If you are looking for free 1z0-1072-22 dumps than here we have some sample question answers available. You can prepare from our Oracle 1z0-1072-22 exam questions notes and prepare exam with this practice test. Check below our updated 1z0-1072-22 exam dumps.
DumpsGroup are top class study material providers and our inclusive range of 1z0-1072-22 Real exam questions would be your key to success in Oracle Oracle Cloud Solutions Infrastructure Certification Exam in just first attempt. We have an excellent material covering almost all the topics of Oracle 1z0-1072-22 exam. You can get this material in Oracle 1z0-1072-22 PDF and 1z0-1072-22 practice test engine formats designed similar to the Real Exam Questions. Free 1z0-1072-22 questions answers and free Oracle 1z0-1072-22 study material is available here to get an idea about the quality and accuracy of our study material.
Sample Question 4
Which two options are available within the service console of Autonomous Transaction Processing?
A. Monitor the health of the database server including CPU, memory and query performance B. Configure resource management rules and reset the admin password C. Perform a manual backup of the ATP database D. Fine tune a long running query using optimizer hints
Answer: A,B
Sample Question 5
Your application consists of three Oracle Cloud Infrastructure compute instances running behind a public load balancer. You have configured the load balancer to perform healthchecks on these instances, but one of the three instances fails to pass the configured health check. Which of the following action will the load balancer perform?
A. Stop sending traffic to the instance that failed health check B. Terminate the instance that failed health check C. Stop the instances that failed health check D. Remove the instance that failed the health check from the backend set
Answer: A
Explanation: health check A test to confirm the availability of backend servers. A health check can be a request or a connection attempt. Based on a time interval you specify, the load balancer applies the health check policy to continuously monitor backend servers. Ifa server fails the health check, the load balancer takes the server temporarily out of rotation. If the server subsequently passes the health check, the load balancer returns it to the rotation. You configure your health check policy when you create a backend set. You can configure TCP-level or HTTP-level health checks for your backend servers. - TCP-level health checks attempt to make a TCP connection with the backend servers and validate the response based on the connection status. - HTTP-level health checks send requests to the backend servers at a specific URI and validate the response based on the status code or entity data (body) returned. The service provides application-specific health check capabilities to help you increase availability and reduceyour application maintenance window.
Sample Question 6
Which statement is true regarding Autonomous Transaction Processing (ATP)?
A. A database name cannot be used concurrently forboth an Autonomous Data Warehouse (ADW) and an ATP database B. After terminating a database, the database name is available for immediate reuse C. A maximum of 8 cores can be enabled for an ATP database D. A maximum of 2 TB of storage can be enabled for anATP database
Answer: A
Explanation: The database name must be unique among all Autonomous Data Warehouses and Autonomous Databases in your tenancy in the same region.
Terminating an Autonomous Transaction Processing database permanently deletes the instance andremoves all automatic backups. You cannot recover a terminated database.
the maximum number of CPUs and maximum storage capacity that can be provisioned in Oracle Autonomous Database In the current release up to 128 CPUs and 128TB can be
provisioned fromthe cloud console. Customers requiring more resources need to call their Oracle account team
Sample Question 7
Which two use Oracle dynamic routing gateway (DRG) for connectivity? (Choose two.)
A. Remote virtual cloud network (VCN) peering across region B. Oracle IPsec VPN C. Local VCN peering D. Oracle Cloud Infrastructure FastConnect public peering
Answer: A,B
Explanation: References:https://docs.cloud.oracle.com/enus/iaas/Content/Network/Concepts/fastconnectoverview.htm You use a DRG when connecting yourexisting on-premises network to your virtual cloud network (VCN) with one (or both) of these: IPSec VPN Oracle Cloud Infrastructure FastConnect You also use a DRG when peering a VCN with a VCN in a different region: RemoteVCN Peering (Across Regions)
Sample Question 8
You deployed a web server in Oracle Cloud Infrastructure using an ephemeral public IP. After a few changes in your web server configuration, you rebooted the server and a new public IP was associated to your instance. What should you doto prevent this from happening again?
A. Create a reserved public IP and associate it with the security list that your complete instance is using B. Create a reserved public IP and associate it with the subnet of your compute instance C. Create a reservedpublic IP and associate it with the VNIC of your compute instance D. Create a reserved public IP and associate it with the hosts file of your web server
Answer: C
Explanation: All details can find in "Best Practices for Deploying High Availability Architecture on Oracle Cloud Infrastructure" https://docs.cloud.oracle.com/en-us/iaas/Content/Resources/Assets/whitepapers/bestpractices-deployi... You deployed a web server in Oracle Cloud Infrastructure using an ephemeral public IP. After a few changes in your web server configuration, you rebooted the server and a new public IP was associated to your instance. What should you doto prevent this from happening again? A. Create a reserved public IP and associate it with the security list that your complete instance is using B. Create a reserved public IP and associate it with the subnet of your compute instance C. Create a reservedpublic IP and associate it with the VNIC of your compute instance D. Create a reserved public IP and associate it with the hosts file of your web server Answer: C Explanation: A public IP address is an IPv4 address that is reachable from the internet. If a resourcein your tenancy needs to be directly reachable from the internet, it must have a public IP address. Depending on the type of resource, there might be other requirements. There are two types of public IPs: Ephemeral: Think of it as temporary and existingfor the lifetime of the instance. Reserved: Think of it as persistent and existing beyond the lifetime of the instance it's assigned to. You can unassign it and then reassign it to another instance whenever you like. Exception: reserved public IPs on public load balancers. To create a new reservedpublic IP in your pool Confirm you're viewing the region and compartment where you want to create the reserved public IP. Open the navigation menu. Under Core Infrastructure, go to Networking and click Public IPs. Click Create Reserved Public IP. Enter the following: Name: An optional friendly name for the reserved public IP. The name doesn't have to be unique, and you can change it later. Avoid entering confidential information. Compartment: Leave as is. Tags:Optionally, you can apply tags. If you have permissionsto create a resource, you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag namespace. For more information about tagging, see Resource Tags. If you are not sure if you should apply tags, skip this option (you can apply tags later) or ask your administrator. Click Create Reserved Public IP. To assign a reserved public IP to a private IP Prerequisite: The private IP must not have an ephemeral or reserved public IP already assigned to it. If it does, first delete the ephemeral public IP, or unassign the reserved public IP. Confirm you're viewing the compartment that contains the instance with the private IP you're interested in. Open the navigation menu. Under Core Infrastructure, go to Compute and click Instances. Click the instance to view its details. Under Resources, click Attached VNICs. The primary VNIC and any secondary VNICs attached to the instance are displayed. Click the VNIC you're interested in. Under Resources, click IP Addresses. The VNIC's primary private IP and any secondary private IPs are displayed. For the private IP you're interested in, click the Actions icon (three dots), and then click Edit. In the Public IP Address section, for Public IP Type, select the radio button for Reserved Public IP. Enter the following: Compartment: The compartment that contains the reserved public IP you want to assign. Reserved Public IP: The reserved public IP you want to assign. You have three choices: Create a new reserved public IP. You may optionally provide a friendly name for it. The name doesn't have to be unique, and you can change it later. Avoid entering confidential information. Assign a reserved public IP that is currently unassigned. Move a reserved publicIP from another private IP. Click Update.
Sample Question 9
Which two options are necessary for achieving high availability on OracleCloud Infrastructure?
A. Store your database across multiple regions so that half of the data resides in one region and the other half resides in another region. B. Attach your block volume form Availability Domain 1 to a compute instance in AvailabilityDomain 2 (and vice versa) so that they are highly available. C. Configure your database to have Data Guard in another Availability Domain in Sync mode within a region. D. Store your database files on Object Storage so that they are available in all Availability Domains in all regions. E. Distribute your application servers across all Availability Domains within a region.
Which two statements are true about data guard service on DB Systems in Oracle Cloud Infrastructure (OCI)? (Choose two.)
