GitHub Admin updates after taking the full practice test (#443)

Author: FidelusAleksander

content/en/questions/admin/question-002.md

@@ -1,11 +1,11 @@
 ---
 title: "Question 002"
-question: "What is the GitHub dependency graph?"
+question: "What is the GitHub Dependabot dependency graph?"
 ---
 
 
 > https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-the-dependency-graph
 1. [x] It is a representation of a repository's dependencies and dependents.
-1. [ ] There is no such thing as the GitHub dependency graph.
+1. [ ] There is no such thing as the dependency graph.
 1. [ ] It is a tool that automatically proposes version updates to dependencies in a repository.
 1. [ ] It is a GitHub maintained list of known vulnerabilities in open source software packages.

content/en/questions/admin/question-006.md

@@ -7,4 +7,4 @@ title: "Question 006"
 - [x] Navigate to your GitHub Enterprise Server instance, select the `Site admin` page, then `Management Console`. Choose `Support` in the top navigation bar and click `Download support bundle`.
 - [x] Generate and download a support bundle directly to your local machine via SSH using the `ghe-support-bundle -o > support-bundle.tgz` CLI command.
 - [ ] First, access the `Settings` in your enterprise account, click on `License`, and under `GitHub Enterprise Help`, select `Upload a support bundle`. This will automatically generate and download the support bundle.
-- [ ] Click your profile, then `Your enterprises`. In the enterprise account sidebar, select `Settings` and under `License`, click `Generate a support bundle`. This will create and download the bundle.
+- [ ] Click your profile, then `Enterprises`. In the enterprise account sidebar, select `Settings` and under `License`, click `Generate a support bundle`. This will create and download the bundle.

content/en/questions/admin/question-008.md

@@ -5,6 +5,6 @@ title: "Question 008"
 
 > https://docs.github.com/en/apps/using-github-apps/installing-a-github-app-from-github-marketplace-for-your-organizations
 1. [x] Browse GitHub Marketplace, select the app, choose a plan, select the organization, and then review and install the app.
-1. [ ] Contact GitHub support to manually install the app, then configure it via email instructions.
-1. [ ] Download the app from an external site and manually upload it to your GitHub organization's repositories.
-1. [ ] Install the app directly from the organization's dashboard without selecting any specific plan.
+1. [ ] Navigate to organization settings, select "Installed apps", then manually add the app's client ID to install it.
+1. [ ] Install the app using the GitHub CLI with the `gh app install` command, specifying the organization name.
+1. [ ] Clone the app's repository and run the installation script locally to register it with your organization.

content/en/questions/admin/question-009.md

@@ -3,6 +3,8 @@ question: "What are the benefits and risks of using apps and actions from the Gi
 title: "Question 009"
 ---
 
+> https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions
+
 1. [x] Benefits include automation of workflows and enhanced functionality; risks include potential security vulnerabilities and dependency on third-party services.
 1. [ ] Benefits are limited to user interface improvements; risks include high costs and increased system complexity.
 1. [ ] The only benefit is the ease of installation; risks involve complete access to codebase and data.

