Refer to the exhibit.
Which statements are correct regarding this Authentication Policy? (Choose two.)
Refer to the exhibit.
Which statements are correct regarding this Authentication Policy? (Choose two.)
The setting 'Continue with additional challenges after failed challenge' in the Authentication Policy indicates that even if the initial challenge (e.g., password) fails, subsequent challenges (MFA) will continue to be presented to the user. Therefore, if users have set up the CyberArk Mobile Authenticator as an MFA, they will still receive the push notification even if they mistyped their password. Also, if the first factor is a password and the user is an Active Directory user but Active Directory is unavailable, the user will not be able to authenticate using Active Directory credentials and will see the message 'Active Directory not available,' making the setting irrelevant in this scenario.
B,C - correct https://docs.cyberark.com/Identity/Latest/en/Content/CoreServices/Authenticate/MFAFirstFail.htm?Highlight=%22Continue%20with%20additional%20challenges%20after%20failed%20challenge%22