Question 13 - NetApp NS0-304 Real Exam Questions [Feb 2026 Update]

Q: 13

An administrator is using the NetApp BlueXP API to perform actions within an CI/CD process. What information is needed for authentication?

Options

Correct Answer:

Explanation

NetApp BlueXP API authentication for programmatic access, such as in a CI/CD process, uses the OAuth 2.0 authorization framework. The process involves obtaining a long-lived refresh token from the BlueXP UI. This refresh token is then used to request a short-lived access token (which is a JSON Web Token or JWT). For subsequent API calls to perform actions, this access token must be included in the Authorization header of the HTTP request using the Bearer scheme. This bearer token authenticates the API request to the specified endpoint.

Why Incorrect

A. API endpoint and Java web token: While the bearer token is a JSON Web Token (JWT), not a "Java web token," the standard and more precise term for its usage in the HTTP header is "Bearer token," making option D more accurate.

B. API endpoint and API token: The "API token" (also called a refresh token) is used to obtain the access token. It is not used directly to authenticate the API calls that perform actions within the CI/CD process.

C. API endpoint and username/password: This method is for interactive user login to the BlueXP graphical user interface and is not the correct or secure method for programmatic API authentication.

References

1. NetApp BlueXP Documentation, "Get started with the BlueXP API": This document outlines the authentication process. It states, "You'll need to include this access token in the header of subsequent API calls." It then provides a cURL example showing the exact format: -H "Authorization: Bearer ". This directly supports the use of a bearer token.

Reference Location: NetApp BlueXP Documentation > Automate with APIs > Get started with the BlueXP API > Section: "Authenticate to the API".

2. NetApp BlueXP Documentation, "Log in to the API": This page details the two-step authentication. Step 1 is getting the refresh token. Step 2 is getting the access token. It explicitly shows that the access token is then used in the Authorization: Bearer header for API calls.

Reference Location: NetApp BlueXP Documentation > Automate with APIs > Log in to the API > Section: "Step 2: Get an access token".

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE