Volume: 81 Questions Question: 1 Which item must be enabled on the client side to allow users to complete certification in offline mode? A. In Microsoft Excel, navigate to Excel Options >Trust Center tab > Trust Center Settlings > Macro Settlings tab and select the "Trust access to the VBA project object model" check box. B. In Microsoft Excel, navigate to Excel Options > Trust Center tab > Trust Center Settlings > Macro Settlings tab andselect the "Oracle-adfdi-excel-addin" check box. C. In Microsoft Windows, search for /HKEY_CURRENT_USER\ Software\Microsoft\Office\ 12. 0\Excel\Security and add the following value (DWORD) "ExtensionHardening" = 0. D. In Microsoft Excel, navigate to ExcelOptions > Trust Center tab > Trust Center Settlings > Macro Settings tab and select the "Disable all macros without notification" check box. Question: 2 A company created a Catalog with items tagged with one or more of the following categories using the custom tags metadata attribute: Enterprise, Department, Team, and Project. Select the option showing the code that builds the right CatalogSearchCriteria for a search that will correctly populate the Catalog search results with the list of Entitlements tagged with a selected category. Only Entitlements must be displayed. A. CatalogSearchCriteria tags = new CatalogSearchCriteria(Catalogsaarchcriteria.Argument.TAG, selectedcategory,catalogsearchcriteria.operator.equal); CatalogSearchCriteria cat = new CatalogSearchCriteria(CatalogSearchCriteria.Argument.CATEGORY,"Entitlement", CatalogSearchCriteria.Operator.EQUAL); CatalogSearchCriteria scrt = new CatalogSearchCriteria (tags,cat,catalogsearchcriteria.operator.and); B. Catalogsearchcriteria scrt. = new CatalogsearchCriteria(Catalogsearchcriteria.Argument.CATEGORY, "Entitlement",CatalogSearchCritetia. Operator.EQUAL); C. CatalogSearchCriteria scrt =
new CatalogSearchCriteria(CatalogSearchCriteria.Argument.TAG, selectedcategory,catalogsearchcriteria. Operator. EQUAL); D. CatalogSearchCriteria CatalogSearchCriteria(CatalogSearchCriteria.Argument. TAG, selectedcategory,catalogsearchcriteria.operator.equal); CatalogSearchCriteria cat = new CatalogSearchCriteria(CatalogSearchCriteria. Argument. CATEGORY, "Entitlement",CatalogSearchCriteria.Operator.EQUAL); CatalogSearchCriteria scrt = new CatalogSearchCriteria (tags, cat,catalogsearchcriteria.operator.or); Question: 3 Identify a capability of role mining in Oracle Identity Governance. A. identifies users within the same organization and having access to similar target systems B. verifies Pre-Existing roles only in disconnected target systems C. search for roles in platform audit logs D. identifies users with similar access entitlements E. verifies Pre-Existing roles only in connected application instances Question: 4 A user authenticated using Oracle Access Management Console is redirected to the Oracle Identity Manager login page to enter his or her credentials. Identify two reasons for this (Choose two.) A. The Oracle Virtual Directory adapters are not configured correctly. B. OAMIDAsserter is not configured correctly in Oracle WebLogic Server. C. The security providers for the OIM domain are not configured correctly in Oracle WebLogic Server. D. A config issue in oam-config.xml is causing this.
Answer: C,D Question: 5 What minimum level is required for attestation of form data for user profile auditing? A. None B. Resource C. Resource Form D. Core E. Process Task Answer: C Question: 6 In the Oracle Identity Manager System for Cross-domain Identity Management (SCIM) API, which service is available to create, search, modify, and delete Roles? A. /Groups B. /Roles C. /Users D. /Organizations Question: 7 You are running an upgrade from Oracle Identity Manager 11g Release 1 to Oracle Identity Manager 11g Release 2 PS3. Which is the first step that you must perform to enable Oracle Platform Security Services (OPSS)? A. Use the Repository Creation Utility (RCU) and create the underlining OPSS database schemas.
B. Create a new Weblogic domain for the new Oracle Identity Manager Release. C. Upgrade SOA to 11.1.1.8. D. Upgrade the OIM database schema. Use the patch set assistant (PSA) to upgrade OIM and dependent component schemas. Answer: D Question: 8 As part of a company's new Identity Management strategy, you are requested to enable OPAM's Microsoft Windows accounts support in order to manage privileged account and record users activities. The customer is unable to track ongoing sessions. Why is this happening? A. You must install the OPAMAgentservice in the Microsoft Windows target to track ongoing sessions. B. The Microsoft Windows session recording is only available in checkout history when the session has ended. C. The Microsoft Windows"over-the-shoulder" capability must be enabled in the OPAM target configuration window. D. You must register the OPAM agent in the Microsoft Windows target with the r option: OpamAgencUtility.exe r Answer: D Question: 9 Your customer reports that several users submitted self-registration requests and those entries are shown as auto approved. Identify the reason. A. Default Home Organization Policy is disabled. B. SOAServer is off. C. Default Home Organization Policy has been deleted.
