
A. Resources
B. Roles
C. Policies
D. WhoAmi
In the event of a failover of the Vault server from the primary to the DR, which configuration option ensures that a CP will continue being able to refresh its cache?
A. Add the DR Vault IP address to the "Address" parameter in the file main_appprovider.conf.
B. Add the IP address of the DR vault to the "Address" parameter in the file Vault.ini.file on the machine on which the CP is installed.
C. In the Password Vault Web Access UI, add the IP address of the DR Vault in the Disaster Recovery section under Applications > Options.
D. In the Conjur UI, add the IP address of the DR Vault in the Disaster Recovery section under Cluster Config > Credential Provider > Options.
While retrieving a secret through REST, the secret retrieval fails to find a matching secret. You know the secret onboarding process was completed, the secret is in the expected safe with the expected object name, and the CCP is able to provide secrets to other applications.
What is the most likely cause for this issue?
A. The application ID or Application Provider does not have the correct permissions on the safe.
B. The client certificate fingerprint is not trusted.
C. The service account running the application does not have the correct permissions on the safe.
D. The OS user does not have the correct permissions on the safe
Refer to the exhibit.
In which example will auto-failover occur?

A. Option A
B. Option B
C. Option C
D. Option D
DRAG DROP
Match each cloud platform to the correct Conjur authenticator.
Select and Place:

DRAG DROP
Findings were obtained after cataloging pending Secrets Manager use cases.
Arrange the findings in the correct order for prioritization.
Select and Place:
