Oracle EBS (ERP): Cloud

Showing posts with label Cloud. Show all posts

Oracle Cloud Infrastructure 2023 Foundations Associate (1Z0-1085-23)

Practice Exam: Oracle Cloud Infrastructure Foundations

1. Which is a key characteristic of an Oracle Cloud Infrastructure Block Volume?

Ans: It is automatically replicated within an availability domain for high durability.

2. Which type of Oracle Cloud Infrastructure networking gateway allows access to Oracle services within the same region without traversing the public internet?

Ans: Service Gateway

3. In the Oracle Cloud Infrastructure Object Storage service, which storage tier is designed for rarely or seldom accessed data that can be restored within hours?

Ans: Archive Storage

4. What is the primary function of a Route Table in Oracle Cloud Infrastructure Networking Service?

Ans: To define rules to route traffic from subnets to destinations outside the VCN

5. In OCI Networking, what is the role of a Dynamic Routing Gateway (DRG)?

Ans: To provide a path for traffic between a VCN and an on-premises network or another VCN

6. Which of the following is NOT a type of OCI Compute instance?

Ans: Nano instances

7. Which is a key difference between Security Lists and Network Security Groups in Oracle Cloud Infrastructure?

Ans: Security Lists apply to subnets, while Network Security Groups apply to individual instance VNICs.

8. Which Oracle Cloud Infrastructure service is designed to protect your web applications from various types of malicious attacks, such as SQL injection and cross-site scripting?

Ans: Web Application Firewall (WAF)

9. Which data transfer types is generally free of charge in Oracle Cloud Infrastructure?

Ans: Ingress data transfer

10. In the Oracle Cloud Infrastructure Block Volume service, which feature enables you to increase the size of a block volume without any downtime?

Ans: Online Resizing

11. How are compartment quotas applied in Oracle Cloud Infrastructure?

Ans: On a per-compartment basis

12. Which tool in Oracle Cloud Infrastructure allows you to visualize and analyze your cloud usage and spending patterns over time?

Ans: Cost Analysis

13. Which protocol is used by the Oracle Cloud Infrastructure File Storage service for file access?

Ans: NFS (Network File System)

14. Which is a key benefit of using Oracle Cloud Infrastructure Autonomous Database?

Ans: Reduced database management overhead

15. Which Oracle Cloud Infrastructure service continuously monitors your cloud resources and configurations to detect, assess, and remediate security risks?

Ans: Cloud Guard

16. Which type of scaling is achieved by adding or removing instances within an instance pool in Oracle Cloud Infrastructure Compute?

Ans: Horizontal scaling

17. In the Oracle Cloud Infrastructure Compute service, which feature enables users to migrate running instances between different physical servers?

Ans: Live Migration

18. In Oracle Cloud Infrastructure, which component is responsible for controlling traffic between subnets within a virtual cloud network (VCN)?

Ans: Security Lists

19. Which Oracle Cloud Infrastructure Autonomous Database workload type is designed for real-time analytics and reporting?

Ans: Autonomous Data Warehouse (ADW)

20. What is the main advantage of vertical scaling in the Oracle Cloud Infrastructure Compute service?

Ans: Enhanced performance with more OCPUs and memory

21. In Oracle Cloud Infrastructure, what is the main difference between a Load Balancer and a Network Load Balancer?

Ans: A Load Balancer works at the application layer (layer 7), while a Network Load Balancer works at the transport layer (layer 4).

22. What is the primary purpose of setting up budgets in Oracle Cloud Infrastructure?

Ans: To monitor and control spending on OCI services

23. Which of the following statements about compartments in Oracle Cloud Infrastructure is NOT true?

Ans: Compartments provide a way to store and manage encryption keys and secrets.

24. What is the primary goal of distributing resources across multiple availability domains in Oracle Cloud Infrastructure?