A. Data guard implementation requires two DB Systems, one running the primary database on a virtual machine and the standby database running on bare metal B. Data guard configuration on the OCI is limited to one standby database per primary database C. Data guard configuration on the OCI is limited to a virtual machine only D. Data guard implementation requires two DB Systems, one containing the primary database and one containing the standby database
Answer: B,D
Explanation: References:
Sample Question 11
Which two options are available when configuring DNSresolution for your virtual cloud network? (Choose two.)
A. Internet and custom resolver B. Google DNS servers C. custom resolver D. Internet and virtual cloud network (VCN) resolver
You must implement a backup solution for your AutonomousData Warehouse (ADW) that will enable you to restore data as old as one year with a recovery point objective (RPO) of10 days. Which database backup strategy would you select?
A. Take weekly manual backups to supplement the automated backups and preservethem for 12 months. B. Use the automated backups. C. Take monthly manual backups to supplement the automated backups and preserve them for 12 months. D. Take quarterly manual backups to supplement the automated backups and preserve them for 12 months.
Answer: B
Explanation: Oracle Cloud Infrastructure automatically backs up your Autonomous Databases and retains these backups for 60 days. Automatic backups are weekly full backups and daily incremental backups. You can also create manual backups to supplement your automatic backups. Manual backups are stored in an Object Storage bucket that you create, and are retained for 60 days The retention period for manual backups is the same as automatic backups which is 60 days. So we cannot preserve the backup for 12 months https://docs.oracle.com/en/cloud/paas/autonomous-data-warehouse-cloud/user/backupmanual.html#GUID-D...
Sample Question 13
You aredesigning a two-tier web application in Oracle Cloud Infrastructure (OCI). Your clients want to access the web servers from anywhere, but want to prevent access to the database servers from the Internet. Which is the recommended way to design the networkarchitecture?
A. Create public subnets for web servers and private subnets for database servers in your virtual cloud network (VCN), and associate separate internet gateways for each subnet. B. Create public subnets for web servers and associate adynamic routing gateway with that subnet, and a private subnet for database servers with no association to dynamic gateway. C. Create public subnets for web servers and private subnets for database servers in your VCN, and associate separate security listsand route tables for each subnet. D. Create a single public subnet for your web servers and database servers, and associate only your web servers to internet gateway.
Answer: C
Explanation: When you create a subnet, by default it's considered public, which means instances in that subnet are allowed to have public IP addresses. Whoever launches the instance chooses whether it will have a public IP address. You can override that behavior when creating the subnet and request that it be private, which means instances launched in the subnet are prohibited from having public IP addresses. Network administrators can therefore ensure that instances in the subnet have no internet access, even if the VCN has a working internet gateway, and security rules and firewall rules allow the traffic. There are two optional gateways (virtual routers) that you can add to your VCN depending on the type of internet access you need: Internet gateway: For resources with public IP addresses that need to be reached from the internet (example: aweb server) or need to initiate connections to the internet. NAT gateway: For resources without public IP addresses that need to initiate co
Sample Question 14
Which two statements are true regarding cloning a block volume?
A. You can change the block volume performance when creating a clone B. You can clone block volumes across regions C. You can change the block volume size when creating a clone D. You can skip block volume encryption when creating a clone
Answer: A,C
Explanation: Youcan create a clone from a volume using the Block Volume service. Cloning enables you to make a copy of an existing block volume without needing to go through the backup and restore process. A cloned volume is a point-in-time direct disk-to-disk deep copyof the source volume, so all the data that is in the source volume when the clone is created is copied to the clone volume. You can only create a clone for a volume within the same region, availability domain and tenant. You can create a clone for a volumebetween compartments as long as you have the required access permissions for the operation. during create a clone you can do the following If you want to clone the block volume to a larger size volume, check Custom Block Volume Size (GB) and then specifythe new size. You can only increase the size of the volume, you cannot decrease the size. If you clone the block volume to a larger size volume, you need to extend the volume's partition. See Extending the Partition
Sample Question 15
Which two statements about fault domains are true? (Choose two.)
