Professional Documents
Culture Documents
Shabika - Assignment 02
Shabika - Assignment 02
Shabika V
shabikasr474@gmail.com
Assignment No 2
Platforms are defined as the technical settings for the user accounts. Also
described as shared characteristics for multiple accounts. It is used for the settings
purpose such as credential management policies and timeframe. For example, the
CPM component of CyberArk uses this platform methodology to frequently rotate
or change the passwords of the accounts for security purposes. Basically CPM is an
example for platform settings that consists of three settings such as:
● Password change
● Password verification
● Password reconciliation
3. What is Disaster Recovery EPV and why do we require it? Also, explain DR
replication in your own words?
Disaster Recovery EPV is a passive or standby component of CyberArk that
acts as a supportive component if there occurs a sudden failure of Prod EPV which
usually remains active. This helps the CyberArk technology to stick with their
important aspect that is the continuous functioning of the CyberArk Vault even
during severe failures in case of any cyber attacks or any other issues.
DR Replication:
● It is the process where the data being recorded in either
video(.avi) or text(.txt) format will be continuously replicated
or backed up from the Prod EPV to DR EPV in real time.
Usually the recordings in PSM are stored temporarily and are
permanently stored in the EPV.
● The DR EPV constantly talks with the Prod EPV through the
Heartbeat Mechanism (it is a mechanism that monitors the connectivity or
communication channels between the agent and the agent’s primary
management server. A packet data is being sent from the agent to the server on
asking it if it's alive or
regular intervals of 60 seconds through port 5723)
not. If it is found out not to be alive then the DR EPV takes up
as the active vault and the Prod EPV becomes the new DR
Vault.
The password recovery is achieved by the use of a recovery utility that helps
to recover the privileged accounts passwords in case of any downtime of EPV
during certain activities such as patching, etc.
5. What is LDAP? Can you explain the purpose of using LDAP in an
organization? Also, mention about the different types of directory services?
LDAP is abbreviated as the Lightweight Directory Access Protocol which is
an open, vendor-neutral, industry standard software protocol for accessing and
maintaining the distributed directory information services over an Internet Protocol
network. It enables anyone to locate data about organizations, individuals and other
resources such as files and devices in a network.
LDAP is an open and cross platform protocol used for directory services
authentication whose purpose is to provide communication language that
applications use to communicate with other directory services servers.