To improve fault tolerance and high availability

25. What type of storage is associated with instances in the Oracle Cloud Infrastructure Compute service?

Ans: Block Storage

26. Which attribute can be customized when creating an Oracle Cloud Infrastructure Compute flexible shape instance?

Ans: Number of OCPUs and amount of memory

27. Which type of load balancing policy is supported by Oracle Cloud Infrastructure Load Balancer?

Ans: Round Robin

28. How does Oracle Cloud Infrastructure's Bring Your Own License (BYOL) feature help customers save on costs?

Ans: By allowing customers to use existing software licenses in OCI

29. In Oracle Cloud Infrastructure, which component of an IAM policy statement defines the user or group the policy applies to?

Ans: Principal

30. What is the term used to describe the combination of an instance's shape, base image, and metadata in the Oracle Cloud Infrastructure Compute service?

Ans: Instance Configuration

31. What are the two types of workloads supported by Oracle Cloud Infrastructure Autonomous Database?

Ans: Transaction Processing and Data Warehousing

32. Which of the following is NOT a component of an IAM policy statement in Oracle Cloud Infrastructure?

Ans: Encryption

33. In the Oracle Cloud Infrastructure shared security responsibility model, who is responsible for securing the customer's data, applications, and access control?

Ans: The customer

34. In the context of Oracle Cloud Infrastructure Autonomous Database, what does the self-securing feature provide?

Ans: Automatic application of security patches and protection from threats

35.What is the main benefit of using Oracle Cloud Infrastructure Security Zones for resource management?

Ans: Enforcing best practice security configurations

Oracle Cloud Discover and Train in CyberSecurity

Test: Skill Check: Building a Second-Gen Secure Cloud

1. Which is NOT an example of operational security?

Ans: Coding standard

2. Which statement is NOT true about OCI Gen2 cloud platform?

Ans: It is a SaaS service

3. Which factor is NOT considered for risk evaluation of a data center site?

Ans: News report on cyber ri sks

4. Which design principal in OCI Gen2 cloud protects against VM escape attacks?

Ans: Isolated network virtualization

5. An application developer who develops applications in a development environment is found to be accessing the production environment.

Which security practice has been violated?

Ans: Principle of least privilege

Test: Skill Check: Oracle Cloud Security Services

1. You want to add another step of user verification along with password authentication.

What should you use to achieve this?

Ans: Multi-factor Authentication

2. Your IT team has created a web-based marketing site that needs to be protected against internet threats including Cross-Site Scripting (XSS) and SQL Injection.

Which OCI security service should they use?

Ans: Web Application Firewall

3. You want to centrally manage the encryption keys and secret credentials that protect your data.

What should you use to achieve this?

Ans: Vault

4. Which key encryption algorithm is NOT supported by the OCI Vault service?

Elliptic curve digital signature algorithm (ECDSA)

Ans: JSON Web Algorithm (JWA)

5. Which statement is true about Security Zones?

Ans: They are associated with a compartment.

Test: Skill Check: Processes and People

1. Which is a guide for developers to produce secure code?

Ans: Oracle Secure Coding Standards

2. Which cloud provider has a cloud interoperability partnership with Oracle Cloud Infrastructure?

Ans: Microsoft Azure

3. Which security team follow the security methodology of collect, detect, respond, and remediate?

Ans: Defensive Security Team

4. Which design points are Oracle Cloud Infrastructure services engineered to meet?

Ans: Service-level objectives

5. Which is NOT a compliance document?

Ans: SOP

Oracle Cloud Infrastructure Foundations 2023 Sample Q&A

1. Test: OCI Introduction 2023 Sample Q&A

1. Which capability can be used to protect against failures within an OCI availability domain?

Ans: Fault Domain

2. Which statement about regions and availability domains is true?

Ans: An OCI region has one or more availability domains.

3. Which Oracle Cloud Infrastructure service is NOT intended for a multicloud solution?

Ans: Oracle Roving Edge Infrastructure

4. You have subscribed to an OCI region that has one availability domain. You want to deploy a highly available application with two servers and a 2-node database. How would you place the components to maintain the high availability of the application?

Ans: Place one server and a DB node in one fault domain, and the second server and DB node in another fault domain.

5. Which statement about OCI is NOT true?

Ans: A single fault domain can be associated with multiple availability domains within a region.

4 Test: Skill Check: Identity and Access Management (IAM)

1. Which is NOT a component of OCI Identity and Access Management?

Ans: Network Security Group

2. How is a resource in OCI identified?

Ans: With OCID

3. Which Identity and Access Management component helps to organize multiple users into a team?

Ans: Groups

4. Which statement about OCI compartments is NOT true?

Ans: It is a best practice to create all your resources in the root compartment.

5. Which statement about OCI Identity and Access Management is true?

Ans: It enables you to control access for a group of users.

5. Test: Skill Check: Networking

1. Which OSI layer traffic is supported by the OCI Network Load Balancer?

Ans: Layer 4 (transport)

2. Which statement about Virtual Cloud Network (VCN) peering between two VCNs is NOT valid?

Ans: A VCN peering connection is a VPN-based connection.

3. Which VCN component blocks inbound traffic, but enables outbound traffic to the internet?

Ans: NAT Gateway

4. Which component is NOT created by default with the creation of a Virtual Cloud Network?

Ans: Default Local Peering Gateway

5. Which statement about a Virtual Cloud Network (VCN) is true?

Ans: A VCN can reside only in a single region but can span multiple availability domains.

6.Test: Skill Check: Compute

1. What is the primary purpose of Oracle Cloud Infrastructure Functions?

Ans: To execute code in response to events or HTTP requests

2. Which statement about the working of autoscaling in an instance pool is true?

Ans: It automatically provisions and removes instances in an instance pool.

3. Which two parameters can be customized when creating a flexible shape compute instance?

Ans: Number of OCPUs

Amount of memory

4. Which processor type is NOT available for the OCI Compute service?

Ans: Snapdragon

5. Which type of storage is associated with instances in the OCI Compute service?

Ans: Block Storage

7. Test: Skill Check: Storage
1. You have an extremely high performance database workload that requires at least 90 IOPS/GB and 90,000 IOPS per volume. Which OCI Block Volume performance level can be used to meet this requirement?
Ans: Ultra High Performance

2. In the Oracle Cloud Infrastructure Object Storage Service, what is the primary purpose of a pre-authenticated request URL?
Ans: To provide temporary and secure access to a specific object.

3. What feature of the Oracle Cloud Infrastructure Block Volume service ensures data durability and protection against hardware failures?
Ans: Replication

4. You want to store the backup of a database in cloud storage for an extended period. Which type of storage would you configure for these files?
Ans: Archive Storage

5. You have created an Object Storage bucket of Archive tier. Which statement is NOT valid for the Archive Storage tier?
Ans: The Archive storage bucket can be upgraded to Standard storage.

8. Test: Skill Check: Database

1. Which feature of Oracle Autonomous Database enables automatic database optimizations without manual intervention?

Ans: Self-driving

2. Which type of processing does MySQL HeatWave primarily enable MySQL to handle efficiently?

Ans: Online Analytical Processing (OLAP)

3. How does MySQL HeatWave enable accelerated query performance?

Ans: By using in-memory data storage

4. Which is NOT a supported workload type for Oracle Autonomous Database?

Ans: MySQL

5. In the context of Oracle Autonomous Database, what does the self-repairing feature ensure?

Ans: Automatic database recovery in case of failures

9. Test: Skill Check: Security

1. In the OCI shared security responsibility model, who is responsible for securing the underlying cloud infrastructure?

Ans: Oracle

2. Which of the following is NOT a component of the Oracle Cloud Infrastructure Vault service?

Ans: Database backup

3. What is the main advantage of using OCI Security Zones when deploying resources in your cloud environment?

Ans: Ensuring adherence to security best practices and policies

4. What is the primary purpose of the Oracle Cloud Infrastructure Vault service?

Ans: To store and manage encryption keys and secrets

5. Which option is NOT a component of Oracle Cloud Guard?

Ans: Targets

10. Test: Skill Check: Governance and Administration

1. In Oracle Cloud Infrastructure, what is the key difference between service limits and compartment quotas?

Ans: Service limits are set by Oracle for a tenancy or region, while compartment quotas are user-defined for specific compartments.

2. Which type of traffic is charged under data transfer costs in Oracle Cloud Infrastructure?

Ans: Egress to the internet is charged.

3. Which is NOT a factor that influences pricing in Oracle Cloud Infrastructure?

Ans: Choice of OCI region

4. In Oracle Cloud Infrastructure, what can you set up to receive notifications when budget thresholds are reached?

Ans: Email alerts

5. Which is NOT a supported Oracle Cloud Infrastructure pricing model?

Ans: Sovereign subscriptions

Oracle Fusion Date Format

Oracle Fusion BIP

TO_DATE(accountion_date, 'RRRR/MM/DD HH24:MI:SS')

TO_DATE(TO_CHAR(accountion_date, 'RRRR/MM/DD HH24:MI:SS'),'RRRR/MM/DD HH24:MI:SS')

TO_CHAR( TO_DATE(accountion_date, 'RRRR/MM/DD HH24:MI:SS'),'DD-MM-YYYY')

TO_DATE(nvl(:P_FROM_Period,TO_CHAR(ail.accountion_date, 'RRRR/MM/DD HH24:MI:SS')),'RRRR/MM/DD HH24:MI:SS')

Oracle Cloud Infrastructure 2022 Cloud Operations Professional (1Z0-1067-22)

OCI 2022 Cloud Operations Professional (1Z0-1067-22)

Test: Skill Check: Introduction Part 1

1. Which of the following is an advantage of Auth Token-based authentication over API key-based authentication?

Ans: Security

2. Suppose you want to provision 100 identical compute instances. Which would be the most appropriate tool to use?

Ans: OCI CLI

3. Which of the following call the OCI API? (Select all that apply.)

Ans: Cloud Console

Terraform

OCI SDK

OCI CLI

4. Which two statements are true regarding the Cloud Shell?

The Cloud Shell has the OCI CLI, as well as other development tools, pre-installed.

The Cloud Shell automates OCI CLI authentication for your user.

5. Which three of the following are authentication methods of the OCI CLI?

Ans: Auth Token/Security Token

Instance Principle

Practice Exam: OCI Cloud Operations Professional

1. Which Oracle Cloud Infrastructure Service allows customers to configure routing policies for serving intelligent responses to DNS queries?

Ans: Traffic Management

2. Which three tasks can be performed using Ansible?

Ans: Workflow automation

Application deployment

3. Which service intercepts HTTP/S traffic and passes them through a set of filters and rules to protect against attack streams?

Ans: WAF

4. A working Linux instance stops responding. What is the correct way to troubleshoot the issue?

Ans: Create an instance console connection and check the console logs.

5. Which three are components of a Monitoring Query Language expression?

Ans: interval

statistics

metric

6. Which statement is true about the Oracle Cloud Infrastructure audit logs retention period?

Ans: You can configure log retention for up to 365 days.

7. All the backend server health status indicators report OK, but the load balancer does not pass traffic on a listener. What are two possible causes for this?

Ans: Listeners are configured to listen on the wrong port.

Listeners are using the wrong protocol.

8. Which two statements are true about the Oracle Cloud Infrastructure Cost Analysis Tool?

Ans: Costs can be filtered by Date, Tags, and Compartments.

The tool can only be accessed by members of the ADMINISTRATOR group.

9. Which three algorithms are supported by Vault?

Ans: RSA

ECDSA

AES

10. Which Oracle Cloud Infrastructure service enables you to set up communication channels to publish messages using topics and subscriptions?

