Okta-Certified-Administrator Training & Certification Get Latest Level 2: Administrator Updated on Sep 13, 2021
Certification Training for Okta-Certified-Administrator Exam Dumps Test Engine
NEW QUESTION 24
You just re-enabled IWA DSSO and notice it's not behaving as it should. What is an aspect you should keep in mind?
Solution: That when re-enabling IWA DDSO you have to issue another API token for the AD / IWA Agents
- A. No
- B. Yes
Answer: A
NEW QUESTION 25
With agentless DSSO (Desktop Single Sign-on), you still have a need of deploying IWA Agents in your Active Directory domains to implement DSSO functionality.
Solution: The statement is true, but not for the part about: the deployment of IWA Agents into Active Directory domains. The IWA Agents can now be deployed on whichever machine, it's a unique functionality that only agentless DSSO has and not on-prem DSSO.
- A. No
- B. Yes
Answer: A
NEW QUESTION 26
Whenever you make an API call, you will then get back:
Solution: Okta events under '/events' endpoint
- A. No
- B. Yes
Answer: A
NEW QUESTION 27
Does Okta require an Agent to sit in-between Okta to SCIM-enabled app on premises requests?
Solution: Yes, an Okta Application Integration Agent
- A. No
- B. Yes
Answer: A
NEW QUESTION 28
Once brought into Okta, LDAP roles are represented as:
Solution: Groups
- A. No
- B. Yes
Answer: B
NEW QUESTION 29
If you want to remove an attribute's value in Okta, for example a value coming from AD that is not useful in any way, you have to:
Solution: Simply delete the attribute from the Okta Admin Panel GUI
- A. No
- B. Yes
Answer: A
NEW QUESTION 30
When does Okta bring LDAP groups into Okta?
Solution: During both LDAP import and JIT
- A. No
- B. Yes
Answer: B
NEW QUESTION 31
Which is a / are best-practice(s) in a SAML 2.0 situation?
Solution: To not link your admin user from the SP via SAML with a user from Okta, if the app (SP) does not provide a SAML bypass URL
- A. No
- B. Yes
Answer: B
NEW QUESTION 32
Which port and which of the: 'http' or SSL enabled connections does Okta recommend?
Solution: Port 443 and SSL enabled connections
- A. No
- B. Yes
Answer: B
NEW QUESTION 33
When you are trying to federate (via WS-FED) Office 365 with Okta:
Solution: You can choose to skip importing user groups and group memberships into Okta
- A. No
- B. Yes
Answer: B
NEW QUESTION 34
In Okta's KB articles the set of functions under the 'Provisioning' concept are referred to as CRUD. This is a concept you also meet when referring to CRUD APIs. What about its meaning here, in Okta's vision?
Solution: In 'Provisioning', CRUD stands for Create, Read, Update, Deprovision
- A. No
- B. Yes
Answer: B
NEW QUESTION 35
With Okta Retention Policy, App generated data and reporting based on log data older than how many months is automatically removed (not considering the Backup Data)?
Solution: 3 months
- A. No
- B. Yes
Answer: B
NEW QUESTION 36
Which port and which of the: 'http' or SSL enabled connections does Okta recommend?
Solution: Port 80 and SSL enabled connections
- A. No
- B. Yes
Answer: A
NEW QUESTION 37
What does SCIM stand for?
Solution: System for Cross-domain Identity Management
- A. No
- B. Yes
Answer: B
NEW QUESTION 38
When using Okta Expression Language, which of the following will have the output: This is a test Solution: String.append("This is", " a test")
- A. No
- B. Yes
Answer: B
NEW QUESTION 39
With agentless DSSO (Desktop Single Sign-on), you still have a need of deploying IWA Agents in your Active Directory domains to implement DSSO functionality.
Solution: The statement is true, as agentless DSSO means no AD agents, not no IWA agents
- A. No
- B. Yes
Answer: A
NEW QUESTION 40
There might be specific AD attributes, which - apart from others - do not appear in the Okta user profile. Can those extra attributes be mapped and provisioned towards an app?
Solution: Yes, but you need to have a SAML 2.0 integrated app or such flow
- A. No
- B. Yes
Answer: A
NEW QUESTION 41
When a user's Okta password is changed:
Solution: All apps that are Provisioning-enabled and have Update Attributes option active under Provisioning settings - will begin to sync the password in respective apps, as password is an attribute of their profile - but only if JIT Provisioning is enabled as well as it has to be a just-in-time action, the moment the user resets the password
- A. No
- B. Yes
Answer: A
NEW QUESTION 42
After you turn on Desktop SSO, a default DSSO related routing rule is created. You must configure the network information for this rule.
Solution: The statement is true
- A. No
- B. Yes
Answer: B
NEW QUESTION 43
On a Windows machine, which is the right behavior if you try to sign into your Okta org and agentless DSSO is properly configured for it?
Solution: You will be automatically redirected to your Load-Balancing Application, if you have one configured, enter credentials for it and then redirected back to Okta org
- A. No
- B. Yes
Answer: A
NEW QUESTION 44
As an Okta best-practice / recommendation: Okta encourages you to switch from Integrated Windows Authentication (IWA or DSSO) to agentless Desktop Single Sign-on (ADSSO). Okta is no longer adding new IWA functionality and offers only limited support and bug fixes.
Solution: Only the second statement is true
- A. No
- B. Yes
Answer: A
NEW QUESTION 45
The SCIM protocol is <response_is_entered_here> for provisioning and managing identity data on the web.
Solution: An application-level TLS protocol
- A. No
- B. Yes
Answer: A
NEW QUESTION 46
Once brought into Okta, LDAP roles are represented as:
Solution: Licences
- A. No
- B. Yes
Answer: A
NEW QUESTION 47
When using Okta Expression Language, which of the following will have the output: This is a test Solution: String.join(",", "This", "is", "a", "test")
- A. No
- B. Yes
Answer: A
NEW QUESTION 48
......
Step by Step Guide to Prepare for Okta-Certified-Administrator Exam: https://www.testsimulate.com/Okta-Certified-Administrator-study-materials.html