A. A fault domain is a grouping of hardware and infrastructure within an availability domain B. Eachavailability domain contains three fault domains C. A failed instance in a fault domain is automatically relaunched D. A fault domain is selected automatically based on usage data
Answer: A,B
Explanation: References:
A fault domain is a grouping of hardware and infrastructure within an availability domain. Each availability domain contains three fault domains. Fault domains provide anti-affinity:
they let you distribute your instances so that the instances are not on the same physical hardware within a single availability domain.
Sample Question 16
Which two options are available when setting up DNS for your bare metal and virtual machine DB Systems? (Choosetwo.)
A. Internet and custom resolver B. Google DNS servers C. custom resolver D. Internet and virtual cloud network (VCN) resolver
Answer: C,D
Explanation: References:
Sample Question 17
Which two statements are true about Oracle Cloud Infrastructure (OCI) DB Systems?
A. Customers have no control over database patching. B. The database and backups are encrypted by default. C. Customers can consolidate multiple database homes on asingle virtual machinedatabase host. D. Customers can manage the TDE Wallet after DB Systems is provisioned.
Answer: B,D
All databases created in Oracle Cloud Infrastructure are encrypted using transparent data encryption (TDE). Oracle Cloud Infrastructure encrypts all managed backups in the object store. Oracle uses the Database Transparent Encryption feature by default for encrypting the backups. and the customers can manage the TDE Wallet after DB Systems are provisioned.
Sample Question 18
What is the maximum IP address size range that you can have in a Virtual Cloud Network?
A. /16 B. /26 C. /24 D. /8
Answer: A
Explanation: When you create your VCN, you assign a contiguous IPv4 CIDR block of your choice. VCN sizes ranging from /16 (65,533 IP addresses) to /30 (1 IP address) are
allowed. Example: 10.0.0.0/16, 192.168.0.0/24.
Sample Question 19
What is true about data guard set up with fast-start failover (FSFO) in Oracle Cloud Infrastructure (OCI)?
A. The best practice for high availability and durability is to run the primary, standby, and observer in separate availability domains (ADs). B. When you configure data guard using OCI console, the default mode is set to maxprotection. C. You cannot create the standby DB system in a different AD from the primary DB system. D. You cannot use database command line interface (CLI) to set up data guardwith FSFO.
Answer: A
Explanation: References:
The best practice for high availability and durability is to run the primary, standby, and observer in separate availability domains. The observer determines whether or not to
Your company is developing a newdatabase application in Oracle Cloud Infrastructure. You need to test application functionality including a hardware failure scenario. Since theapplication is still in the development phase, you want to minimize infrastructure costs. Which database service deployment option meets this requirement?
A. two node real application cluster (RAC) system B. Autonomous Data Warehouse (ADW) system as it provides auto fail over functionality C. two node bare metal system with data guard enabled D. single node baremetal system
Answer: A
Explanation: References:
Sample Question 21
Where do you findthe tnsnames.ora for your Autonomous Data Warehouse (ADW) database?
A. You can download tnsnames.ora from Oracle Cloud Infrastructure web console under ADW details page B. The tnsnames.ora file is included in credentials.zip file that you download from service console of ADW C. The ADW database will place the tnsnames.ora file in an object storage bucket D. You are automatically prompted to download the tnsnames.ora file upon creation of the ADW database
To download client credentials from the Autonomous Transaction Processing Service Console: - From the Service Console click the Administration link. -Click Download Client Credentials (Wallet). - On the Download Client Credentials (Wallet) page, enter a wallet password in the Password field and confirm the password in the Confirm Password field. The password must be at least 8 characters long and must include at least 1 letter and either 1 numeric character or 1 special character. This password protects the downloaded Client Credentials wallet. - Click Download to save the client security credentials zip file. By default the filename is: Wallet_databasename.zip. You can save this file as any filename you want. You must protect this file to prevent unauthorized database access. The zip file includes the following: tnsnames.ora and sqlnet.ora: Network configuration files storing connect descriptors and SQL*Net client side configuration. cwallet.sso and ewallet.p12: Auto-open SSO w
Sample Question 22
You are an administrator with an application running in Oracle Cloud Infrastructure (OCI). The company has a fleet of OCI compute virtual instances behind an load balancer. Theload balancer backend set health check API is providing a 'Critical' level warning. You haveconfirmed that your application Is running healthy on the backend servers. What Is thepossible reason for this 'Critical' warning?
