04 Define Users in Okta (Provisioning-LCM) Flashcards
Demo 1: Lifecycle Management Demonstrate knowledge of what lifecycle management is in Okta
Lifecycle Management
Demo 1A: Provisioning Concepts Demonstrate knowledge of what lifecycle management is in Okta
Provisioning Concepts
Demo 2: Demonstrate knowledge of when to use Okta user states and statuses
End user account states
Demo 2A: Demonstrate knowledge of when to use Okta user states and statuses
Manage users
Demo 2B: Demonstrate knowledge of when to use Okta user states and statuses
Okta Essentials Module 2: Define Your Users in Okta
Demo 3: Demonstrate knowledge of how to use app assignments, requests, and automations to provision applications to users
Access Request Workflow
Demo 3A: Demonstrate knowledge of how to use app assignments, requests, and automations to provision applications to users
Okta Essentials Module 5: Configure SSO and Provisioning
Demo 3B: Demonstrate knowledge of how to use app assignments, requests, and automations to provision applications to users
Okta Essentials Module 7: Manage Access Request Workflows
Demo 4: Demonstrate knowledge of how to manage group assignments and rules
Manage Groups
Demo 5: Demonstrate knowledge of the various group types supported by Okta
Using Group Push
Demo 5A: Demonstrate knowledge of the various group types supported by Okta
Manage Groups
Demo 5B: Demonstrate knowledge of the various group types supported by Okta
Okta Essentials Module 4: Configure Groups
Is “people” required in Okta?
Within Okta, people are one of the mandatory components. You cannot use Okta without configuring people or users within it.
Why do you want to create groups/users in Okta?
You can create different types of users, Okta-master users, import users from a directory, or import users from applications. Creating different users provides them access to applications securely and easily. With users in Okta, you can then associate administrative permissions to users for assistance administering the Okta instance.
How do you create accounts independent of an external directory service?
Import users into Okta and create groups.
How do you provide access to people outside of Okta?
Create groups that allow limited access.
Instead of “users” what does Okta refer to individuals as
People
What are the 3 types of users in Okta?
a. Okta-Mastered b. Directory-Mastered c. Application-Mastered
How does Okta allow access to different people?
While all people profiles contain core information, such as first name, last name, and email address, how the person accesses applications and authenticates to Okta depends on your directory service and Okta configurations.
What are the characteristics of Okta-Mastered people?
a. They are created and maintained in Okta b. They are authenticated against Okta policy c. They are associated with Okta groups d. Provide an alternative login method separate from external diretories. They are governed by Okta user profile.
What are the characteristics of Directory-Mastered people?
a. Has to be imported from an external directory. The people records are known as directory mastered.
b. These people are created and maintained in the external directory.
c. The directory has to be pulled into Okta using an agent.
d. It has to authenticated against the external directory
e. It has to be associated with directory or Okta groups.
f. It has to be governed by the directory user profile.
What are the characteristics of an Application-Mastered people?
a. When imported from an app, the people records are known as application-mastered.
b. These people are being created and maintained in the application such as Workday or SF.
c. Pushed to Okta using a pre-defined Okta integration Network (OIN) application.
d. Authenticated against Okta or external directory
e. Governed by the application user profile.
What are the things that administrators can do with Okta-mastered users with account and Password management?
a. Define authentication settings in Okta
b. Manage account unlocks and resets through the Okta Administrator app.
c. Can mass reset password
What are the things that end users can do with Okta-mastered users with account and password management?
a. Can modify account information and change passwords on the account settings page
b. Can use the Forget password link to reset password