1Z0-1070-20 Online Practice Questions and Answers

How can you prevent a user from signing in to Oracle Identity Cloud Service if they are using a device that Oracle Identity Cloud Service does NOT recognize?

A. Configure Adaptive Security

B. Configure identity provider policies

C. Configure Multi-Factor Authentication

D. Configure the bridge

Which industry-standard benchmark engine needs to be configured with Oracle Configuration and Compliance Cloud Service?

A. General Data Protection Regulation (GDPR)

B. Secure Technical Implementation Guides (STIGs)

C. Open Vulnerability and Assessment Language (OVAL)

D. Security Content Automation Protocol (SCAP)

Which two services in Oracle Identity SOC solution have machine learning built into it? (Choose two.)

A. Oracle Integration Cloud Service

B. Oracle CASB Cloud Service

C. Oracle Security Monitoring and Analytics Cloud Service

D. Oracle Application Performance Monitoring Cloud Service

How can you synchronize users and groups between Microsoft Active Directory and Oracle Identity Cloud Service?

A. Use the import utility

B. Configure the Bridge

C. Configure Delegated Authentication

D. Use a flat file

Which two statements are true about Identity SOC? (Choose two.)

A. Oracle Identity Cloud Service provides SSO only for Cloud applications.

B. Oracle Identity Cloud Service provides SSO for Cloud and on-premises applications.

C. Oracle Identity Cloud Service provides security controls only for Cloud applications such as IaaS and SaaS.

D. Oracle CASB Cloud Service provides security controls for on-premises and Cloud applications.

In your organization you want to decrease manual intervention for remediation of the large number of security alerts generated from the number of security products deployed against each other. Which solution would solve the problem?

A. Oracle Configuration and Compliance Cloud Service

B. Oracle Data Integration Platform Cloud Service

C. Oracle Identity Security Operations Center (SOC) solution

D. Oracle Integration Cloud Service

A customer use case requires the second Factor Email during Oracle Identity Cloud Service Authentication process for a group of users only. The security administrator, signed in Oracle Identity Cloud Service console, enabled the email factor, edited the default sign-on policy and added a new sign-on rule. The new sign-on rule included the group name in the member of these groups conditions and prompt for additional factor every time. The administrator saved both the rule and the policy.

After executing this configuration, why does the email factor NOT appear to users from that group?

A. The default Sign-on Policy can't be changed.

B. The security administrator needs to specify the list of users instead of the group name.

C. The Passcode Length and Validity Duration of the email factor don't have a default value.

D. The security administrator didn't change the order of the sign-on rules.

Suspicious events that you or Oracle CASB Cloud Service determine to be serious, result in an entry in which of these pages?

A. Configuration, Threat Management

B. Risk Events

C. Incidents

D. Reports

Which option specifies the two major tasks involved in setting up most cloud applications to be monitored by Oracle CASB Cloud Service?

A. defining reports for the application and importing users for the application into Oracle CASB Cloud Service

B. creating policy alerts for the application and creating a tenant admin for the application in Oracle CASB Cloud Service

C. creating a special account in the application and registering the application in Oracle CASB Cloud Service

D. defining incidents to be monitored and risk events to be reported by Oracle CASB Cloud Service

Can you customize which of your identity providers appear on the Sign In page when users are accessing Oracle Identity Cloud Service either locally or through a specific app?

A. No, because users should always sign in using their local authentication credentials.

B. Yes, by using identity provider policies.

C. Yes, by using sign-on policies.

D. No, because any identity provider that's set to appear in the Sign In page will be displayed.