Ans: Notification

11. Which three can leverage the Oracle Cloud Infrastructure Traffic Management Service?

Ans: Controlled migration from a data center to Oracle Cloud Infrastructure

Serving different responses for internal users and external users

Steering traffic to other cloud providers and enterprise data centers

12. How can you provide user access to an existing compartment in Oracle Cloud Infrastructure?

Ans: By adding users to a group and defining a policy to provide group access to the compartment

13. You are an admin for an Oracle Cloud Infrastructure tenancy and you are using the Monitoring Service to monitor your team's cloud resource usage.

Which is true regarding the Monitoring Service?

Ans: The Monitoring Service uses metrics to monitor resources and alarms to notify about metrics.

14. Which two statements are true about Object Storage replication?

Ans: It protects from regional outages and helps in disaster recovery.

Replication overwrites any object in the destination bucket that has the same name as an object in the source bucket.

15. You have created the following JSON file to implement a lifecycle policy for one of your Oracle Cloud Infrastructure Object Storage buckets:

oci os object-lifecycle-policy put -ns MyNamespace -bn MyBucket --items '[

{

""action"": ""ARCHIVE"",

""is-enabled"": true,

""name"": ""ArchiveAfter30Days"",

""object-name-filter"": {

""inclusion-prefixes"": [

""documents""

]

""time-amount"": 30,

""time-unit"": ""DAYS""

{

""action"": ""DELETE"",

""is-enabled"": true,

""name"": ""DeleteAfter180Days"",

""object-name-filter"": {

""inclusion-prefixes"": null

""time-amount"": 180,

""time-unit"": ""DAYS""

}

How will this policy affect the objects that are stored in the bucket?

Ans: Objects containing the name prefix “documents” will automatically be moved from Standard Object Storage to Archive Storage after 30 days and then deleted 180 days after the date of creation.

16. Which Traffic Management Steering Policy dynamically routes traffic requests based on the originating IP prefix?

Ans: IP Prefix Steering

17. Which is the most secure place to store secret keys on Oracle Cloud Infrastructure?

Ans: Vault

18. Which action do you need to perform to push a new image to the Oracle Cloud Infrastructure (OCI) Registry?

Ans: Generate an auth token to complete the authentication via Docker CLI.

19. The backups for a block volume are triggered every week and retained for 4 weeks. Additional ones are created every month, which are retained for 12 months. Which automated policy is configured for this backup?

Ans: Silver

20. What is the Oracle Cloud Infrastructure Command Line Interface used for?

Ans: Automating simple, repeatable actions

21. What is the default location of the file created to organize the servers managed by Ansible?

Ans: /etc/ansible/hosts

22. If traffic does not flow correctly, which three might cause issues in the IPSec connection?

Ans: Overlapping CIDRs

An inconsistent ping result from on-premises to the Oracle Cloud Infrastructure device

Multiple SPIs with policy-based tunnels

23. Which two show the correct scope for setting up Oracle Cloud Infrastructure budgets?

Ans: Compartment

Cost-tracking tag

24. Which three SDKs are supported on Oracle Cloud Infrastructure?

Ans: Go

Java

TypeScript

25. What is the difference between service limits and compartment quotas?

Ans: Service limits are set by Oracle, while compartment quotas are set by administrators.

26. What is used to automate copying block volume backups from one region to another seamlessly?

Ans: User-defined backup policy

27. Which statement is FALSE regarding multipart uploads?

Ans: Uploads cannot be restarted if they fail due to a network issue.

28. Which three are valid use cases for using Oracle Cloud Infrastructure cost-tracking tags?

Ans: Track resource usage based on tags.

Filter projected costs based on tags.

Set up budgets based on resources grouped by tags.

29. Which alarm state is seen if the alarm metric is no longer being emitted?

Ans: Reset

30. A user is unable to mount a file system to access the data from a local data center via VPN.

What is causing the issue?

Ans: The instance is in a different region.

31. Where are the Oracle Cloud Infrastructure block volume backups stored?

Ans: In the Object Storage

32. Which Oracle Cloud Infrastructure Service monitors endpoints across a hybrid infrastructure?

Ans: Health Checks

33. Which three are typical responses from WAF?

Ans: Audit log the request

Allow the request to pass

An error page due to a blocked request

34. What is the measurement related to the health, capacity, or performance of a given resource called?

Ans: Metric

35. To better manage resource utilization in your environment, you have decided to create alerts that notify your team each time a new compute instance is created. Which two resources do you need to create to accomplish this task?