content/en/questions/admin/question-013.md

@@ -4,7 +4,7 @@ title: "Question 013"
 ---
 
 > https://docs.github.com/en/enterprise-cloud@latest/organizations/managing-saml-single-sign-on-for-your-organization/enabling-and-testing-saml-single-sign-on-for-your-organization#enabling-and-testing-saml-single-sign-on-for-your-organization
-1. [x] Navigate to `Your organizations`, choose `Settings`, click on `Authentication security`, select `Enable SAML authentication`, configure IdP settings, test SAML configuration, and enforce SAML SSO.
-1. [ ] Go to `Organization Settings`, select `Security`, choose `SAML Authentication`, enter IdP information, perform a test of the SAML configuration, and enforce SAML SSO.
-1. [ ] In the main menu, select `Organization`, then `Security Settings`, enable `SAML SSO`, fill in the IdP details, test the SSO configuration, and then enforce SAML SSO.
-1. [ ] Access `Organization Settings`, click `Security`, enable `SAML SSO`, add IdP URL, test the configuration, and opt to enforce SAML SSO upon successful testing.
+1. [x] Navigate to your organization `Settings`, click on `Authentication security`, select `Enable SAML authentication`, configure IdP settings, test SAML configuration, and enforce SAML SSO.
+1. [ ] From `Enterprise account settings`, open `Security`, enable SAML SSO and enforce for all organizations; then configure the IdP. (This manages enterprise-wide SSO, not a single org.)
+1. [ ] In the organization, go to `Settings` → `Member privileges`, enable `SAML SSO`, add IdP metadata, and enforce without testing. (SAML is configured under `Authentication security`, and testing is required.)
+1. [ ] Open the repository’s `Settings`, choose `Security`, enable `SAML SSO`, configure the IdP, and enforce. (SAML SSO is set at the organization level, not per repository.)

content/en/questions/admin/question-014.md

@@ -8,3 +8,4 @@ title: "Question 014"
 1. [ ] Active Directory Federation Services (AD FS)
 1. [ ] Microsoft Entra ID
 1. [ ] Shibboleth
+1. [ ] Okta

content/en/questions/admin/question-019.md

@@ -1,10 +1,10 @@
 ---
-question: "What is required for a user to authenticate with an Enterprise Managed Users account?"
+question: "What is required for a user to authenticate with an Enterprise Managed User account?"
 title: "Question 019"
 ---
 
 > https://docs.github.com/en/enterprise-cloud@latest/admin/identity-and-access-management/understanding-iam-for-enterprises/about-enterprise-managed-users#authenticating-with-a-managed-user-account
-1. [x] Users must authenticate on the enterprise's IdP to access resources on GitHub.com.
+1. [x] Users must authenticate on the company's IdP to access resources on GitHub.com.
 1. [ ] Users authenticate through a public GitHub login page without any enterprise interference.
 1. [ ] Authentication is bypassed for enterprise managed users for ease of access.
 1. [ ] Users provide a special GitHub-managed authentication token.

content/en/questions/admin/question-024.md

@@ -1,5 +1,5 @@
 ---
-question: "What are valid authentication methods available in GitHub? (choose six.)"
+question: "What are valid authentication methods available in GitHub? (Choose six.)"
 title: "Question 024"
 ---
 
@@ -8,7 +8,7 @@ title: "Question 024"
 - [x] Personal access token (PAT)
 - [x] SSH KEY
 - [x] SAML SSO for enterprise accounts
-- [x] Passkey authentication (opt-in beta for passwordless login)
+- [x] Passkey authentication
 - [x] OAuth tokens for third-party app integrations
 - [ ] QR code system linked to a mobile device
 - [ ] Authentication via social media accounts like Facebook or Google

content/en/questions/admin/question-025.md

@@ -4,7 +4,7 @@ title: "Question 025"
 ---
 
 > https://docs.github.com/en/enterprise-cloud@latest/admin/overview/about-github-for-enterprises#about-deployment-options
-1. [x] GitHub Enterprise Cloud is hosted by GitHub, while GitHub Enterprise Server is hosted on your own servers
+1. [x] GitHub Enterprise Cloud is hosted by GitHub, while GitHub Enterprise Server is hosted on your own servers or a cloud provider.
 1. [ ] GitHub Enterprise Cloud is hosted on your servers, while GitHub Enterprise Server is hosted by GitHub
 1. [ ] GitHub Enterprise Cloud offers only public repositories, while GitHub Enterprise Server offers private repositories
 1. [ ] GitHub Enterprise Cloud is designed for individual use, while GitHub Enterprise Server is for organizations

content/en/questions/admin/question-026.md

@@ -10,4 +10,3 @@ title: "Question 026"
 - [x] Ability to restrict email notifications to verified domains
 - [ ] Free public repositories for all users
 - [ ] Unlimited private repositories for individual users
-- [ ] Automatic code review for every push