which of the following statements is NOT true?

it should be “none of them”. All are true for checkpoint cluster synchronizaiton

https://sc1.checkpoint.com/documents/R76/CP_R76_ClusterXL_AdminGuide/7288.htm

Synchronized Cluster Restrictions

The following restrictions apply to synchronizing cluster members:

Only cluster members running on the identical platform can be synchronized.
All cluster members must use the same Check Point software version.
A user-authenticated connection through a cluster member will be lost if the cluster member goes down. Other synchronized cluster members will be unable to resume the connection.
However, a client-authenticated connection or session-authenticated connection will not be lost.
The reason for these restrictions is that user authentication state is maintained on Security Servers, which are processes, and thus cannot be synchronized on different machines in the way that kernel data can be synchronized. However, the state of session authentication and client authentication is stored in kernel tables, and thus can be synchronized.
The state of connections using resources is maintained in a Security Server, so these connections cannot be synchronized for the same reason that user-authenticated connections cannot be synchronized.

Strictly speaking, a cluster being upgraded using Connectivity Upgrade method:

“Connection failover is guaranteed.
The procedure is very similar to “Zero Downtime” with the addition of synchronizing the connections to the upgraded cluster members.”

So C is also not correct. But I’m sure that’s not what this question is aiming for.

A. Client Authentication or Session Authentication connections through a cluster member
will be lost if the cluster member fails.