Okta-Certified-Consultant無料問題集「Okta Certified Consultant」

質問 1

Groups are pushed towards apps via the method(s):

（A）Push by SSO standard

（B）Push by rule

（C）Push by name

（D）Push by Entity Id

正解：B、C 解答を投票する

質問 2

Can you configure both SSO and Provisioning on the same app integration?

（A）Yes

（B）Yes, but only if you specifically enable the tenant-wide option "Enable SSO and Provisioning on same instances of applications"

（C）Yes, but only for Office 365 and G Suite apps

（D）No

正解：A 解答を投票する

質問 3

Which of the following is / are OAuth 2.0 flow(s):

（A）Authorization Code flow

（B）Client Credentials

（C）Client Access Authorization flow

（D）Server Authorization flow

（E）Authorization Code flow with PKCE

正解：A、B、E 解答を投票する

質問 4

In a SAML 2.0 scenario, the Service Provider never directly interacts with the Identity Provider. Instead, a browser acts as the agent to carry out all the redirections.

（A）False, as APIs go directly into each other,s domains, thus endpoints

（B）True for OIDC, not for SAML 2.0

（C）True, hence why different TLS versions can still be understood between parts and browser will forward the information then to the other side with the right TLS version needed

（D）False, as SAML 2.0 implies the trust to be exchanged directly between IDP (Identity provider) and SP (Service Provider)

正解：C 解答を投票する

質問 5

There is a property named ''uid'', which is the user ID. This parameter is returned:

（A）Only if the token is a refresh token and the subject is an end user

（B）Only if the token is an access token and the subject is an admin

（C）Only if the token is an refresh token and the subject is a resource server

（D）Only if the token is an access token and the subject is a authorization server

（E）Only if the token is an access token and the subject is an end user

正解：E 解答を投票する

質問 6

Which is / are true for Okta Verify?

（A）Is always used to block user logins from outside the Networks defined in Okta

（B）Is an MFA factor

（C）Is developed by Okta

（D）It supports Push notifications

正解：B、C、D 解答を投票する

質問 7

How can you let users from external Identity Providers SSO (Single Sign On) into Okta?

（A）Okta is an IdP, hence it cannot be an SP to allow such a flow

（B）By only enabling JIT (Just-in-Time) Provisioning at an org-level

（C）By creating an Inbound SAML connection with that IdP

正解：C 解答を投票する

質問 8

Beside Okta org. being used as an authorization server, there also can be other types of authorization servers added (other custom ones).

（A）True and the issuer looks like: https://<subdomain>.okta.com

（B）FALSE

（C）True and the issuer looks like: https://okta.com

（D）True and the issuer looks like: https://<subdomain>.okta.com/oauth2/${authorizationServerId}

（E）TRUE

正解：D、E 解答を投票する

質問 9

Can you create users in Okta even without enabling Provisioning via an API token and using only SAML 2.0 and JIT?

（A）Yes, via an Inbound SAML app, for example

（B）No

（C）Yes, but only if Okta is an IdP in the scenario

正解：A 解答を投票する

質問 10

You are faced with the error: "Failed to connect to the specified LDAP server displays.". What is worth to consider checking first?

（A）Email should be in a UPN format, this needs to get checked

（B）To run a query and see if it returns the right port for LDAP (always non-SSL)

（C）That the ,username, attribute,s format contains the exact ,email, attribute,s address value

（D）To make sure you enabled LDAPS

正解：D 解答を投票する

Okta-Certified-Consultant 無料問題集「Okta Certified Consultant」

弊社を連絡する

関連リンク

トップ試験