VA-003
Authentication methods
hard
Question 3 of 32

An employee authenticates to Vault through LDAP, then the LDAP account is disabled in the external directory. What should the security team expect for the already-issued Vault token?

AIt is revoked immediately at the moment the LDAP account is disabled
BIt remains valid until its granted lifetime ends, but renewal requests are denied
CIt is converted into a root token
DIt can never be revoked by Vault

More Authentication methods Questions

32 questions

Full HashiCorp Certified: Vault Associate (003) Practice Test

All topics covered

All HashiCorp Certified: Vault Associate (003) Questions

Browse by topic

Related Questions

A new Vault server is initialized with default settings. Which authentication method is enabled auto...

easy

A practitioner wants one identity in Vault to represent the same person no matter whether they authe...

easy

A platform team needs Vault authentication for workloads running inside Kubernetes by using service ...

medium

A company wants employees to authenticate to Vault by using their enterprise directory accounts. Whi...

medium

A security architect wants the same user who logs in through two different auth methods to map back ...

medium
View all Authentication methods questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account