1z0-997-22 Oracle Cloud Infrastructure 2022 Architect Professional Dumps
If you are looking for free 1z0-997-22 dumps than here we have some sample question answers available. You can prepare from our Oracle 1z0-997-22 exam questions notes and prepare exam with this practice test. Check below our updated 1z0-997-22 exam dumps.
DumpsGroup are top class study material providers and our inclusive range of 1z0-997-22 Real exam questions would be your key to success in Oracle Oracle Cloud Solutions Infrastructure Certification Exam in just first attempt. We have an excellent material covering almost all the topics of Oracle 1z0-997-22 exam. You can get this material in Oracle 1z0-997-22 PDF and 1z0-997-22 practice test engine formats designed similar to the Real Exam Questions. Free 1z0-997-22 questions answers and free Oracle 1z0-997-22 study material is available here to get an idea about the quality and accuracy of our study material.
Sample Question 4
Which three options are available to migrate an Oracle database 12.x from an on-premises
environment to Oracle Cloud Infrastructure (OCI)?
A. Leverage OCI Storage Gateway asynchronous database migration option. B. Use Oracle Data Pump Export/Import to migrate the database. C. Configure RMAN cross-platform transportable tablespace backup sets. D. Setup OCI schema and data transfer tool with BareMetal DB Systems as the target. E. Create a backup of your on-premises database In OCI DB Systems.
You are building a highly available and fault tolerant web application deployment for your
company. Similar application delayed by competitors experienced web site attack including
DDoS which resulted in web serverfailing.
You have decided to use Oracle Web Application Firewall (WAF) to implement an
architecture which will provide protection against such attacks and ensure additional configuration will you need to implement to make sure WAF is protecting my web
application 24×7.
Which additional configuration will you need to Implement to make sure WAF Is protecting
my web application 24×7?
A. Configure auto scaling policy and it to WAF instance. B. Configure Control Rules to send traffic to multiple web servers C. Configure multiple origin servers D. Configure new rules based on now vulnerabilities and mitigations
Answer: C Explanation:
Origin Management
An origin is an endpoint (typically an IP address) of the application protected by the WAF.
An origin can be
an Oracle CloudInfrastructure load balancer public IP address. A load balancer IP address
can be used for
high availability to an origin. Multiple origins can be defined, but only a single origin can be
active for a WAF. You can set HTTP headers for outbound traffic from the WAF to the
origin server. These name value pairs are then available to the application.
Oracle Cloud Infrastructure Web Application Firewall (WAF) is a cloud-based, Payment
Card Industry (PCI) compliant, global security service that protects applications from
malicious and unwanted internet traffic.
WAF can protect any internet facing endpoint, providing consistent rule enforcement across
a customer's applications. WAF provides you with the ability to create and manage rules for
internet threats including Cross-Site Scripting (XSS), SQL Injection and other OWASPdefined vulnerabilities. Unwanted bots can be mitigated while tactically allowed desirable
bots to enter. Access rules can limit based on geography or the signature of the request.
DistributedDenial of Service (DDoS)
A DDoS attack is an often intentional attack that consumes an entity’s resources, usually
using a large number of distributed sources. DDoS can be categorized into either Layer 7
or Layer 3/4 (L3/4)
A layer 7 DDoS attack is a DDoSattack that sends HTTP/S traffic to consume resources
and hamper a website’s ability to delivery content or to harm the owner of the site. The
Web Application Firewall (WAF)
service can protect layer 7 HTTP-based resources from layer 7 DDoS and other web
application attack vectors.
Sample Question 6
A fast growing E-commerce company has deployed their online shopping application on
Oracle Cloud Infrastructure. The application wasdeployed on compute instances with
Autoscaling configuration for application servers fronted by a load balancer and OCI
Autonomous Transaction Processing (ATP) in the backend. In order to promote their ecommerce platform 50% discount was announced on allthe products for a limited period.
During the day 1 of promotional period it was observed that the application is running slow
and company's hotline is flooded with complaints.
What could be two possible reasons for this situation?
A. The health check on some of the backend servers has failed and the load balancer has
taken those servers temporarily out of rotation. B. As part of Autoscaling, the load balancer shape has dynamically changed to a larger shape to handle more incoming traffic and the system wasslow for a short time during this change. C. The health check on some of the backend servers has failed and the load balancer was rebooting these servers. D. Autoscaling has already scaled to the maximum number of instances specified in the configurationand there is no room for scaling further.
