ForgeRock AIC Practice Exam 2026 - Free Identity Cloud Practice Questions and Study Guide

The journey that utilizes the Knowledge-Based Authentication (KBA) definition node is the reset password journey. In a reset password scenario, it is crucial to ensure that the individual requesting the password reset is the legitimate account owner. KBA provides an extra layer of security by posing questions that ideally only the account holder would know the answers to.

In this context, the KBA node is designed to authenticate users by verifying their responses to specific knowledge-based questions before proceeding to allow the reset of a password. This mechanism not only strengthens security but also helps in preventing unauthorized access to user accounts, particularly in scenarios where users have forgotten their passwords and are attempting to regain access.

The other journeys—such as login, registration, and forgotten username—do not typically involve the KBA node as they focus on different aspects of user identity verification and account management. Therefore, focusing on the unique requirements of the reset password journey clarifies why it is the one that incorporates the KBA definition.