For which type of file does CPM manage credentials that are hard coded within applications?

The correct choice involves configuration files. CyberArk’s Central Policy Manager (CPM) is specifically designed to manage and secure privileged credentials, including those hard-coded within applications. Configuration files often contain important settings that software applications rely on, and sometimes these settings include sensitive information such as usernames and passwords.

When credentials are hard-coded into configuration files, it's critical to manage and rotate them securely to mitigate the risks of data breaches and unauthorized access. CPM facilitates this by automating the management of those hard-coded credentials, ensuring that they are stored securely and rotated regularly per established security policies. This reduces the reliance on manual processes that could lead to human error and enhances overall security posture.

Other options do not align with the typical use cases for CPM. For instance, while executable files may run applications that use hard-coded credentials, they are not directly managed by CPM in the same way configuration files are. Therefore, focusing on configuration files reveals their specific role in securely storing and managing sensitive information used by applications.