The correct answer is C: Exclude the application within the LSASS Credentials Harvesting module.
In v23.11.1 is possible to configure the application exceptions from LSASS validation directly on LSASS CH module screen when enabled.
The A and B options exclude the application from ALL EPM VALIDATIONS. This is not asked for in the question.
correct answer is a
To view global excluded applications, go to Agent Configuration > Threat Protection > Excluded Applications.
https://docs.cyberark.com/EPM/22.12.0/en/Content/EPM/Server%20User%20Guide/ConfigureThreatProtection.htm
B. Add the application to the Files to be Ignored Always in Agent Configurations.
The recommended approach to excluding an application that has been identified by the LSASS Credentials Harvesting Module in CyberArk EPM (Endpoint Privilege Manager) is to add the application to the "Files to be Ignored Always" list in Agent Configurations.
By adding the application to this list, you are instructing EPM to ignore this application's behavior, even if it is flagged by certain modules like the LSASS Credentials Harvesting Module. This helps prevent false positives and ensures that legitimate applications are not unnecessarily blocked or restricted.
This section is not available anymore. Please use the main Exam Page.EPM-DEF Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
denianbqe
Highly Voted 1 year, 2 months agoTakumi
Most Recent 11 months agoHyper
1 year, 5 months agopathomas1971
1 year, 5 months agoHyper
1 year, 5 months ago