A. The load balancer listener is not configured correctly. B. The security list associated with the subnet In which the backend server is provisioned does not include the IP range for the source of the health check requests. C. A user does not have correct Identity and Access Management (IAM) credentials on the backend servers. D. The route table associated with the subnet in which the backend server is provisioned does not include the route for the OCI load balancer.
Answer: B
Sample Question 23
You have anexternal facing web server running in the Oracle Cloud Infrastructure (OCI) London region. You are notified that customers in North America and Australia are facinghigh latency while connecting to your web server. Which services are available on OCI thatcan help you get current latency statistics to your web server from these markets?
A. Use DNS Zone Management service to check latency over that connection B. Setup an IPsec VPN with customers in those markets and check latency over that connection C. Use the Internet Intelligence tool. Run tests using the web server’s public IP address and review traceroute details from different vantage points D. Setup a FastConnect with customers in those markets and check latency over that connection
Answer: C
Explanation:
The second tool, OCI IP Troubleshooting, helps troubleshoot issues with public acing IP addresses. This feature is also part of our Internet Intelligence toolset, providing analytical insight to help network operations teams reduce the time it takes to troubleshoot an issue by providing awareness of availability and latency across the Internet. Ref: https://blogs.oracle.com/cloud-infrastructure/internet-intelligence,-nowavailable-in-the-oracle-clo...
Sample Question 24
Which two options are valid for loading data directly into Autonomous Data Warehouse (ADW)? (Choose two.)
A. Data Integrator B. Data Pump C. Data Transfer Service D. SQL *Loader
Answer: B,D
Explanation: References:
Sample Question 25
Which two resources reside exclusively in a single Oracle Cloud Infrastructure Availability Domain?
A. Identity and Access Management Groups B. Web Application Firewall policy C. Block volume D. Compute Instance E. Object Storage
Acompany currently uses Microsoft Active Directory as its identity provider. The company recently subscribed to Oracle Cloud Infrastructure (OCI) to leverage the cloud platform fortest and development. As the administrator, you configured the OCI tenancy to be federated with Microsoft Active Directory. Now you need to give access to developers sothat they can start creating resources in their OCI accounts. Which step will you perform to make sure you are not duplicating user creation inside of OCI tenancy?
A. Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process. B. Create a new user account in OCI for each user, and then create policies to provide access to developers. C. Create a group for developers on OCI, export all the developers from Microsoft Active Directory, and then import them into the Identity and Access Management (IAM) group. D. Create a single user account in OCI, and then create policies to provide access to developers to this single account.
Answer: A
Explanation:
When working with your IdP, your administrator defines groups and assigns each user to one or more groups according to the type of access the user needs. Oracle Cloud Infrastructure also uses the concept ofgroups (in conjunction with IAM policies) to define the type of access a user has. As part of setting up the relationship with the IdP, your administrator can map each IdP group to a similarly defined IAM group, so that your company can re-use the IdP group definitions when authorizing user access to Oracle Cloud Infrastructure resources.
Sample Question 27
Which service would you use if your big data workload required shared access and NFSbased connectivity?
A. block volume B. archive storage C. object storage D. file storage
Answer: D
Explanation: References:
Sample Question 28
You are deploying a highly available web application in OracleCloud Infrastructure and have decided to use a public load balancer. The back-end web servers will be distributed across all three availability domains (ADs). How many subnets should you create to deliver a secure highly available application?
