Which practice helps avoid service disruption when consuming GitHub APIs at scale?
ADesigning your application to work within GitHub's rate limits
BUsing multiple tokens to bypass limits
CCaching all API responses permanently
DIgnoring secondary rate limits
Which of the following is a key benefit of setting default read permissions across organizations?
ASuits environments where all users need write access.
BImproves collaboration by allowing users to modify content directly.
CIncreases efficiency in content creation and updates.
DEnhances security by minimizing unintended modifications.
How does GitHub handle secrets found via secret scanning in a public repository?
AIt alerts the service provider (e.g., AWS, Stripe).
BIt immediately blocks the commit to protect the secret.
CIt deletes the secret from the repository automatically.
DIt notifies the admin via webhook.
You are managing a repository in your organization's GitHub account. A team member asks you to confirm who has access to the repository and their permission levels. Which tool should you use to review and manage repository access?
AGitHub Pages Settings.
BGitHub Actions Logs.
CRepository Settings > Manage Access.
DBranch Protection Rules.
Question 6
Describe how GitHub is deployed, distributed, and licensed
0
Question 7
Manage access and permissions based on membership
Question 8
Manage access and permissions based on membership
Question 9
Manage user identities and GitHub authentication
Question 10
Manage user identities and GitHub authentication
Question 11
Manage user identities and GitHub authentication
Question 12
Manage user identities and GitHub authentication
Question 13
Describe how GitHub is deployed, distributed, and licensed
Question 14
Manage access and permissions based on membership
Question 15
Manage user identities and GitHub authentication
Question 16
Manage user identities and GitHub authentication
Question 17
Manage user identities and GitHub authentication
Question 18
Enable secure software development and ensure compliance
Question 19
Manage access and permissions based on membership
Question 20
Enable secure software development and ensure compliance
Question 21
Support GitHub Enterprise for users and key stakeholders
Question 22
Support GitHub Enterprise for users and key stakeholders
Question 23
Describe how GitHub is deployed, distributed, and licensed
Question 24
Manage access and permissions based on membership
Question 25
Manage access and permissions based on membership
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ad
Want a break from the ads?
Become a Supporter and enjoy a completely ad-free experience, plus unlock Learn Mode, Exam Mode, AstroTutor AI, and more.
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
What is a key characteristic of GitHub Enterprise Server (GHES) compared to GitHub Enterprise Cloud (GHEC)?
AGHES is hosted by GitHub and offers automatic scaling, while GHEC requires self-hosting.
BGHEC offers data residency options in regions that GHES does not support.
CGHES allows enterprises to have complete control over their hosting environment, including data storage and network security policies.
DGHES users cannot integrate with external identity providers for authentication.
Which of the following is the responsibility of an Organization Owner in GitHub? (Choose three.)
AView and manage organization billing information.
BCreate repositories without approval from other members.
CManage organization settings, such as configuration and default permissions.
DAccess repositories only if explicitly granted by a team maintainer.
Which of the following is the responsibility of a Team Maintainer in a GitHub organization? (Choose two.)
AModifying organization-wide settings.
BManaging nested sub-teams.
CAdding or removing team members.
DDeleting repositories assigned to the team.
What distinguishes Enterprise Managed Users (EMUs) from standard GitHub accounts?
AEMUs are fully controlled by an IdP and cannot log in with personal credentials
BEMUs can only be created using email invites
CEMUs are managed in GitHub and use GitHub authentication
DEMUs are only available for GitHub Enterprise Server
When comparing a partner identity provider integration with a non-partner identity management solution for GitHub Enterprise Managed Users, which statement is Correct?
AThe non-partner identity provider integrations can utilize OIDC for authentication.
CThe partner identity provider integrations support fewer GitHub-supported authentication methods.
DThe partner identity provider integrations rely on the partner to support the application on the partner IdP.
Why is a GitHub App preferred over a PAT for machine authentication?
