New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Atlassian ACP-520 Exam - Topic 1 Question 9 Discussion

Actual exam question for Atlassian's ACP-520 exam
Question #: 9
Topic #: 1
[All ACP-520 Questions]

IT had written a script to return a list of domains in your Cloud organization.

That script is no longer needed and you would like to ensure the script can no longer access that information.

What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: C

If you want to ensure that the script can no longer access the information about the domains in your Cloud organization, you need to revoke the API key that was used to authenticate the script.An API key is a token that allows you to manage your organization via the admin APIs1.You can create, view, and revoke API keys from the organization settings2.Revoking an API key will invalidate it and prevent any further requests using that key2.

The other options are not relevant or effective for stopping the script from accessing the information. Removing DNS records or removing a verified domain will not affect the API key that was used by the script.It will only affect the verification status of your domain and the management of your users and accounts3. Regenerating a security key will not affect the API key that was used by the script.It will only affect the encryption of your data at rest4. Deleting an IP allowlist will not affect the API key that was used by the script.It will only affect the IP addresses that are allowed to access your organization and products5.


Manage an organization with the admin APIs

Create and revoke API keys

Verify a domain to manage accounts

Regenerate your security key

Set up an IP allowlist

by Ligia at Jul 11, 2025, 08:05 PM

Limited Time Offer

25%

Off

Get Premium ACP-520 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Lelia
2 months ago
B is unnecessary, just revoke access!
upvoted 0 times
...
Kanisha
2 months ago
Totally agree, C makes the most sense.
upvoted 0 times
...
Glendora
2 months ago
C is the way to go, revoke that API key!
upvoted 0 times
...
Lili
3 months ago
Wait, why not just delete the script?
upvoted 0 times
...
Viva
3 months ago
Removing DNS records? That doesn't sound right...
upvoted 0 times
...
Bobbye
3 months ago
Regenerating a security key sounds familiar, but I’m not convinced it directly relates to stopping the script.
upvoted 0 times
...
Amber
3 months ago
I practiced a similar question where revoking access was key, so I’m leaning towards option C.
upvoted 0 times
...
Pete
4 months ago
I'm not entirely sure, but I remember something about removing verified domains could also limit access.
upvoted 0 times
...
Nohemi
4 months ago
I think we need to revoke the API key since that's what the script would have used to access the domains.
upvoted 0 times
...
Samuel
4 months ago
Revoke the API key, got it. That makes the most sense to me - it's a direct way to shut down the script's access without having to mess with the domains or other settings.
upvoted 0 times
...
Gayla
4 months ago
I'm pretty confident the answer is C - revoke the API key. That would effectively cut off the script's ability to access the domain information, which is what the question is asking about.
upvoted 0 times
...
Patrick
4 months ago
Okay, I think the key here is to focus on revoking the script's access, not the domain information. So I'm leaning towards either revoking the API key or regenerating the security key. Those options seem most likely to address the issue.
upvoted 0 times
...
Donte
5 months ago
Hmm, I'm a bit unsure about this one. Removing DNS records or a verified domain doesn't seem quite right, since the question is about the script, not the domains themselves. I'll have to think this through carefully.
upvoted 0 times
...
Lashanda
5 months ago
This seems like a straightforward security question. I'd carefully review the options and think about which one would effectively revoke the script's access to the domain information.
upvoted 0 times
...
Haydee
5 months ago
You know, I'd love to see an option F: 'Nuke the entire cloud organization from orbit. It's the only way to be sure.'
upvoted 0 times
...
Barbra
5 months ago
Option A, remove DNS records? That's like trying to hide the cookies in the cookie jar. C is the clear winner here.
upvoted 0 times
Chaya
5 months ago
I agree, C is definitely the right move.
upvoted 0 times
...
Tresa
5 months ago
Not really, you need to cut off access first.
upvoted 0 times
...
Arlyne
5 months ago
Exactly! Revoking the API key is the best option.
upvoted 0 times
...
Norah
5 months ago
But isn't A also important to consider?
upvoted 0 times
...
...
Elenora
6 months ago
Haha, deleting the IP allowlist? That's like trying to catch a fish with your bare hands. C is the way to go, folks.
upvoted 0 times
Broderick
5 months ago
C is definitely the best option here.
upvoted 0 times
...
Vanna
5 months ago
E) delete IP allowlist
upvoted 0 times
...
Cecilia
5 months ago
C) revoke API key
upvoted 0 times
...
...
Margurite
6 months ago
I'd go with D. Regenerating the security key is a more comprehensive approach to securing the access credentials.
upvoted 0 times
Natalie
5 months ago
I'd go with D. Regenerating the security key is a more comprehensive approach to securing the access credentials.
upvoted 0 times
...
...
Ria
7 months ago
That's a good point, Brock. Regenerating the security key could be another option to consider.
upvoted 0 times
...
Brock
7 months ago
But what about regenerating the security key? Wouldn't that also help secure the information?
upvoted 0 times
...
Antonio
7 months ago
Definitely C. Revoking the API key will ensure the script can no longer access the domain information. Simple and effective solution.
upvoted 0 times
Kasandra
5 months ago
Agreed. It's a simple and effective solution to ensure security.
upvoted 0 times
...
Marvel
7 months ago
That makes sense. Revoking the API key is the best way to prevent the script from accessing the domain information.
upvoted 0 times
...
Marshall
7 months ago
C) revoke API key
upvoted 0 times
...
...
Leota
7 months ago
I agree with Ria, revoking the API key will prevent the script from accessing the information.
upvoted 0 times
...
Ria
7 months ago
I think we should revoke the API key.
upvoted 0 times
...

Save Cancel