Answer: A,D
Sample Question 7
You are helping a customer troubleshoot a problem. The customer has several Oracle
Linux servers in a private subnet within a Virtual CloudNetwork (VCN). The servers are
configured to periodically communicate to the Internet to get security patches for
applications Installed on them.
The servers are unable to reach the Internet. An Internet Gateway has been deployed In
the public subnet in the VCN and the appropriate routes are configured in the Route Table
associated with the public subnet.
Based on cost considerations, which option will fix this Issue?
A. Create a Public Load Balancer In front of the servers and add the servers to the Backend Set of the Public Load Balancer. B. Create another Internet Gateway and configure it as route target for the private subnet. C. Implement a NAT instance In the public subnet of the VCN and configure the NAT instance as the route target for the privatesubnet. D. Create a NAT gateway in the VCN and configure the NAT gateway as the route target for the private subnet.
Answer: D
Sample Question 8
You are working as a solution architect for a customer in Frankfurt, which uses multiple
compute instance VMs spread among three Availability Domains in the Oracle Cloud
Infrastructure (OCI) eu-frankfurt-1 region. The compute instances do not have public IP
addresses and are running in private subnets inside a Virtual Cloud Network (VCN). You
have set up OCI Autoscaling feature for the compute instances, but find out that instances
cannot be auto scaled. You have enabled monitoring on the instances.
What could be wrong in this situation?
A. You need to assign a reserved public IP address to the compute instances. B. You need to set up a Service Gateway to send metrics to the OCI Monitoring service. C. Autoscaling only works for instances with public IP addresses. D. Autoscaling only works with single availability domains.
Answer: B
Sample Question 9
You are working as a solutions architectfor an online retail store In Frankfurt which uses
multiple compute instance VMs spread among three availability domains In the eufrankfurt-1 region.
You noticed the website Is having very high traffic, so you enabled autoscaling to sun tee
me no f your application but, you observed that one of the availability domains is not
receiving any traffic.
What could be wrong In this situation?
A. Autoscaling only works with single availability domains. B. You have to manually acid all three availability domainsto your load balancer configuration. C. Autoscaling can be enabled for multiple availability domains only in uk-london t region. D. Autoscaling is using an Instance Pool configured to create instances in two availability Domains. E. You forgot to attach aload balancer to your instance pool configuration.
Answer: D Explanation:
Autoscaling lets you automatically adjust the number of Compute instances in an instance
pool based on performance metrics such as CPU utilization. This helps you provide
consistent performancefor your end users during periods of high demand, and helps you
reduce your costs during periods of low demand.
you can associate a load balancer with an instance pool. If you do this, when you add an
instance to the instance pool, the instance is automatically added to the load balancer's
backend set . After the instance reaches a healthy state (the instance is listening on the
configured port number), incoming traffic is automatically routed to the new instance.
Instance pools let you provision and create multiple Compute instances based off the same
configuration, within the same region.
By default, the instances in a pool are distributed across all fault Domains in a best-effort
manner based on capacity. If capacity isn't available in one fault domain,the instances are
placed in other fault domains to allow the instance pool to launch successfully.
In a high availability scenario, you can require that the instances in a pool are evenly
distributed across each of the fault domains that you specify. Whensufficient capacity isn't
available in one of the fault domains, the instance pool will not launch or scale successfully,
and a work request for the instance pool will return an "out of capacity" error. To fix the
capacity error, either wait for capacity to become available,
or use the UpdateInstancePool operation to update the placement configuration (the
availability domain and fault domain) for the instance pool. during create the instance pool you can select the location where you want to place the
instances"
In the Availability Domain list, select the availability domain to launch the instances in.
If you want the instances in the pool to be placed evenly in one or more fault domains,
select the Distribute instances evenly across selected fault domainscheck box. Then, select
the fault domains to place the instances in.
Sample Question 10
You are creating an Oracle Cloud Infrastructure Dynamic Group. To determine the
members of this group you are defining a set of matching rules.
