
[Sep-2021] Okta-Certified-Administrator Pre-Exam Practice Tests | Exam Questions and Answers for Level 2: Administrator Study Guide
Okta Certified Administrator Exam Certification Sample Questions
NEW QUESTION 62
When a user signs out of Okta, if they are using IWA, they'll be redirected to the Sign In page and without inputting credentials they'll be signed back in Solution: Statement is false, as this would represent a security concern
- A. No
- B. Yes
Answer: A
NEW QUESTION 63
In Okta's KB articles the set of functions under the 'Provisioning' concept are referred to as CRUD. This is a concept you also meet when referring to CRUD APIs. What about its meaning here, in Okta's vision?
Solution: In 'Provisioning', CRUD stands for Create, Read, Update, Deprovision
- A. No
- B. Yes
Answer: B
NEW QUESTION 64
In an SP-initiated SAML 2.0 flow, the SP will never redirect to Okta if the session is already active Solution: It will always redirect to Okta and in this case only - will promt the user for re-authentication by manually entering SP credentials
- A. No
- B. Yes
Answer: A
NEW QUESTION 65
When using Okta Expression Language, which of the following will have the output: okta.com Solution: String.substring("[email protected]", "@")
- A. No
- B. Yes
Answer: A
NEW QUESTION 66
Does Okta require an Agent to sit in-between Okta to SCIM-enabled app on premises requests?
Solution: Yes, an Okta Provisioning Agent
- A. No
- B. Yes
Answer: B
NEW QUESTION 67
Which of the following is / are true?
Solution: If an MFA factor is set to 'required' and another MFA factor set to 'optional', then users can enroll into both factors and then can use either of them for successful logins
- A. No
- B. Yes
Answer: B
NEW QUESTION 68
The SCIM protocol is <response_is_entered_here> for provisioning and managing identity data on the web.
Solution: An application-level SAML protocol
- A. No
- B. Yes
Answer: A
NEW QUESTION 69
When does Okta bring LDAP roles into Okta?
Solution: Only during LDAP JIT
- A. No
- B. Yes
Answer: A
NEW QUESTION 70
The Okta On-Prem MFA Agent acts as a Radius client and communicates with the RADIUS enabled On-Prem server, including RSA Authentication manager for RSA SecurIDs. This basically allows your organization to leverage Second Factor from a variety of On-Premises multifactor authentication tools.
Solution: The statement is false
- A. No
- B. Yes
Answer: A
NEW QUESTION 71
Can you include / exclude users from specific Network Zones defined in Okta from both Sign On and Password policies?
Solution: Only for Sign On policies you have such granularity
- A. No
- B. Yes
Answer: A
NEW QUESTION 72
Which is a / are best-practice(s) in a SAML 2.0 situation?
Solution: To not use SAML 2.0 and Provisioning via the same App instance in Okta, but integrate the same SP custom domain via two different app instances in Okta, one for SSO, via SAML 2.0 in this case, and one for provisioning on users
- A. No
- B. Yes
Answer: A
NEW QUESTION 73
Regarding Access Request Workflow, when a user requests an app - he can also include a message to the approver. But you can also designate an approver group.
Solution: Only the second statement is true
- A. No
- B. Yes
Answer: A
NEW QUESTION 74
When a user signs out of Okta, if they are using IWA, they'll be redirected to the Sign In page and without inputting credentials they'll be signed back in Solution: Statement is true, but then they'll be displayed a 403 HTTP code (Forbidden)
- A. No
- B. Yes
Answer: A
NEW QUESTION 75
As an Okta best-practice / recommendation: Okta encourages you to switch from Integrated Windows Authentication (IWA or DSSO) to agentless Desktop Single Sign-on (ADSSO). Okta is no longer adding new IWA functionality and offers only limited support and bug fixes.
Solution: Both statements are true
- A. No
- B. Yes
Answer: B
NEW QUESTION 76
Regarding Access Request Workflow, when a user requests an app - he can also include a message to the approver. But you can also designate an approver group.
Solution: Both statements are false
- A. No
- B. Yes
Answer: A
NEW QUESTION 77
Can you map the Okta user ID as an Office 365 Immutable ID?
Solution: Done via mappings, by pushing from Okta to Office 365: user.getInternalProperty("id")
- A. No
- B. Yes
Answer: B
NEW QUESTION 78
Which of the following is / are Okta required attributes?
Solution: None of the above
- A. No
- B. Yes
Answer: B
NEW QUESTION 79
When using Okta Expression Language, which of the following will have the output: okta.com Solution: String.substringAfter("[email protected]", "@")
- A. No
- B. Yes
Answer: B
NEW QUESTION 80
When a user's Okta password is changed:
Solution: All apps that are Provisioning-enabled and have Sync Password option active under Provisioning settings - will begin to sync the password in respective apps
- A. No
- B. Yes
Answer: B
NEW QUESTION 81
In order for SAML to work, there is a need of an IDP and an SP and we know that already, but why is it so? Because:
Solution: An IDP authorizes the users, while the SP authenticates them
- A. No
- B. Yes
Answer: A
NEW QUESTION 82
When a user's Okta password is changed:
Solution: All apps that are Provisioning-enabled and have Update Attributes option active under Provisioning settings - will begin to sync the password in respective apps, as password is an attribute of their profile - but only if JIT Provisioning is enabled as well as it has to be a just-in-time action, the moment the user resets the password
- A. No
- B. Yes
Answer: A
NEW QUESTION 83
......
Okta Exam Practice Test To Gain Brilliante Result: https://www.fast2test.com/Okta-Certified-Administrator-premium-file.html