Ans: Create a new topic in the Notifications Service and subscribe your email address to the topic.

Create a rule in the Event Service that is activated by the Instance - Launch End event type.

36. You are using Terraform to create a sandbox environment for the development team. This environment consists of an Oracle Cloud Infrastructure virtual cloud network, two compute resources, and a database instance. As part of the Terraform configuration, you need to run a script on the two compute instances that will configure the connection to the database. Which Terraform feature should you leverage to accomplish this task?

Ans: The remote-exec provisioner

37. Which three Terraform actions can be executed against a Stack in the Resource Manager?

Ans: Apply

Plan

Destroy

Oracle Cloud Infrastructure Operations 2021 Associate (1Z0-1067-21)

***Practice Exam For - Oracle Cloud Infrastructure Operations 2021 Associate (1Z0-1067-21)***

2 : Automating Cloud Tasks --------------------------

1. Which statements are true about using Ansible on OCI? (Choose three)

(Choose all correct answers)

Ans:

You can use Ansible to execute a shell command on a collection of hosts.

You can use Ansible to create and destroy OCI resources, such as compute instances and load balancers.

You can use Ansible to restart Apache on all web servers as defined in inventory.

2. Your team recently deployed a custom Java application to a collection of 10 OCI Compute instances. The application is used only for 10 hours each day. To save money, you devise a plan to stop the instances at the end of the day when they are no longer needed, and start them each morning shortly before they will be used.

Which would be the easiest method to implement this plan?

Ans: Use the OCI Command Line Interface.

3. Which is NOT a supported SDK on Oracle Cloud Infrastructure?

Ans: PHP SDK

4. Examine the command:

oci os ns get

Why would you need to execute this command?

Ans: to check the connectivity to OCI

5. You recently joined the Site Reliability team at a new company and found out that their most heavily used application uses immutable instances within the Web tier. During a cursory review of the monitoring dashboard, you notice that 1 of the 11 instances appears to be unhealthy.

Which action would you perform first to resolve this issue?

Ans: Terminate the instance and replace it using the appropriate image.

3 : Operational Activities on OCI ---------------------

1. At which level is versioning defined in object storage?

Ans: bucket level

2. You are managing two applications that consist of multiple compute instances with multiple block volumes. You want to create backups of block volumes efficiently.

How would you do this?

Ans: Group together multiple block volumes into a volume group and create volume group backups.

3. Which statement is true about Object Storage replication?

Ans: After the replication is enabled, the destination bucket becomes read-only.

4. Which statement is true about attaching a volume to multiple instances?

Ans: It does not provide coordination for concurrent reads.

5. What are the advantages of using OS Management Service? (Choose two)

(Choose all correct answers)

Ans:

It enables you to manage updates and patches for the operating system on OCI instances.

It removes common vulnerabilities

4 : Troubleshooting OCI Services --------------------------------

1. In which scenarios does the load balancer health status prove helpful? (Choose two)

(Choose all correct answers)

Ans: VCN network security groups or security list blocks traffic.

Route tables are not configured properly to connect to a compute.

2. What are the various statuses returned by Health check? (Choose two)

(Choose all correct answers)

Ans: CONNECT_FAILED

INVALID_STATUS_CODE

3. Which is a common error during block storage multi attach?

Ans: Block volume is not configured in shareable mode.

4. Which is a common error when connecting to a compute using SSH at the client side?

Ans: permission error for the private key

5. Which are the types of instance console connections? (Choose two)

(Choose all correct answers)

Ans: VNC console connections

Serial console connections

5 : Securing OCI --------------------------------

1. What is the retention period for Audit logs by default?

Ans: 365 days

2. Which are the various algorithms supported by OCI Vault Service? (Choose three)

(Choose all correct answers)

RSA

ECDSA

AES

3. Which statements are true about Web Application Firewall (WAF)? (Choose two)

(Choose all correct answers)

It intercepts HTTP/S traffic and passes it through a set of rules.