Which of the following are the supported variables to define conditions in the matching
rules? (Choose Two)
A. instance.compartment.id -the OCID of the compartment where the instance resides. B. instance.tenancy.id -the OCID of the tenancywhere the instance resides. C. tag...value -the tag namespace and tag key. D. iam.policy.id - the OCID of the IAM policy to apply to the group.
Answer: A,C
Sample Question 11
A company has an urgent requirement to migrate 300 TB of data to Oracle Cloud
Infrastructure (OCI) In two weeks. Their data center has been recently struck by a massive
hurricane and the building has been badly damaged, although still operational. They have a
100 Mbps Internet line but the connection is Intermittent due to the damages caused to the
electrical grid
in this scenario, what is the most effective service to use to migrate the data to OCI given
the time constraints?
A. Setup a OCI Storage Gateway to connect your data center and your VCN. Once the connection has been established, upload all data to OCI using OCI Storage Gateway Cloud Sync tool. B. Setup a hybrid network by launching aIGbpsFastConnect virtual circuit between your
data center and OCI. Use OCI Object storage multipart upload tool to automate the
migration of your data to OCI. C. Use multiple OCI Data Transfer Appliances to transfer data to OCI. D. Upload the data to OCI using OCI Object Storage multipart upload tool. E. Storage Gateway to connect your data center and your VCN. Once the connection has been established, upload all data to OCI.
Answer: C
Explanation:
Due to the network speed is not good enough and the connection is Intermittent due to the
damagescaused to the electrical grid
Oracle offers offline data transfer solutions that let you migrate data to Oracle Cloud
Infrastructure.
You have 2 Options of Data Transfer
DISK-BASED DATA TRANSFER
You send your data as files on encrypted commodity disk to anOracle transfer site.
Operators at the Oracle transfer site upload the files into your designated Object Storage
bucket in your tenancy.
APPLIANCE-BASED DATA TRANSFER
you send your data as files on secure, high-capacity, Oracle-supplied storage appliancesto
an Oracle transfer site. Operators at the Oracle transfer site upload the data into your
designated Object Storage bucket in your tenancy.
Sample Question 12
You are working as a cloud consultant for a major media company. Inthe US and your
client requested to consolidate all of their log streams, access logs, application logs, and
security logs into a single system.
The client wants to analyze all of their logs In real-time based on heuristics and the result
should be validated as well. This validation process requires going back to data samples
extracted from the last 8 hours.
What approach should you take for this scenario?
A. Create an auto scaling pool of syslog-enabled servers using compute instances which
will store the logs In Object storage, then use map reduce jobs to extract logs from Object
storage, and apply heuristics on the logs. B. Create a bare-metal instance big enough to host a syslog enabled server to process the logs and store logs on the locally attachedNVMe SSDs for rapid retrieval of logs when needed. C. Set up an OCI Audit service and ingest all the API arils from Audit service pragmatically to a client side application to apply heuristics and save the result in an OCI Object storage. D. Stream all the logs and cloud events of Events service to Oracle Streaming Service. Build a client process that will apply heuristics on the logs and store them in an Object Storage.
Answer: D Explanation: The Oracle Cloud Infrastructure Streaming service provides a fully managed, scalable, and
durable storage solution for ingesting continuous, high-volume streams of data that you can
consume and process in real time. Streaming can be used for messaging, ingesting highvolume data such as application logs, operational telemetry, web click-stream data, or
other use cases in which data is produced and processed continually andsequentially in a
publish-subscribe messaging model.
Streaming Usage Scenarios
Here are some of the many possible uses for Streaming:
Metric and log ingestion: Use the Streaming service as an alternative for traditional filescraping approaches to helpmake critical operational data more quickly available for
indexing, analysis, and visualization.
Messaging: Use Streaming to decouple components of large systems. Streaming provides
a pull/bufferbased communication model with sufficient capacity to flattenload spikes and
the ability to feed multiple consumers with the same data independently. Key-scoped
ordering and guaranteed durability provide reliable primitives to implement various
messaging patterns, while high throughput potential allows for such a system to scale well.
Web/Mobile activity data ingestion: Use Streaming for capturing activity from websites or
mobile apps (such as page views, searches, or other actions users may take). This
information can be used for realtime
monitoring and analytics,as well as in data warehousing systems for offline processing and
reporting.
Infrastructure and apps event processing: Use Streaming as a unified entry point for cloud
components to report their life cycle events for audit, accounting, and related activities.
