
Top Okta Okta-Certified-Administrator Courses Online - Updated [Jan-2022]
Okta-Certified-Administrator Practice Dumps - Verified By Exam4PDF Updated 130 Questions
NEW QUESTION 45
Regarding Access Request Workflow, when a user requests an app - he can also include a message to the approver. But you can also designate an approver group.
Solution: Both statements are false
- A. Yes
- B. No
Answer: B
NEW QUESTION 46
In an SP-initiated SAML 2.0 flow, the SP will never redirect to Okta if the session is already active Solution: It might be seamless for the user, but the redirect is happening
- A. Yes
- B. No
Answer: A
NEW QUESTION 47
When does Okta bring LDAP groups into Okta?
Solution: During both LDAP import and JIT
- A. Yes
- B. No
Answer: A
NEW QUESTION 48
Okta AD Agents can be successfully and completely configured by:
Solution: Read-only administrators
- A. Yes
- B. No
Answer: B
NEW QUESTION 49
There might be specific AD attributes, which - apart from others - do not appear in the Okta user profile. Can those extra attributes be mapped and provisioned towards an app?
Solution: Yes, but you need to have a SAML 2.0 integrated app or such flow
- A. Yes
- B. No
Answer: B
NEW QUESTION 50
In Okta's KB articles the set of functions under the 'Provisioning' concept are referred to as CRUD. This is a concept you also meet when referring to CRUD APIs. What about its meaning here, in Okta's vision?
Solution: In 'Provisioning', CRUD stands for Create, Read, Update, Deprovision
- A. Yes
- B. No
Answer: A
NEW QUESTION 51
In an agentless DSSO (Desktop Single Sign-on) scenario Okta is the one decrypting the Kerberos ticket, finds then the user name, authenticates the user and passes back a session to the browser.
Solution: The statement is valid, but Okta is not the one doing authentication - IWA Agent and AD Agent are doing that as AD agent verifies the AD user's identity
- A. Yes
- B. No
Answer: B
NEW QUESTION 52
When you call a GET API call for users / groups / and other such objects, the response is usually Paginated, in case these are a lot of objects returned. What do you do in order to retrieve all objects?
Solution: You have to call a different API request for the next page, which will then provide another API call in the response headers of it - for the following page (in case there are still objects to be returned), till there are no more objects to be returned
- A. Yes
- B. No
Answer: A
NEW QUESTION 53
With agentless DSSO (Desktop Single Sign-on), you still have a need of deploying IWA Agents in your Active Directory domains to implement DSSO functionality.
Solution: The statement is false
- A. Yes
- B. No
Answer: A
NEW QUESTION 54
In an SP-initiated SAML 2.0 flow, the SP will never redirect to Okta if the session is already active Solution: It will always redirect to Okta and in this case only - will promt the user for re-authentication by manually entering SP credentials
- A. Yes
- B. No
Answer: B
NEW QUESTION 55
There might be specific AD attributes, which - apart from others - do not appear in the Okta user profile. Can those extra attributes be mapped and provisioned towards an app?
Solution: Yes, if you map those attributes from AD to Okta and then Okta to App, as an example
- A. Yes
- B. No
Answer: A
NEW QUESTION 56
You just re-enabled IWA DSSO and notice it's not behaving as it should. What is an aspect you should keep in mind?
Solution: That when re-enabling IWA DDSO a new set of Identity Provider (IDP) routing rules have to be created
- A. Yes
- B. No
Answer: B
NEW QUESTION 57
When a user signs out of Okta, if they are using IWA, they'll be redirected to the Sign In page and without inputting credentials they'll be signed back in Solution: Statement is true, but then they'll be displayed a 403 HTTP code (Forbidden)
- A. Yes
- B. No
Answer: B
NEW QUESTION 58
With Okta you federate the 'Office 365 tenant name' (which is the default Microsoft domain you have) or the 'Office 365 domain'?
Solution: You federate with Okta only the 'Office 365 tenant name'
- A. Yes
- B. No
Answer: B
NEW QUESTION 59
Whenever you make an API call, you will then get back:
Solution: Okta events under '/events' endpoint
- A. Yes
- B. No
Answer: B
NEW QUESTION 60
The SCIM protocol is <response_is_entered_here> for provisioning and managing identity data on the web.
Solution: An application-level SAML protocol
- A. Yes
- B. No
Answer: B
NEW QUESTION 61
Does Okta require an Agent to sit in-between Okta to SCIM-enabled app on premises requests?
Solution: Yes, an Okta Provisioning Agent
- A. Yes
- B. No
Answer: A
NEW QUESTION 62
How can SAML provision attributes via JIT? Or even create users?
Solution: By including specific information in the yaml structure sent over via a POST call
- A. Yes
- B. No
Answer: B
NEW QUESTION 63
What does it mean: "Mapping Direction AD to Okta"?
Solution: Indicates a schema of attribute values flowing Okta towards AD
- A. Yes
- B. No
Answer: B
NEW QUESTION 64
Which is a / are best-practice(s) in a SAML 2.0 situation?
Solution: To not use SAML 2.0 and Provisioning via the same App instance in Okta, but integrate the same SP custom domain via two different app instances in Okta, one for SSO, via SAML 2.0 in this case, and one for provisioning on users
- A. Yes
- B. No
Answer: B
NEW QUESTION 65
......
New (2022) Okta Okta-Certified-Administrator Exam Dumps: https://www.exam4pdf.com/Okta-Certified-Administrator-dumps-torrent.html