It protects from attacks over the web application.

4. Which resources can be managed by using the OCI Vault service? (Choose three)

(Choose all correct answers)

secrets

keys

vaults

5. Which statements are true about OCI Audit service? (Choose three)

(Choose all correct answers)

It retains the audit logs by default for 365 days.

It logs all calls to API endpoints.

It is supported by all OCI services.

6 : Test: Skill Check: Monitoring, Notification, Logging --------------------------------

1. In which scenarios can OCI Notifications service be used? (Choose three)

(Choose all correct answers)

Ans:

to publish a message

to get notified when alarms are fired

to get notified when event rules are triggered

2. Which are the various alarm states of the alarm feature in the Monitoring service? (Choose three)

(Choose all correct answers)

Ans: Suspended

Firing

Reset

3. Which statements are true about the OCI Notifications service? (Choose two)

(Choose all correct answers)

Ans: It broadcasts messages to distributed components in a publish-subscribe pattern.

It enables you to set up communication channels for publishing messages.

4. Which are the different ways to access monitoring service? (Choose four)

(Choose all correct answers)

Ans:

OCI Console

REST API

Terraform

SDK

5. Which statement is true about the Monitoring service?

Ans: The Monitoring service uses metrics to monitor resources and alarms to notify about metrics.

7.Test: Skill Check: Pricing, Billing, Support ----------------------

1. Which are the different Pricing models available? (Choose three)

(Choose all correct answers)

Ans:

Bring Your Own License

Pay As You Go

Monthly Flex

2. Which can be used for setting up Oracle Cloud Infrastructure (OCI) budgets? (Choose two)

(Choose all correct answers)

Ans: compartment

cost-tracking tag

3. Which are the various factors that impact pricing? (Choose three)

(Choose all correct answers)

Ans:

type of resource

services consumed

data transfer

4. Which reports would you use to analyze the spending in the Oracle Cloud Infrastructure tenancy?

Ans: Usage reports

5. Which of the following are covered in end-to-end SLAs? (Choose three)

(Choose all correct answers)

Ans: manageability

performance

availability

Oracle Cloud Security Drivers and Challenges

Test: Skill Check: Cloud Security Drivers and Challenges

1. In which offering is the cloud provider typically responsible for security for the entire technology stack?

Ans: SaaS

2. Which is NOT a finding of the Oracle and KPMG Cloud Threat Report 2020?

Ans: 3/4th of all respondents feel their data center is more secure than the cloud.

3. Which approach is best suited for dealing with zero-day threats, by employing threat prediction?

Ans: Machine Learning

4. Which is NOT a CISO goal?

Ans: Get involved in public cloud projects only after a cybersecurity incident.

5. According to the Verizon Data Breach Investigations Report, who was behind a majority of data breaches?

Ans: External actors

OCI Operations Associate Workshop Sample Q&A

Automating Cloud Tasks

1. Which statements are true about using Ansible on OCI? (Choose three)

Ans:

You can use Ansible to create and destroy OCI resources, such as compute instances and load balancers.

You can use Ansible to collect billing and usage data for your OCI tenancy.

You can use Ansible to execute a shell command on a collection of hosts.

You can use Ansible to restart Apache on all web servers as defined in inventory.

Which would be the easiest method to implement this plan?

Ans:

Use the OCI Command Line Interface.

3. Which is NOT a supported SDK on Oracle Cloud Infrastructure?

Ans: PHP SDK

4. You recently joined the Site Reliability team at a new company and found out that their most heavily used application uses immutable instances within the Web tier. During a cursory review of the monitoring dashboard, you notice that 1 of the 11 instances appears to be unhealthy.

Which action would you perform first to resolve this issue?

Ans: Terminate the instance and replace it using the appropriate image.

