
合格保証付きクイズ2025年最新の実際に出る検証済みのOkta-Certified-Developer無料試験問題集
無料Okta Customer Identity Certification Okta-Certified-Developer究極な学習ガイド(更新されたのは101問があります)
質問 # 19
Okta Certified Developer Exam Objectives
- A. Okta Certified Developers are technically proficient at building secure, seamless experiences using Okta APIs and SDKs. Developers have experience working with RESTful APIs and developing web applications. They have general understanding of authentication and authorization standards such as OpenID Connect (OIDC) and OAuth, as well as how Okta supports these standards for building authentication, flexible authorization, and role-base access control. Developers also have experience configuring authorization with API Access Management and implementing Single Sign-On (SSO) with OIDC. They have working knowledge of Okta Lifecycle Management and administrative APIs.
- B. Part IAuthentication 9%SSO and API Access Management with OIDC and OAuth 18%Lifecycle Management 16%Administrative APIs 20%Debug Techniques 9%Design Principles 18%Okta Hooks 9%Working with the Sign-In widget for Authentication 2%Part IIOnboard new users using Okta,s Management SDK and User and Group APIs 27%Federate an App through OIDC 33%Securing an API using OAuth and Securely accessing an API from a client app using OAuth 20%Implement the Okta Sign-In Widget for Authentication Purposes 20%
- C. Part I: 45 Discrete Option Multiple Choice QuestionsPart II: Four Performance-Based, Hands-on Use CasesExam takers complete Part I and then are permitted to start Part II.Exam takers are not permitted to return to Part I after they have completed it and submitted their responses for grading.Time allotted: Part I: 60 minutes, Part II: 90 minutesIMPORTANT:Each part is timed separately. Any time left over from Part I does NOT carry over to Part II.Because this is a two-hour and 30 minutes exam, come fully prepared to sit through the entire exam. There is no break between parts I and II of this exam.Exam fee: USD 250 (USD 100 for each subsequent retake)Format: Part I of this exam includes Discrete Option Multiple-Choice (DOMC) items. Part II contains performance-based, hands-on use cases.
正解:B
質問 # 20
How many Password Import Inline Hooks can an admin create per org?
- A. No limit on their number
- B. Only one
- C. One for each custom authorization server
- D. None
正解:B
質問 # 21
The request structure was invalid
- A. All of these
- B. The basic authentication header is malformed
- C. Both header and form parameters were used for authentication
- D. No authentication information was provided
正解:A
質問 # 22
Does Okta support 'Push New Users', 'Push Profile Updates' and 'Push Groups' via SCIM connector?
- A. Yes
- B. No
- C. Yes, but not the ,Push Groups, option
正解:A
質問 # 23
Which of the following is / are true when speaking about managing Self-Service Password Reset?
- A. SMS is the default recovery method for password policies
- B. Email is the default recovery method for password policies
- C. You can add SMS and Voice call as recovery methods, but you have to ensure your users will configure those as authentication factors, otherwise they won,t be able to use them
正解:B、C
質問 # 24
What does SCIM stand for?
- A. System for CRSF-domain Identity Management
- B. System for Cross-domain Identity Management
- C. Secured Cross-domain Identity Management
- D. System of Cross-scripting-domain Identity Management
- E. Secured for Cross-domain Identity Management
正解:B
質問 # 25
What does OIN and JIT Provisioning stand for?
- A. OpenID Network and Just-in-Time Provisioning
- B. Okta Intelligence Network and Just-in-Time Provisioning
- C. Okta Integration Network and Just-in-Time Provisioning
- D. Okta Integration Network and Just-integrating-Trust Provisioning
正解:C
質問 # 26
On the topic of Password Reset - when speaking about the Security Question's answer:
- A. You can modify the length of this Security Question,s answer via a Password policy
- B. You have a default length on the Security Question,s answer of 4 characters - this cannot be modified
- C. You can modify the length of this Security Question,s answer via a Sign On policy
正解:A
質問 # 27
Okta is NOT having an option for users to self-register into an Okta tenant:
- A. False, as this option can be enabled on Production accounts (and not only on this type of accounts)
- B. True, as they would not be able to find out the URL to the tenant, so they cannot find it in the first place
- C. True, as that would mean anyone can register, not only employees, which is a security breach
- D. False, as this option comes by default and can,t even be disabled by an admin, only by Okta Support
- E. False and it can be enabled even through a Signln Widget
正解:A、E
質問 # 28
Which of the following are Server Side HTTP error codes?
- A. 501 (Bad Gateway)
- B. 503 (Service Temporarily Unavailable)
- C. 2XX codes
- D. 4XX codes
- E. 504 (Request Time out)
正解:B
質問 # 29
Can you create in Okta some apps which do not actually use any SSO method?
