
[2022年03月] 最新のOkta Okta-Certified-Administrator認定練習テスト問題
確認済みOkta-Certified-Administrator問題集と解答で一年間無料最速更新
Okta Okta-Certified-Administrator 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
| トピック 6 |
|
| トピック 7 |
|
質問 44
Okta has a json representation of objects such as 'users', json schema interchanged on API calls, as an example, but what about the format of information regarding of a user going to a SCIM server for creating the user in an On Premises application?
Solution: Format stays the same: json
- A. No
- B. Yes
正解: B
質問 45
When you are trying to federate (via WS-FED) Office 365 with Okta:
Solution: You can choose to skip importing user groups and group memberships into Okta
- A. No
- B. Yes
正解: B
質問 46
In an agentless DSSO (Desktop Single Sign-on) scenario Okta is the one decrypting the Kerberos ticket, finds then the user name, authenticates the user and passes back a session to the browser.
Solution: The statement is valid, but Okta is not the one doing authentication - IWA Agent and AD Agent are doing that as AD agent verifies the AD user's identity
- A. No
- B. Yes
正解: A
質問 47
Can you map the Okta user ID as an Office 365 Immutable ID?
Solution: Not possible and not intended to be possible as it cannot work like this
- A. No
- B. Yes
正解: A
質問 48
As an Okta best-practice / recommendation: Okta encourages you to switch from Integrated Windows Authentication (IWA or DSSO) to agentless Desktop Single Sign-on (ADSSO). Okta is no longer adding new IWA functionality and offers only limited support and bug fixes.
Solution: Both statements are true
- A. No
- B. Yes
正解: B
質問 49
Does Okta require an Agent to sit in-between Okta to SCIM-enabled app on premises requests?
Solution: Yes, an Okta Provisioning Agent
- A. No
- B. Yes
正解: B
質問 50
With Okta Retention Policy, App generated data and reporting based on log data older than how many months is automatically removed (not considering the Backup Data)?
Solution: This data is never removed, as per GDPR
- A. No
- B. Yes
正解: A
質問 51
Regarding Access Request Workflow, when a user requests an app - he can also include a message to the approver. But you can also designate an approver group.
Solution: Both statements are false
- A. No
- B. Yes
正解: A
質問 52
The Okta On-Prem MFA Agent acts as a Radius client and communicates with the RADIUS enabled On-Prem server, including RSA Authentication manager for RSA SecurIDs. This basically allows your organization to leverage Second Factor from a variety of On-Premises multifactor authentication tools.
Solution: The statement is partically true - as it has nothing to do with RSA
- A. No
- B. Yes
正解: A
質問 53
In Okta's KB articles the set of functions under the 'Provisioning' concept are referred to as CRUD. This is a concept you also meet when referring to CRUD APIs. What about its meaning here, in Okta's vision?
Solution: In 'Provisioning', CRUD stands for Create, Read, Update, Delete
- A. No
- B. Yes
正解: A
質問 54
There might be specific AD attributes, which - apart from others - do not appear in the Okta user profile. Can those extra attributes be mapped and provisioned towards an app?
Solution: No, it is not possible as Okta queries the whole AD schema and retrieves everything that it's able to
- A. No
- B. Yes
正解: A
質問 55
When does Okta bring LDAP groups into Okta?
Solution: During both LDAP import and JIT
- A. No
- B. Yes
正解: B
質問 56
What does it mean: "Mapping Direction AD to Okta"?
Solution: Indicates a schema of attribute values flowing Okta towards AD
- A. No
- B. Yes
正解: A
質問 57
There might be specific AD attributes, which - apart from others - do not appear in the Okta user profile. Can those extra attributes be mapped and provisioned towards an app?
Solution: Yes, but you need to have a SAML 2.0 integrated app or such flow
- A. No
- B. Yes
正解: A
質問 58
You just re-enabled IWA DSSO and notice it's not behaving as it should. What is an aspect you should keep in mind?
Solution: That when re-enabling IWA DDSO you have to issue another API token for the AD / IWA Agents
- A. No
- B. Yes
正解: A
質問 59
What does SCIM stand for?
Solution: System for CRSF-domain Identity Management
- A. No
- B. Yes
正解: A
質問 60
Speaking of Okta Template App and Okta Pluin Template App, which of the following RegEx can you create for an allow list of URLS so that both endpoints for /login or /change_password are accepted under example.com domain?
Solution: https://example.com/(login|change_password)\\*
- A. No
- B. Yes
正解: A
質問 61
Which is a / are best-practice(s) in a SAML 2.0 situation?
Solution: To never enable SAML for all your end-users
- A. No
- B. Yes
正解: A
質問 62
Regarding policies, Okta recommends:
Solution: To include a policy rule that catches not wanted behaviors as a first priority and then label others for permitted behaviors
- A. No
- B. Yes
正解: A
質問 63
......
最新の2022年最新の実際に出ると確認されたOkta-Certified-Administrator問題集で100%無料Okta-Certified-Administrator試験問題集:https://jp.fast2test.com/Okta-Certified-Administrator-premium-file.html