AGitHub Apps are required to pass SAML assertions
BGitHub Apps have time-limited installation tokens with scoped access
CPATs cannot be used in GitHub Actions
DPATs support fewer GitHub APIs than Apps
You are planning GitHub account management for a healthcare organization with strict compliance requirements. Which THREE of the following statements accurately describe GitHub Enterprise Managed Users (EMU) accounts? (Choose three.)
AEMU accounts can be used for both personal and enterprise repositories.
BEMU accounts are managed through an identity provider such as Azure AD.
CEMU accounts allow users to create and manage their own credentials.
DEMU accounts restrict users to enterprise-related activities only.
EEMU accounts are created and managed by individual users.
FEMU accounts are owned by the organization and cannot be unlinked.
How does metered billing work in GitHub Enterprise Cloud with Enterprise Managed Users (EMU)?
ABilling is based on number of total users in the enterprise
BBilling is based on owners and members of GitHub organizations
CBilling is based on total users in the enterprise that are not dormant
DBilling is based on the number of users created in Azure AD
A team member is unable to push to a repository due to a 403-error related to branch protection. What should the GitHub Enterprise administrator do first?
ARemove the user from the team and re-add them
BCheck the user's permissions and rulesets applied to the branch
CRaise a GitHub Support request for permissions issues
DRevert the branch to an earlier state
Which THREE of the following accurately describe how the SCIM protocol enhances user management in GitHub Enterprise Cloud? (Choose three.)
ASCIM synchronizes changes to user attributes from the identity provider to GitHub.
BSCIM deactivates GitHub accounts when users are deleted from the identity provider.
CSCIM automatically deletes organization repositories when administrators are removed.
DSCIM automates user provisioning when new users are added to the identity provider.
ESCIM generates authentication tokens for accessing GitHub's REST API.
FSCIM configures repository permissions based on user roles within the organization.
When comparing Group SCIM to Team Sync for identity management in GitHub Enterprise, which statement is Correct?
AGroup SCIM requires less initial configuration than Team Sync.
BTeam Sync supports more identity providers than Group SCIM.
CTeam Sync provides more automated user deprovisioning than Group SCIM.
DGroup SCIM enables centralized user and group management through the IdP.
A GitHub Enterprise administrator is planning to implement SAML SSO across their company. Which of the following correctly distinguishes enterprise-wide SAML SSO from organization-level SAML SSO?
AEnterprise-wide SAML SSO requires less initial administrative overhead than organization-level implementation.
BEnterprise-wide SAML SSO allows different organizations to use different authentication methods.
CEnterprise-wide SAML SSO immediately removes users who fail to authenticate via the IdP.
DEnterprise-wide SAML SSO ensures users authenticate through the same IdP across all organizations.
What will happen if Dependabot discovers a vulnerable transitive dependency in a repository?
AIt creates a pull request to update the direct dependency to a version that resolves the vulnerability.
BIt opens a pull request to update the affected package directly, regardless of version compatibility.
CIt automatically removes the package from the repository.
DIt sends an email to the repository owner but does not alter code.
Your organization is implementing team synchronization. Which of the following should you prioritize during the setup process?
ADisabling the audit log stream
BSetting an infrequent sync schedule to reduce performance impact
CAllowing manual updates to team memberships
DClearly define how identity provider groups will align with GitHub teams and roles
Which events from the audit log are exposed by the GraphQL API? Each answer presents a complete solution. (Choose three.)
Achanges in permissions
Bpromoting users to administrators
Cpushes to repositories
Dchanges to permissions of a GitHub App
Ecloning of repositories
Which of the following is a key benefit of using GitHub Marketplace Apps in an enterprise?
AThey guarantee no downtime during enterprise GitHub maintenance windows
BThey often include integrations with external services, reducing the need for custom code
CApps eliminate the need for GitHub Actions entirely
DAll apps come pre-approved by GitHub's internal security team
You need to create a support bundle for your GitHub Enterprise Server instance with the hostname ghe.avocado.corp. What command should you use to create a support bundle?