Sample Question 13
A civil engineering company is running an online portal In which engineers can upload
there constructions photos, videos, and other digital files.
There is a new requirement for you to implement: the online portal must offload the digital
content to an Object Storage bucket for a period of 72 hours. After the provided time limit
has elapsed, the portal will hold all the digital content locally and wait for the next offload
period.
Which option fulfills this requirement?
A. Create a pre-authenticated URL for the entire Object Storage bucket to read and list the
content with an expiration of 72 hours. B. Create a pre authenticated URL lot each object that Is uploaded to the Object Storage bucket with an expiration of 72 hours. C. Create a Dynamic Group with matchingrule for the portal compute Instance and grant access to the Object Storage bucket for 72 hours. D. Create a pre authenticated URL for the entire Object Storage bucket to write content with an expiration of 72 hours.
Answer: D Explanation:
Pre-authenticated requestsprovide a way to let usersaccessa bucket or an object without
having their own credentials, as long as the request creator has permission to access those
objects.
For example, you can create a request that lets operations support useruploadbackups to
abucketwithout owning API keys. Or, you can create a request that lets a business partner
update shared data in a bucket without owning API keys.
When creating a pre-authenticated request, you have the following options:
You can specify the name of abucket that a pre-authenticated request user has write
access to and can upload one or more objects to.
You can specify the name of an object that a pre-authenticated request user can read from,
write to, or read from and write to. Scope and Constraints
Understand the following scope and constraints regarding pre-authenticated requests:
Users can't list bucket contents.
You can create an unlimited number of pre-authenticated requests.
There is no time limit to the expiration date that you can set.
You can'tedit a pre-authenticated request. If you want to change user access options in
response to changing requirements, you must create a new pre-authenticated request.
The target and actions for a pre-authenticated request are based on the creator's
permissions. The request is not, however, bound to the creator's account login credentials.
If the creator's login credentials change, a pre-authenticated request is not affected.
You cannot delete a bucket that has a pre-authenticated request associated with that
bucket or with an object in that bucket.
Sample Question 14
An organization has its mission critical application consisting of multiple application servers
and databases running inside Virtual Cloud Network (VCN) in uk-london-1 region. Their
solution architect wants to further strengthen their architecture by planning for Disaster
Recovery (DR) in eu-frankfurt-1 region.
Which two solutions should their architect keep in mind while designing for DR?
A. A remote VCNpeering connection is required to establish secure and reliable
connectivity between different VCNs created in uk-london-1 and eu-frankfurt-1 region. B. rsync utility can be used to asynchronously copy file systems or snapshot data to another region. C. Load balancer will automatically distribute traffic between both the regions. D. The RTO is the acceptable timeframe of lost data that application can tolerate. E. It is not possible to use Active Data Guard to synchronize a database in uk-london-1 region toequivalent database in eu-frankfurt-1 region.
Answer: A,C
Sample Question 15
By copying block volume backups to another region at regular intervals, it makes it easier
for you to rebuild applications and data in the destination region if a region-wide disaster
occurs in the source region.
Which IAM Policy statement allows the VolumeAdmins group to copy volume backups
between regions '
A. Allow group VolumeAdmins to use volumes in tenancy B. Allow group VolumeAdmins to copy volume' backups in tenancy C. Allow group VolumeAdmins to manage volume-family In tenancy D. Allow group VolumeAdmins to inspect volumes in tenancy
Answer: C Explanation: The backups feature of the Oracle Cloud Infrastructure Block Volume service lets you make a point-intime snapshot of the data on a block volume.These backups can then be restored to new volumes either immediately after a backup or at a later time that you choose. You can copy block volume backupsbetween regions using the Console, command line interface (CLI), SDKs, or REST APIs. To copy volume backups between regions, youmusthave permission toreadandcopy volume backups in thesourceregion, and permission tocreatevolume backups in the destinationregion. to do all things with block storage volumes, volume backups, and volume groups in all compartmentswith the exception of copying volume backups across regions. Allow group VolumeAdmins to manage volume-family in tenancy The aggregate resource typevolume-familydoes not include theVOLUME_BACKUP_COPYpermission, so to enable copying volume backups across regions you need to ensure that you include the third statement in that policy, which is: Allow group VolumeAdmins to use volume-backups intenancy where request.permission='VOLUME _BACKUP_COPY'
Sample Question 16
You have decided to migrate your application to Oracle Cloud Infrastructure and use
OracleFunctions to deploy your microservices.
