Okta Professional Flashcards
How does Okta integrate with AD and LDAP Directories?
Lightweight agents
Can users be managed from on-premise and Okta?
Yes
Is desktop SSO supported with LDAP?
No
What are the 3 types of people or user accounts in Okta?
Okta Mastered
Directory Mastered
Application Mastered
Can Okta mastered users be added to LDAP groups?
No
What are the 4 attributes associated with Okta mastered users?
first name
last name
username
email
What is the file format to import users?
csv
What is the max records that can be imported in a file?
10,000
What is the max size of a file to be imported?
10MB
Where are directory mastered users created?
External directory
Can directory mastered users change their directory linked password in Okta by default?
No
If an LDAP server implements RFC 4350 what should be the unique identifier attribute?
entryuuid
What should the unique identifier attribute be for AD LDS?
objectguid
What are the 3 identity based actions for a user?
joiner
mover
leaver
What are the 3 types of authentication factors?
Something you know
Something you have
Something you are
What platform does Okta use to host their software?
AWS
What are the 3 options for the login experience?
Self-hosted sign in widget
Okta hosted sign in widget
Self-hosted login page
What is created when a user signs up for Okta?
Okta org
What are the two Okta Org types?
Production
preview
What are the 3 admin roles?
Org admin
super admin
app admin
Each Okta org is a _____ in the Okta cloud
tenant
Can Okta protect non-SAML on-premise legacy apps?
yes
What product would be used to protect the on-premise apps?
Access Gateway
Can Okta protect access to APIs
Yes
What product would be used to protect API access
API access management
Can Okta protect access to servers?
yes
What product would be used to protect server access?
Advanced Server Access
What authentication mechanism is used by Advanced Server Access to authenticate to servers?
Client Certs
How long do Advanced Server Access credentials last?
single use
Can custom attributes be added to the csv template before importing?
No
Can directory mastered users change their password in Okta by default?
No
Can directory mastered users be part of Okta groups?
Yes
What is the minimum Windows version for the AD Agent?
Windows 2008 R2
Is a domain admin account required for the AD agent under normal operating conditions?
No
Is a domain admin account required for the AD agent during installation?
yes
Can the Okta AD agent import users and groups which are not in OUs
No
The Okta LDAP agent supports what kind of provisioning?
Just in Time only
How does SWA pass user credentials?
Browser plug in
What SWA option should be used to allow an end user to enter their own credentials?
User sets username and password
Can a user add applications to their home page via self-service
yes
Will provisioning features always be available if you use a SAML connection to a service provider?
No
What is the first card in a Workflow?
Event
What is the first step in setting up MFA?
Select the factors to be used
How are MFA policies assigned?
By group
Can an Okta admin change the group assigned to the default policy?
No
Can the order of the default policies be changed?
No
Can the default policies be deactivated?
No
Can the default policies be deleted?
No
Can an admin force end users to enroll in another factor type before reset?
No
Can an admin create a new policy to un-assign end users from their factors?
No
Can an admin reset selected factors or all factors for a single user?
yes
Can Okta mastered groups be nested?
No
Can Okta mastered groups contain users from different identity sources?
yes
What protocol is used to provision users to Advanced Server Access?
SCIM
What protocol is used to login to a Linux Server?
SSH
What protocol is used to remote desktop into a Windows Server?
RDP
What network ports are required to connect to a Linux target over SSH?
22
What protocols are supposed by Advanced Server Access
SSH, RDP