A. three subnets in total; one subnet in each AD B. five subnets in total; two subnets each in the first and second AD with a single subnet in the third AD C. six subnets in total; two subnets in each AD; one for the load balancer and one for the web servers D. foursubnets in total; one subnet in each AD for the web servers and a single subnet in any one AD for the load balancer
Answer: C
Sample Question 29
Which two statements are true about restoring a block volume from a manual or policybased block volume backup? (Choose two.)
A. It can be restored as new volumes with different sizes from the backups B. It can be restored as a new volume to any AD acrossdifferent regions C. It must be restored as a new volume to the same availability domain (AD) on which the original block volume backup resides D. It can be restored as a new volume to any AD in the same region
Answer: A,D
Explanation: A – Backups are encrypted andstored in Oracle Cloud Infrastructure Object Storage, and can be restored as new volumes to any availability domain within the same region they are stored. D- You can restore a block volume backup to a larger volume size. To do this, check Custom Block Volume Size (GB), and then specify the new size. You can only increase the
size of the volume, you cannot decrease the size.
Sample Question 30
As the Cloud Architect for your company, you have been tasked with designing a high performance (HPC) cluster in Oracle Cloud Infrastructure (OCI). The following requirements have been defined: The cluster must be a minimum of three nodes, but may increase to six nodes when demand requires. The cluster must be resilient to any potential infrastructure failures.To minimize latency, all nodes must be deployed within the same availability domain (AD). Adding or replacing nodes within the cluster should take no more than 30 minutes.Which twosteps should be performed to satisfy these requirements in OCI? (Choose two.)
A. Deploy the cluster in a single AD with a shared file system that leverages the file storage service (FSS). Deploy a standby cluster in another AD and configure it to use thesame shared file system. B. Deploy the cluster in a single AD. Place each of the nodes in one of the three different fault domains in that AD. C. Create a backup of your HPC node compute instance boot volume. Launch new compute instances directly from thebackup reduce provisioning time. D. Create a custom image of your HPC node compute instance. Launch new compute instances using this image to reduce provisioning time. E. Deploy the cluster in a single AD. Place each of the nodes in a different virtual cloud network (VCN) subnet.
Answer: B,D
Explanation: A fault domain is a grouping of hardware and infrastructure within an availability domain. Each availability domain contains three fault domains. Fault domains provide anti-affinity: they let you distribute your instances so that the instances are not on the same physical hardware within a single availability domain. A hardware failure or Compute hardware maintenance event that affects one fault domain does not affect instances in other fault domains. In addition, thephysical hardware in a fault domain has independent and redundant power supplies, which prevents a failure in the power supply hardware within one fault domain from affecting other fault domains. To control the placement of your compute instances, bare metal DB system instances, or virtual machine DB system instances, you can optionally specify the fault domain for a new instance or instance pool at launch time. If you don't specify the fault domain, the system selects one for you. Oracle Cloud Infrastructur
Sample Question 31
Which statement is true about the Oracle Cloud Infrastructure File Storage Service Snapshots?
A. Snapshots are created under the root folder of file system, in a hidden directory named .snapshot B. Snapshots are not incremental C. You can restore the whole snapshot, but not the individual files D. It Is not possible to create snapshots from OCI console, but just the CLI
Answer: A
Explanation:
The File Storage service supports snapshotsfor data protection of your file system. Snapshots are a consistent, point-in-time view of your file systems. Snapshots are copy-onwrite, and scoped to the entire file system. The File Storage service encrypts all file system and snapshot data at rest. You can take as many snapshots as you need. Data usage is metered against differentiated snapshot data. If nothing has changed within the file system since the last snapshot was taken, the new snapshot does not consume more storage Snapshots are accessibleunder the root directory of the file system at .snapshot/name. For data protection, you can use a tool that supports NFSv3 to copy your data to a different availability domain, region, file system, object storage, or remote location.
Sample Question 32
Which two options are true for Autonomous Transaction Processing (ATP) database? (Choose two.)
