CyberArk Sentry – PAM — Question 16

Which statement about REST API is correct? (Choose two.)

Answer options

• A. When a user successfully authenticates to the Vault, an authentication token is returned.
• B. REST API Windows authentication method allows skipping the logon API by using the Windows default credentials with a Kerberos ticket.
• C. To allow High Availability, REST API can be configured to support Session Load Balancing by editing the PVConfiguration.xml and setting the AllowPVWASessionRedandancy=Yes.
• D. Each REST API call requires that a valid authentication token be provided.
• E. REST calls are directly sent to the currently active Vault using Port 1858.

Correct answer: A, D

Explanation

The correct answers are A and D. Statement A is accurate as an authentication token is indeed returned upon successful user authentication. Statement D is also correct because every REST API call must include a valid authentication token to ensure security. Options B, C, and E contain inaccuracies or details that do not pertain to the core functionality of REST APIs.