nerdexam
Cisco

350-401 · Question #184

Drag and Drop Question Drag and drop the REST API authentication method from the left to the description on the right. Answer:

The correct answer is secure vault; HTTP basic authentication; token-based authentication; OAuth. The correct arrangement matches each authentication method to its defining description: Secure Vault stores and manages credentials/secrets centrally so they are never hardcoded; HTTP Basic Authentication sends a username and password encoded in Base64 with each request header; T

Submitted by weili_xi· Mar 6, 2026Network Programmability and Automation – Understanding REST API authentication mechanisms including Basic Auth, token-based auth, OAuth, and secure credential storage (aligns with Cisco DevNet / CCNP Enterprise or similar certification API security objectives)

Question

Drag and Drop Question Drag and drop the REST API authentication method from the left to the description on the right. Answer:

Exhibits

350-401 question #184 exhibit 1
350-401 question #184 exhibit 2

Answer Area

Drag items

secure vaultHTTP basic authenticationOAuthtoken-based authentication

Correct arrangement

  • secure vault
  • HTTP basic authentication
  • token-based authentication
  • OAuth

Explanation

The correct arrangement matches each authentication method to its defining description: Secure Vault stores and manages credentials/secrets centrally so they are never hardcoded; HTTP Basic Authentication sends a username and password encoded in Base64 with each request header; Token-based Authentication issues a signed token (e.g., JWT) after login that is presented with subsequent requests; and OAuth is a delegated authorization framework that allows third-party applications to access resources on behalf of a user without exposing credentials. Each method has a distinct mechanism that differentiates it from the others, and the arrangement reflects the standard industry definitions used in REST API security contexts.

Topics

#REST API Security#Authentication Methods#OAuth#API Design

Community Discussion

No community discussion yet for this question.

Full 350-401 Practice