Which monitoring metrics are available to help you calculate your total cost for using Oracle
Functions per month? (Choose Two)
A. Amount of RAM used by your functions. B. Length of time a function runs. C. Number oftimes a function is invoked. D. Amount of storage used by your functions. E. Network bandwidth used by your functions.
Answer: B,C
Sample Question 17
You are trying to troubleshoot the configuration of your Oracle Cloud Infrastructure (OCI)
Load Balancing service. You have a backend HTTP service for which you have created a
backend set in the load balancer. You have configured health checks for the backend set.
Although the health checks appear good, customers sometimes experience transaction
failures.
Which of the following options will definitely lead to this problem?
A. You are NOT using regional subnets in yourVirtual Cloud Network. With Availability
Domain (AD) specific subnet. the compute instances of the backend service running in the
subnet have issues when the AD is down. B. You are using OCI Domain Name System. You have misconfigured the 'A' record with the wrong IP address leading to requests not getting routed correctly. C. You are using iSCI for block volume attachment to the compute instances in your backed HTTP service. TCP/IP configuration of your block volume attachment is not configured correctly, leading to issues in your backend service. D. You are running a TCP-level health check against your HTTP service. The TCP handshake can succeed and indicate that the service is up even when the HTTP service has issues.
Answer: D
Sample Question 18
A retail company has several on-premises data centers which span multiple geographical
locations. They plan to move some of their applications from on-premises data centers to
Oracle Cloud Infrastructure (OCI). For these applications running in OCI, they still need to
interact with applications running on their on-premises data centers to Oracle Cloud
Infrastructure (OCI). for these applications runningin OCI. they still need to interact with
applications running on their on-premises data centers. These applications require highly
available, fault-tolerant network connections between on premises data centers and OCI.
Which option should you recommend toprovide the highest level of redundancy?
A. Oracle cloud Infrastructure provides network redundancy by default so that no other
operations are required B. If your data centers span multiple, geographical locations, use only the specific IP address as a static route for the specific geographical location C. Set up both IPSec VPN and FastConnect to connect your on premises data centers to
Oracle Cloud Infrastructure. D. Use FastConnect private peering only to ensure secure access from your data center to Oracle Cloud Infrastructure E. Set up a single IPSec VPN connection (rom your data center to Oracle Cloud Infrastructure since It is cost effective
Answer: B Explanation: If your data centers span multiple geographical locations, we recommend using a broad CIDR (0.0.0.0/0) as a static route in addition to the CIDR of the specific geographical location. This broad CIDR provides high availability and flexibility to your network design. For instance, the following diagram shows two networks in separate geographical areas that each connect to Oracle Cloud Infrastructure. Each area has a single on-premises router, so two IPSec VPN connections can be created. Note that each IPSec VPN connection has two static routes: one for the CIDR of the particular geographical area, and a broad 0.0.0.0/0 static route.
Sample Question 19
You have deployed a web application targeting a global audience across multipleOracle
Cloud Infrastructure (OCI) regions.
You decide to use Traffic Management Geo-Location based Steering Policy to serve web
requests to users from the region closets to the user. Within each region you have
deployed a public load balancer with 4 servers in a backend set. During a DR test disable
all web servers in one of the regions however, traffic Management does not automatically
direct all users to the other region.
Which two are possible causes?
A. You did not setup a Route Table associated with load Balancer's subnet B. You did not setup an HTTP Health Check associated with Load Balancer public IP in the disabled region. C. Rather than using Geo-Location based Steering Policy, you should use Failover Policy Type to serve traffic. D. One of thetwo working web servers In the other region did not pass Its HTTP health check E. You did not correctly setup the Load Balancer HTTP health check policy associated with backend set
Answer: B,E Explanation:
Managing Traffic ManagementGEOLOCATIONSteering Policies
Geolocation steering policiesdistributeDNS traffic to different endpoints based on the
location of the end user. Customers can define geographic regions composed of originating
continent, countries or states/provinces (North America) and define a separateendpoint or
set of endpoints for each region.