A. You can add/remove Diskgroup in ATP B. You can scale storage up or down in ATP C. You can scale CPU up or down in ATP D. You canadd more Pluggable Database for consolidating multiple databases in ATP E. You can add new ORACLE_HOME for bringing older versions of on-premises databases to ATP
Answer: B,C
Explanation:
You can scale up/down your Autonomous Database to scale both in terms ofcompute and storage only when needed, allows people to pay per use. Oracle allows you to scale compute and storage independently, no need to do it together. these scaling activities fully online (no downtime required) in Details page Autonomous Database click Scale Up/Down. Click on arrow to select a value for CPU Core Count or Storage (TB). Or Select auto scaling to allow the system to automatically use up to three times more CPU and IO resources to meet workload demand, compared to the database operatingwith auto scaling disabled.
Sample Question 33
You have an Oracle Cloud Infrastructure (OCI) load balancer distributing traffic via an evenly-weighted round robin policy toyour backend web servers. You notice that one ofyour web servers is receiving more traffic than other web servers. How can you resolve this imbalance?
A. Check security lists and route tables of your virtual cloud network (VCN) and fix any issues associated with the rules B. Create separate listeners for each backend web server C. Delete and re-create your OCI load balancer D. Disable session persistence on your backend set
Answer: D
Explanation: Session persistence is a method to direct all requests originating from a single logical client to a single backend web server. Backend servers that use caching to improve
performance, or to enable log-in sessions or shopping carts, can benefit from session persistence
Sample Question 34
You have five different company locations spread across the US. For a proof-of-concept (POC) you need to setup secure and encrypted connectivity to your workloads running in a single virtual cloud network (VCN) in the Oracle Cloud Infrastructure Ashburn region from all company locations. What would meet this requirement?
A. Create five internet gateways in your VCN and have separate route table for each internet gateway. B. Create five virtual circuits using FastConnect for each company location and terminate those connections on a single dynamic routing gateway (DRG). Attach that DRG to your VCN. C. Create five IPsec connections with each company location and terminate those connections on a singleDRG. Attach that DRG to your VCN. D. Create five IPsec VPN connections with each company location and terminate those connections on five separate DRGs. Attach those DRGs to your VCN.
Answer: C
Explanation: Access to Your On-Premises Network There are two ways toconnect your on-premises network to Oracle Cloud Infrastructure: VPN Connect: Offers multiple IPSec tunnels between your existing network's edge and your VCN,by way of a DRG that you create and attach to your VCN. Oracle Cloud Infrastructure FastConnect: Offers a private connection between your existing network's edge and Oracle Cloud Infrastructure. Traffic does not traverse the internet. Both private peering and public peering are supported. That means your on-premises hosts can access private IPv4 addresses in your VCN as well as regional public IPv4 addresses in Oracle Cloud Infrastructure (for example, Object Storage or public load balancers in your VCN). You can use one or both types of the preceding connections. If you use both, you can use them simultaneously, or in a redundant configuration. These connections come to your VCN by way of a single DRG that you create and attach to your VCN. Without that DRG
Sample Question 35
Which two statements are true about an Oracle Cloud Infrastructure object storage bucket? (Choose two.)
A. You can associate a bucket with multiple compartments B. You cannot change a bucket from private topublic after it is created C. You can associate a bucket with only a single compartment D. You cannot edit or append data to an object, but you can replace the entire object
Answer: C,D
Explanation: A bucket is associated with a single compartment. You can't edit or append data to an object, but you can replace the entire object.
Sample Question 36
A customer has established anOracle Cloud Infrastructure (OCI) FastConnect connection to OCI. The virtual circuit is up and routes are being advertised from the customer’s end,however the customer is unable to ping from compute instances inside the virtual cloud network (VCN) to servers residing in its on-premises data center. Which two options on OCI would remedy this situation? (Choose two.)
A. Modify the route table associated with the VCN subnet in which the instance resides. Add a route to the customer’s on-premises network viathe Dynamic Routing Gateway (DRG). B. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful egress rule to allow ICMP traffic to the customer’s on-premises network. C. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful ingress rule to allow ICMP traffic from anywhere. D. Modify the default VCN route table to add a route back to the customer’s on-premises network via the DRG.