D. Two or more Home Organization Policies are overlapping. Answer: B Question: 10 An organization requires that all the requests for Catalog Items be approved by the Catalog Item Administrator, which is defined as a Custom Metadata Attribute of Catalog Items. Which are the four configuration and customization steps required to achieve this functionality? (Choose four.) A. Create Approval Workflow Rules to configure the customized SOA Composite as the Approval Process for the requested resources. B. Customize the Human Task to route the requests to the Login ID of the Catalog ItemAdministrator of the requested resource. C. Add Custom Metadata Attribute to hold the Login ID of the Catalog Item Administrator. D. Create a managed bean to do the routing of the request to the proper target user. E. Customize the SOA Composite used forapprovals to invoke OIM APIs for the Catalog to extract the Login ID of the Catalog Item Administrator from the Catalog Item's metadata. F. Create one or more Approval Polices to configure the customized SOA Composite as the Approval Process for the requested resources. Answer: C,D,E,F Question: 11 Your customer has notified you that an Oracle Privileged Account Manager end user can access the grants associated with another user. Identify the correct statement. A. You have configured multiple authenticators in Weblogic, with control flags as required. B. You have configured multiple authenticators in Weblogic, with control flags set as sufficient and users with the same username exist in more than one authenticator. C. SOA Managed Server is down. D. You have configured OUD and Default Authenticator, with control flags as optional and users
with the same username exist in more than one authenticator. Question: 12 Identify two detection mechanisms through which Identity Audit monitors the actual access to resources and captures any violations on a continuous basis (Choose two.) A. Preventive mode, wherein only the specified access request that is requested via the access catalog in real time can be automatically detected as an Identity Audit policy violation and preventative action can be taken. B. Detective mode, wherein all Identity Warehouse users can be monitored for toxic combinations of user access rights. C. Detective mode, wherein only specified Identity Warehouse users can be monitored for toxic combinations of user accessrights. D. Preventive mode, wherein any access request that is requested via the access catalog in real time can be automatically detected as an Identity Audit policy violation and preventative action can be taken. Answer: B,D Question: 13 A user has a resource that was provisioned via an Access Policy. Then the user is added to a role that denies the resource via another Access Policy. Select the option that describes OIM s expected behavior. A. The resource will be denied. B. The resource will be allowed. C. It depends upon the priorityof theaccess Policy. D. This is a conflict and is reported at the time of adding the role to the user. Question: 14
You are running an upgrade from Oracle Identity Manager PS2 to PS3. As part of the deployment of the workow orchestration service, you must set up two components from the system administration console. Select the two system values to be changed (Choose two.) A. set SOA Workflow Enabled as TRUE B. set SOA Workflow Policies Enabled as TRUE C. set Workflow Disabled as FALSE D. set Workflow Policies Disabled as FALSE E. set Workflow Enabled as TRUE F. set Workflow Policies Enabled as TRUE Answer: B,E Question: 15 As part of a new customer User ID life cycle improvement project, you have deployed Oracle Identity Manager with Auditor mode enabled. They use Oracle Unified Directory as their main LDAP repository. Which Oracle component acts as the Identity Store for the solution provided? A. Oracle Access Manager B. Oracle Identity Manager C. Weblogic D. Oracle Privileged Account Manager E. Database F. Oracle Unified Directory Answer: B Question: 16 Which three features can be managed only by using the Oracle Identity Manager Design Console?
(Chose three.) A. Forms Designer B. Adapter Factory C. Lookup Definitions D. Process Definitions E. Reconciliation Rules F. IT Resource Definitions,B,E Question: 17 During a reconciliation process, the auto retry count is exhausted and the reconciliation engine does not process events. How can you overcome this issue? A. Manually retry by requesting for re-evaluation from Event Management. B. Disable and re-enable the reconciliation task from the system admin console. C. Delete auto retry parameters that are stored as part of the reconciliation proles, create them anew, and rerun the reconciliation task. D. Setthe Retry Count for recon eventvalue to 0 and rerun the reconciliation task. Question: 18 Identify the schema that must be installed during the upgrade process of Oracle Identity manager in addition to the existing schemas that are already installed. A. ORASDPM schema B. Business Intelligence Platform Schema C. Metadata Services Schema
D. Oracle Platform Security Services Schema Question: 19 Customer has upgraded their Oracle Identity Manager deployment from PS2 to PS3. What must be ensured from the approval workflow perspective during this upgrade process? A. Approval workflows replace the older approval policies structure. In an upgraded environment, you need to enable the use of newer approval workflow through the System Administration console. B. Approval Policies replace the older approval workflows structure. In an upgradedenvironment, you need to enable the use of newer approval policies through the System Administration console. C. Approval workflows work in tandem with the approval policies structure. In an upgraded environment, you need to enable the use of newer approval workflow through the System Administration console. D. Approval workflows work in tandem with the approval policies structure. In an upgraded environment you need to enable the use of newer approval policies through the System Administration console. Question: 20 What happens in Oracle Identity Manager (OIM) if there are five access policies with priority 1 to priority 5, and you define a new policy with priority 3? A. Thecurrent policy at priority 3 is replaced by the new policy. B. An error is displayed during policy definition. C. The policy administrator is alerted about the conflict. D. Policies with lower priorities are shifted lower. Answer: C
Question: 21 As part of a customer requirement for a particular test environment, you have disabled workow support for Oracle Identity Manager 11g Release 2 PS3. You need to test some disconnected application instances. You realize that manual fulfillment is not working for this type of instance. Select the correct statement. A. Manual fulfillment tasks for disconnected application instances do not work when workow is turned o. Provisioning operations for disconnected application instances will fail. B. You must allow disconnected application instance support without approval workow from the system administration console. C. Disconnected application instances must be re-created without approval workow support. D. Oracle Identity Manager Weblogic instance must be restarted after disabling core functions such as approval workflows. Question: 22 The customer wants to extend one of their IT mobile applications. They are trying to pull out service account passwords through a REST API; however, they can't get that information. These are the configuration parameters: URI: https://opam_server_host:opam_ssl_port/opam/target/{targetuid}/showpassword Method: PUT Content-Type: application/json Body: NA What is the reason for this issue? A. Content-Type must be set asapplication/x-javascript. B. URI must be set to https://opam_server_host:opam_ssl_port/opam/target/{targetname}/showpassword. C. The method must be set asget. D. This API is not available in Oracle Privileged Account Manager. Answer: B