TheHealth Checks serviceallows you to monitor the health of IP addresses and
hostnames, as measured from geographic vantage points of your choosing, using HTTP
and ping probes. After configuring a healthcheck, you can view the monitor's results. The
results include the location from which the host was monitored, the availability of the
endpoint, and the date and time the test was performed.
Also you can Combine Managing Traffic ManagementGEOLOCATIONSteering Policies
with Oracle Health Checks to fail over from one region to another
TheLoad Balancing serviceprovideshealth statusindicators that use your health check
policies to report on the general health of your load balancers and their components.
ifyou misconfigure the health check Protocol between the Load balancer and backend set
that can lead to not get an accurate response as example below
If you run a TCP-level health check against an HTTP service, you might not get an
accurate response. The TCP handshake can succeed and indicate that the service is up
even when the HTTP service is ly configured or having other issues. Although the health
check appears good customers might experience transaction failures.
Sample Question 20
You are working as a security consultant with a global insurance organizationwhich is using
Microsoft Azure Active Directory as an identity provider to manage user login/passwords.
When a user logs in to Oracle Cloud Infrastructure (OCI) console, it should get
authenticated by Azure AD.
Which set of steps are required to be configured in OCI to meet this requirement?
A. Setup Azure AD as an Identity Provider, import users and groups from Azure AD to OCI, set up IAM policies to govern access to Azure AD groups. B. Setup Azure AD as an Enterprise Application, configure OCI for singlesign-on, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups. C. Setup Azure AD as an Enterprise Application, map Azure AD users, groups and policies to OCI groups and users. D. Setup Azure AD as an IdentityProvider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups.
Answer: D
Sample Question 21
You have created compartment called Dev for developers. There are two IAM groups for
developers: group-devl and group-dev2. You need to write an Identity and Access
Management (IAM) policy to give users in these groups access to manage all resources in
the compartment Dev.
Which of the following IAM policy will accomplish this?
A. Allow any-user to manage all resources in compartment Dev where request.group= /group-dev*/ B. Allow group group-devl group-dev2 to manage all resources in compartment Dev C. Allow group /group-dev*/ to manage all resources in compartment Dev D. Allow any-user to manage all resources in tenancy where target.comparment= Dev
Answer: B
Sample Question 22
Anonline registration system Is currently hosted on one large Oracle Cloud Infrastructure
(OCT) Bare metal compute Instance with attached block volume to store of the users' data.
The registration system accepts the Information from the user, Including documents and
photos then performs automated verification and processing to check it the user is eligible
for registration.
The registration system becomes unavailable at tunes when there is a surge of users using
the system the existing architecture needs improvement as it takes a long time for the
system to complete the processing and the attached block volumes are not large enough to
use data being uploaded by the users. Which Is the most effective option to achieve a highly scalable solution?
A. Attach moreBlock volumes as the data volume increase, use Oracle Notification Service
(ONS) to distribute tasks to a pool of compute instances working In parallel, and Auto
Scaling to dynamically size the pool of Instances depending on the number of notifications
received from the Notification Service. Use Resource Manager stacks to replicate your
architecture to another region. B. Change your architecture to use an OCI Object Storage standard tier bucket, replace the single bare metal instance with a Oracle Streaming Service (OSS) to ingest the Incoming requests and distribute the tasks to a group of compute Instances with Auto Scaling C. Upgrade your architecture to use a pool of Bare metal servers and configure them to use their local SSDs for faster data access Set up Oracle Streaming Service (OSS) to distribute the tasks to the pool of Bare metal Instances with Auto Scaling to dynamically increase or decrease the pool of compute instances depending on the length of the Streaming queue. D. Upgrade your architectureto use more Block volumes as the data volume Increases. Replace the single bare metal instance with a group of compute instances with Auto Scaling to dynamically increase or decrease the compute instance pools depending on the traffic.
Answer: D
Sample Question 23
A company runs a public-facing application that uses a Java-based web service via a
RESTful API in their on-premises data center. Use of the API is expected to double with a
newproduct launch. The business wants to migrate their application to Oracle Cloud
Infrastructure (OCI) to meet the scale and reliability requirements. In order to achieve this,
they will divert only 40% of the traffic to the new Apache Tomcat web servers running on
OCI and serve the remaining 60% traffic through their on-premises infrastructure. Once the
migration is complete and application works fine, they will divert all traffic to OCI. How can
these requirements be met with the LEAST amount of effort?