Answer: A,B
Sample Question 37
Which three load-balancing policies can be used with a backend set?
A. throughput B. least connections C. IP hash D. CPU utilization E. weighted round robin
Answer: B,C,E
Sample Question 38
You have an instance running in a development compartment that needs to makeAPI calls against other OCI services, but you do not want to configure user credentials or a store aconfiguration file on the instance. How can you meet this requirement?
A. Create a dynamic group with matching rules to include your instance B. Instances can automatically make calls to other OCI services C. Instances are secure and cannot make calls to other OCI services D. Create a dynamic group with matching rules to include your instance and write a policy for this dynamic group
Answer: D
Explanation: Dynamic groups allow you to group Oracle Cloud Infrastructure computer instances as "principal" actors (similar to user groups). When you create a dynamic group, rather than adding members explicitly to the group, you instead define a set of matching rules todefine the group members. For example, a rule could specify that all instances in a particular compartment are members of the dynamic group. The members can change dynamically as instances are launched and terminated in that compartment. A dynamic grouphas no permissions until you write at least one policy that gives that dynamic group permission to either the tenancy or a compartment. When writing the policy, you can specify the dynamic group by using either the unique name or the dynamic group's OCID.Per the preceding note, even if you specify the dynamic group name in the policy, IAM internally uses the OCID to determine the dynamic group.
Sample Question 39
You created a public subnet and an internet gateway in your virtual cloud network (VCN) of Oracle Cloud Infrastructure. The public subnet has an associated route table and securitylist. However, after creating several compute instances In the public subnet, none can reach the Internet. Which two are possible reasons for the connectivity Issue?
A. A NAT gateway is needed to enable the communication flow to internet. B. There Is no stateful egress rule In thesecurity list associated with the public subnet. C. There Is no dynamic routing gateway (DRG) associated with the VCN. D. The route table has no default route for routing traffic to the internet gateway. E. There is no stateful ingress rule in the securitylist associated with the public subnet.
Answer: B,D
Sample Question 40
You have provisioned an AutonomousData Warehouse (ADW) database with 16 enabled OCPUs and need to configure the consumer group for your application. Which two are true when deciding the number of sessions for each application? (Choose two.)
A. The MEDIUM and LOW consumer group can run up to 16 concurrent SQL statements if HIGH consumer group has 0 SQL statements B. The HIGH consumer group can run up to 16 concurrent SQL statements as long as MEDIUM and LOW consumer groups have 0 SQL statements C. The MEDIUM consumer group can run 20 concurrent SQL statements when HIGH consumer group has 0 SQL statements D. The HIGH consumer group can run up to 16 concurrent SQL statements in addition to 32 concurrent SQL statements in MEDIUM and LOW consumer group each E. The HIGH consumer group can run 3concurrent SQL statements when MEDIUM consumer group has 0 SQL statements
Your Operations team has recently created a new, standard image that will be used to launch all new application servers in the Finance compartment. The custom image currently exists inthe Operations compartment. You have access to manage all-resources in the Finance compartment and do not have access to the Operations compartment. Which two methods would make the new image available for you to use when deploying new servers in the Finance compartment? (Choose two.)
A. Instruct the Operations team to reassign the custom image to the Finance compartment so you can select it from a drop-down list when launching new compute resources. B. Instruct the Operations team to export the image toan object storage bucket, create a pre-authenticated request (PAR), and provide you with the URL. Download the customimage to your laptop and import it as a custom image in the Finance compartment. C. Instruct the Administrators team to grant you accessto use instance-images in the Operations compartment. Use the Oracle Cloud Identifier (OCID) of the custom image when launching new compute resources in the Finance compartment. D. Instruct the Operations team to export the image to an object storage bucket, create a PAR, and provide you with the URL. Use that URL as the source when importing a customimage. Import the custom image into the Finance compartment. E. Instruct the Operations team to export the image to an object storage bucket. Instruct the Administrators team to grant you access to the object storage bucket where the customimage is stored. Use the download URL of the custom image as the image source when launching new compute resources in the Finance compartment.
