OKTA-CERTIFIED-ADMINISTRATOR Online Practice Questions and Answers

When a user signs out of Okta, if they are using IWA, they'll be redirected to the Sign In page and without inputting credentials they'll be signed back in

Solution: Statement is false, as this would represent a security concern

A. Yes

B. No

The Okta On-Prem MFA Agent acts as a Radius client and communicates with the RADIUS enabled On-Prem server, including RSA Authentication manager for RSA SecurIDs. This basically allows your organization to leverage Second Factor from a variety of On-Premises multifactor authentication tools.

Solution: The statement is partically true - as it has nothing to do with RSA

A. Yes

B. No

In Okta's KB articles the set of functions under the 'Provisioning' concept are referred to as CRUD. This is a concept you also meet when referring to CRUD APIs. What about its meaning here, in Okta's vision?

Solution: In 'Provisioning', CRUD stands for Create, Read, Update, Delete

A. Yes

B. No

Any ... 's credentials verified under "Test API credentials" in an Office365 app integration can allow Okta API integration with Office 365 - permissions which once successfully granted will be used by Okta used for Provisioning related tasks

Solution: Office 365 user

A. Yes

B. No

Can you include / exclude users from specific Network Zones defined in Okta from both Sign On and Password policies?

Solution: You can do this with both policy types mentioned

A. Yes

B. No

Okta has a json representation of objects such as 'users', json schema interchanged on API calls, as an example, but what about the format of information regarding of a user going to a SCIM server for creating the user in an On Premises application?

Solution: Format is different: yml

A. Yes

B. No

If you want to remove an attribute's value in Okta, for example a value coming from AD that is not useful in any way, you have to:

Solution: Delete the mapping by the help of which the value came into Okta User Profile

A. Yes

B. No

When using Okta Expression Language, which of the following will have the output: okta.com

Solution: String.substringBefore("[email protected]", "@okta.com")

A. Yes

B. No

As an Okta best-practice / recommendation: Okta encourages you to switch from Integrated Windows Authentication (IWA or DSSO) to agentless Desktop Single Sign-on (ADSSO). Okta is no longer adding new IWA functionality and offers only limited support and bug fixes.

Solution: Only the second statement is true

A. Yes

B. No

How can SAML provision attributes via JIT? Or even create users?

Solution: By including specific information in the yaml structure sent over via a POST call

A. Yes

B. No