- A. Yes, for example an app based on the ,Bookmark App, template in the OIN
- B. Yes, all apps supporting SWA / SCIM
- C. No, Okta is used only for SSO when speaking about apps
正解:A
質問 # 30
Whenever you make an API call, you will then get back:
- A. A new Okta access token for Users, SSO
- B. Okta events under ,/events, endpoint
- C. A new object (a user, group or app object)
- D. Response headers
- E. An Okta User object
正解:D
質問 # 31
Is SAML 2.0 Assertion flow one of the OAuth 2.0 flows?
- A. The only Oauth flows that exist are: "Client Authorization flow", "Authorization Code flow", "Authorization Code flow with PKCE",
- B. No, SAML 2.0 Assertion flow is an entirely different protocol
- C. "Server Authorization flow,
- D. Yes, it is
正解:D
質問 # 32
If you host your own Okta Sign-ln Widget, that will:
- A. Increase the speed to your org on authentication / authorization requests
- B. Make your users, authentication requests never hit Okta servers, endpoint anymore as they will be redirected to you, to the server where you have the Sign-ln Widget hosted
- C. Allow you to customize it
正解:C
質問 # 33
Okta's POST / PUT / DELETE / GET APIs (basically the CRUD APIs) can be very well called through by inputting the entire API call in there:
- A. cUrl
- B. Chrome
- C. Postman
正解:A、C
質問 # 34
W o t e o owing are C lent Sl e HTTP error co es?
- A. 404 (Not Found)
- B. All of these
- C. 403 (Forbidden)
- D. 400 (Bad Request)
- E. 410 (Gone)
- F. 408 (Request Time Out)
正解:B
質問 # 35
In KB articles, 'JWKS' stands for:
- A. JSON Wide Ke Set
- B. JSON Web Key Set
- C. James Watt Key Structure
- D. JSON Web Key Structure
- E. JSON Web Key Store
正解:B
質問 # 36
Which of the following Oauth 2.0 flow(s) supports Access Tokens?
- A. Authorization Code with PKCE
- B. Client Credentials
- C. Implicit
- D. Authorization Code
- E. Resource Owner Password
正解:D
質問 # 37
When you call this API endpoint ("/api/vl /sessions/me") with the GET HTTP verb:
- A. If the Session is valid, a Session object is returned. Otherwise if the Session is invalid, a ,404 Not Found, response is returned
- B. If the Session is valid, a Session object is returned. Otherwise if the Session is invalid, a new session is created
- C. If the Session is valid, a Session object is returned. Otherwise if the Session is invalid, an empty cookie object is returned as a 403 HTTP code
正解:A
質問 # 38
'invalid_grant' error is thrown when:
- A. he ,code,, ,refresh_token,, or ,username, and ,password combination is invalid
- B. he ,redirect_uri, doesn,t match the one used in the authentication request
- C. he ,redirect_uri, doesn,t match the one used in the authorization request
正解:A、C
質問 # 39
When speaking about Scopes we have a 'prompt' value, a 'consent_method' and the 'consent'. If the 'prompt' value is set to 'NONE', but the 'consent_method' and the 'consent' values to 'REQUIRED', then:
- A. You will have WARN type of message displayed due to the fact that is redundant to set both ,consent_method, and ,consent, to ,REQUIRED,
- B. You will have an error telling you that the ,prompt, value can never be ,NONE,
- C. You will be thrown an error
正解:C
質問 # 40
Entering the next API Paginated response requires a separate API being called.
- A. Statement is False because each Paginated response comes from a different unique API call
- B. Statement is True
- C. Statement is False because Okta does not support Paginated responses to begin with
正解:B
質問 # 41
The following commands are supported for the Token Inline Hook:
- A. "com.okta.access.patch" - used to modify a refresh token
- B. "com.okta.access.patch" - used to modify an access token
- C. "com.okta.identity.patch" - used to modify a refresh token
- D. "com.okta.identity.patch" - used to modify an ID token
正解:B、D
質問 # 42
Okta implements rate-limits on:
- A. Home page endpoints
- B. Concurrent requests
- C. All of these
- D. End user requests
- E. Okta-generated email messages
正解:C
質問 # 43
When is a request not retried in an Inline Hook scenario?
- A. When the customer endpoint returns a 5xx HTTP code
- B. When the customer endpoint returns a 4xx HTTP code
- C. When the customer endpoint returns a 2xx HTTP code
正解:B、C
質問 # 44
......
Okta-Certified-Developer(Okta Certified Developer)試験は、OktaのIdentity and Access Management(IAM)プラットフォームを使用したソリューションの構築における知識とスキルを検証したい開発者向けに設計された認定プログラムです。試験は、候補者がOktaのアーキテクチャ、機能、実装、および他のアプリケーションとの統合を理解しているかをテストすることを意図しています。
今すぐトップクラスを試そうOkta-Certified-Developer練習試験問題:https://jp.fast2test.com/Okta-Certified-Developer-premium-file.html