[2022年03月] 最新のOkta Okta-Certified-Administrator認定練習テスト問題 [Q44-Q63]

Share

[2022年03月] 最新のOkta Okta-Certified-Administrator認定練習テスト問題

確認済みOkta-Certified-Administrator問題集と解答で一年間無料最速更新


Okta Okta-Certified-Administrator 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Oktaをサービスプロバイダーとして構成する方法についての知識を示します
  • Okta
  • ADパスワードポリシーがADポリシーと一致または超える必要がある理由についての知識を示します
トピック 2
  • 各Oktaエージェント
  • プラグイン
  • のトラブルシューティングオプションに関する知識を示します。デスクトップSSO
  • IWAを使用するゾーンでのユーザーエクスペリエンスに関する知識を示します
トピック 3
  • Oktaからディレクトリやアプリにデータを書き戻すことの価値についての知識を示します
  • プロファイルマッピングを作成するプロセスについての深い理解を示します
トピック 4
  • ADからユーザーのクラウド管理への移行に関する知識を示します
  • 高度なエージェントの高可用性についての認識を示します
トピック 5
  • Okta Management API、API-AM、およびAPI製品のユースケースに関する知識を示します
  • アプリケーションリクエストワークフローと資格オプションに関する知識を示します
トピック 6
  • OktaAPIを使用する際のサービスアカウントの重要性についての理解を示します
  • 正しい権限でAPIトークンを作成する方法についての知識を示します
トピック 7
  • 複数のOkta
  • ADパスワードポリシーが必要になる理由についての知識を示します
  • SAMLを使用する際のセキュリティ上の利点と警告についての知識を示します

 

質問 44
Okta has a json representation of objects such as 'users', json schema interchanged on API calls, as an example, but what about the format of information regarding of a user going to a SCIM server for creating the user in an On Premises application?
Solution: Format stays the same: json

  • A. No
  • B. Yes

正解: B

 

質問 45
When you are trying to federate (via WS-FED) Office 365 with Okta:
Solution: You can choose to skip importing user groups and group memberships into Okta

  • A. No
  • B. Yes

正解: B

 

質問 46
In an agentless DSSO (Desktop Single Sign-on) scenario Okta is the one decrypting the Kerberos ticket, finds then the user name, authenticates the user and passes back a session to the browser.
Solution: The statement is valid, but Okta is not the one doing authentication - IWA Agent and AD Agent are doing that as AD agent verifies the AD user's identity

  • A. No
  • B. Yes

正解: A

 

質問 47
Can you map the Okta user ID as an Office 365 Immutable ID?
Solution: Not possible and not intended to be possible as it cannot work like this

  • A. No
  • B. Yes

正解: A

 

質問 48
As an Okta best-practice / recommendation: Okta encourages you to switch from Integrated Windows Authentication (IWA or DSSO) to agentless Desktop Single Sign-on (ADSSO). Okta is no longer adding new IWA functionality and offers only limited support and bug fixes.
Solution: Both statements are true

  • A. No
  • B. Yes

正解: B

 

質問 49
Does Okta require an Agent to sit in-between Okta to SCIM-enabled app on premises requests?
Solution: Yes, an Okta Provisioning Agent

  • A. No
  • B. Yes

正解: B

 

質問 50
With Okta Retention Policy, App generated data and reporting based on log data older than how many months is automatically removed (not considering the Backup Data)?
Solution: This data is never removed, as per GDPR

  • A. No
  • B. Yes

正解: A

 

質問 51
Regarding Access Request Workflow, when a user requests an app - he can also include a message to the approver. But you can also designate an approver group.
Solution: Both statements are false

  • A. No
  • B. Yes

正解: A

 

質問 52
The Okta On-Prem MFA Agent acts as a Radius client and communicates with the RADIUS enabled On-Prem server, including RSA Authentication manager for RSA SecurIDs. This basically allows your organization to leverage Second Factor from a variety of On-Premises multifactor authentication tools.
Solution: The statement is partically true - as it has nothing to do with RSA

  • A. No
  • B. Yes

正解: A

 

質問 53
In Okta's KB articles the set of functions under the 'Provisioning' concept are referred to as CRUD. This is a concept you also meet when referring to CRUD APIs. What about its meaning here, in Okta's vision?
Solution: In 'Provisioning', CRUD stands for Create, Read, Update, Delete

  • A. No
  • B. Yes

正解: A

 

質問 54
There might be specific AD attributes, which - apart from others - do not appear in the Okta user profile. Can those extra attributes be mapped and provisioned towards an app?
Solution: No, it is not possible as Okta queries the whole AD schema and retrieves everything that it's able to

  • A. No
  • B. Yes

正解: A

 

質問 55
When does Okta bring LDAP groups into Okta?
Solution: During both LDAP import and JIT

  • A. No
  • B. Yes

正解: B

 

質問 56
What does it mean: "Mapping Direction AD to Okta"?
Solution: Indicates a schema of attribute values flowing Okta towards AD

  • A. No
  • B. Yes

正解: A

 

質問 57
There might be specific AD attributes, which - apart from others - do not appear in the Okta user profile. Can those extra attributes be mapped and provisioned towards an app?
Solution: Yes, but you need to have a SAML 2.0 integrated app or such flow

  • A. No
  • B. Yes

正解: A

 

質問 58
You just re-enabled IWA DSSO and notice it's not behaving as it should. What is an aspect you should keep in mind?
Solution: That when re-enabling IWA DDSO you have to issue another API token for the AD / IWA Agents

  • A. No
  • B. Yes

正解: A

 

質問 59
What does SCIM stand for?
Solution: System for CRSF-domain Identity Management

  • A. No
  • B. Yes

正解: A

 

質問 60
Speaking of Okta Template App and Okta Pluin Template App, which of the following RegEx can you create for an allow list of URLS so that both endpoints for /login or /change_password are accepted under example.com domain?
Solution: https://example.com/(login|change_password)\\*

  • A. No
  • B. Yes

正解: A

 

質問 61
Which is a / are best-practice(s) in a SAML 2.0 situation?
Solution: To never enable SAML for all your end-users

  • A. No
  • B. Yes

正解: A

 

質問 62
Regarding policies, Okta recommends:
Solution: To include a policy rule that catches not wanted behaviors as a first priority and then label others for permitted behaviors

  • A. No
  • B. Yes

正解: A

 

質問 63
......

最新の2022年最新の実際に出ると確認されたOkta-Certified-Administrator問題集で100%無料Okta-Certified-Administrator試験問題集:https://jp.fast2test.com/Okta-Certified-Administrator-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어