Okta Administrator Exam Okta Certified Administrator Exam Questions

As an Okta best-practice / recommendation: Okta encourages you to switch from Integrated Windows Authentication (IWA or DSSO) to agentless Desktop Single Sign-on (ADSSO). Okta is no longer adding new IWA functionality and offers only limited support and bug fixes.

Solution: Both statements are true

When a user signs out of Okta, if they are using IWA, they'll be redirected to the Sign In page and without inputting credentials they'll be signed back in

Solution: Statement is false, as this would represent a security concern

When using Okta Expression Language, which of the following will have the output: okta.com

Solution: String.substringAfter("abc@okta.com", "@")

Does Okta require an Agent to sit in-between Okta to SCIM-enabled app on premises requests?

Solution: Yes, and AD Agent

With agentless DSSO (Desktop Single Sign-on), you still have a need of deploying IWA Agents in your Active Directory domains to implement DSSO functionality.

Solution: The statement is true, as agentless DSSO means no AD agents, not no IWA agents

Whenever you make an API call, you will then get back:

Solution: A new object (a user, group or app object)

When does Okta bring LDAP roles into Okta?

Solution: Only during LDAP JIT