CyberArk Sentry – Secrets Manager — Question 11

You have a PowerShell script that is being used on 1000 workstations. It requires a Windows Domain credential that is currently hard coded in the script.
What is the simplest solution to remove that credential from the Script?

Answer options

• A. Modify the script to use the CLI SDK to fetch the secret at runtime using Credential Providers installed on each workstation.
• B. Modify the script to make a SOAP call to retrieve the secret from the Central Credential Provider.
• C. Modify the script to run on WebSphere using the Application Server Credential Provider to retrieve the secret.
• D. Use Conjur Summon to invoke the script and inject the secret at run time.

Correct answer: D

Explanation

The correct answer, D, is the simplest because Conjur Summon is designed to manage secrets and can inject them at runtime without modifying the script significantly. Options A, B, and C involve more complex changes and dependencies, which may not be as straightforward as using Conjur Summon.