A. Use OCI Traffic management service with failover steering policy and distribute the traffic between OCI and on premises infrastructure. B. Use OCI Traffic management service with Load Balancing steering policy and distribute the traffic between OCI and onpremises infrastructure. C. Use an OCI load Balancer and distribute the traffic between OCI and on premises infrastructure. D. Use VPN connectivity between on premises Infrastructure and OCI and create routing tables to distribute the traffic between them.
Answer: B
Sample Question 24
A global media organization is working on a project which lets users upload their videos to
the site. After upload is complete, the video should be automatically processed by an Al
algorithm. The algorithm will try to recognize certain actions in the videos so that it can be
used to show related advertisements in future. The development team wants to focus on
writing Al code and not worry about underlying infrastructure for high availability, scalability,
securityand monitoring.
Which Oracle Cloud Infrastructure (OCI) services would meet these requirements?
A. OCI Object Storage, OCI Events service and OCI Functions. B. Oracle Container Engine for Kubernetes, OCI Notifications and OCI Object Storage. C. OCI Events, Oracle Container Engine for Kubernetes and OCI Digital Assistant. D. OCI Resource Manager, OCI Functions and OCI Events service.
Answer: A
Sample Question 25
A company is running High Performance Computing workloads on Oracle Cloud
Infrastructure and are using OCI bare metal compute shape. They have decided to create a
custom image of the bare metal instance's boot disk and use it to launch other instances.
Which of the following is a NOT a true statement?
A. Before you create a custom image of an instance, you must disconnect all iSCSI attachments and remove all iscsid node configurations from the instance. B. Editing custom Windows images is not supported due to hardware differences between shapes. C. Custom images do not include the data from any attached block volumes. D. You can create additional custom images of an instance while the instance is engaged in the image creation process.
Answer: D
Sample Question 26
As an administrator you want to give users of ObjectWriters group full access to bucket
Bucket-A and its objects in compartment comp-images. You want users of ObjectWriters to
not be able to access or modify properties of any other buckets and its objects in the
compartment comp-images.
Select the statement(s) below that will best define your IAM policies.
A. Allow group ObjectWriters to mange buckets in compartment comp- images Allow group ObjectWriters to manage objects in compartment comp-images where target.bucket.name= 'Eucket-A' B. Allow group ObjectWriters to manage buckets in compartment comp-images where target.bucket.name=' Bucket-A' C. Allow group ObjectWriters to inspect buckets in compartment comp-images Allow group ObjectWriters to read buckets in compartment comp-images where target.bucket.name=' Bucket-A"
Allow group ObjectWriters to manage objects in compartment comp-images where
target.bucket.name=' Bucket-A' D. Allow group ObjectWritexs to read buckets incompartmentcomp-images Allow group ObjectWriters to manage objects in compartment comp- images where target.bucket.name= 'Bucket-A'
Answer: C
Sample Question 27
A company has an application that processes confidential data. The data is currently stored
in an on-premises data center. A solution architect needs to move this data to Oracle Cloud
Infrastructure (OCI) Object Storage andensure data is encrypted in-transit to OCI.
Which two steps should the solution architect perform to set up the most cost-effective
connection between on-premises data center and OCI?
A. Set up private end point for accessing Object Storage. B. Attach an Internet Gateway to Virtual Cloud network(VCN). C. Configure a service gateway accessing Object Storage. D. Set up an IPsec tunnel between the customer equipment and software VPN on an oci instance E. Configure a private peering connectionon the Oracle FastConnect F. Set up VPN Connect between the customer equipment and the Dynamic Routing Gateway.
Answer: C,F
Sample Question 28
You are advising the database administratorresponsible for managing non-production
environment for Oracle Autonomous Database running on Oracle Cloud
Infrastructure. You need to help the database administrator ensure that the non-production
environments have a copy of the current data from the production environment in a manner
that is most time-efficient.
Which method should you recommend? (Choose the best answer.)
A. Take a full database backup of the production Autonomous database and create the
non-production database from it. B. Create a metadata clone of the production Autonomous Database and create the nonproduction database from it. C. Create a full clone of the production Autonomous Database and create the nonproduction database from it. D. Take a Data Pump export of the production Autonomous database and import into the non-production database.