5. Examine the command: oci os ns get

Why would you need to execute this command?

Ans: to check the connectivity to OCI

OCI Operations 2021 Associate (1Z0-1067-21) Certification (Practice Exam) Sample

Practice Exam For - Oracle Cloud Infrastructure Operations 2021 Associate (1Z0-1067-21)

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

1. Which three are valid use cases for using Oracle Cloud Infrastructure cost-tracking tags?

Ans: set up budgets based on resources grouped by tags

filter projected costs based on tags

track resource usage based on tags

2. You have created the following JSON file to implement a lifecycle policy for one of your Oracle Cloud Infrastructure Object Storage buckets:

oci os object-lifecycle-policy put -ns MyNamespace -bn MyBucket --items '[

{

""action"": ""ARCHIVE"",

""is-enabled"": true,

""name"": ""ArchiveAfter30Days"",

""object-name-filter"": {

""inclusion-prefixes"": [

""documents""

]

""time-amount"": 30,

""time-unit"": ""DAYS""

{

""action"": ""DELETE"",

""is-enabled"": true,

""name"": ""DeleteAfter180Days"",

""object-name-filter"": {

""inclusion-prefixes"": null

""time-amount"": 180,

""time-unit"": ""DAYSYou are using Terraform to create a sandbox environment for the development team. This environment consists of an Oracle Cloud Infrastructure virtual cloud network, two compute resources, and a database instance. As part of the Terraform configuration, you need to run a script on the two compute instances that will configure the connection to the database. Which Terraform feature should you leverage to accomplish this task""

}

How will this policy affect the objects that are stored in the bucket?

Ans: Objects containing the name prefix “documents” will automatically be moved from Standard Object Storage to Archive Storage after 30 days and then deleted 180 days after the date of creation.

3. Which three are typical responses from WAF?

Ans: An error page due to a blocked request

Allow the request to pass

Audit log the request

4. Which two statements are true about Object Storage replication?

Ans: Replication overwrites any object in the destination bucket that has the same name as an object in the source bucket.

It protects from regional outages and helps in disaster recovery.

5. Which three tasks can be done using Ansible?

Ans: Application deployment

Audit

Workflow automation

6. Which three can leverage the Oracle Cloud Infrastructure Traffic Management Service?

Ans: Steering traffic to other cloud providers and enterprise data centers

Controlled migration from a data center to Oracle Cloud Infrastructure

Serving different responses for internal users and external users

7. Which three Terraform actions can be executed against a Stack in the Resource Manager?

Ans: Apply

Plan

Destroy

8. Which three are components of a Monitoring Query Language expression?

Ans: statistics

metric

interval

9. Where are the Oracle Cloud Infrastructure block volume backups stored?

Ans: In the Object Storage

10. Which three SDKs are supported on Oracle Cloud Infrastructure?

Ans: Java

TypeScript

11. A user is unable to mount a file system to access the data from a local data center via VPN.

What is causing the issue?

Ans: The instance is in a different region.

12. Which service intercepts HTTP/S traffic and passes them through a set of filters and rules to protect against attack streams?

Ans: WAF

13. What is used to automate copying block volume backups from one region to another seamlessly?

Ans: User-defined backup policy

14. Which Oracle Cloud Infrastructure service enables you to set up communication channels to publish messages using topics and subscriptions?

Ans: Notification

15. Which three algorithms are supported by Vault?

Ans: ECDSA

AES

RSA

16. If the traffic does not flow correctly, which three might cause issues in the IPSec connection?

Ans: Overlapping CIDRs

An inconsistent ping result from on-premises to the Oracle Cloud Infrastructure device

Multiple SPIs with policy-based tunnels

17. To better manage resource utilization in your environment, you have decided to create alerts that notify your team each time a new compute instance is created. Which two resources do you need to create to accomplish this task?

Ans: Create a rule in the Event Service that is activated by the Instance - Launch End event type.

Create a new topic in the Notifications Service and subscribe your email address to the topic.

18. A working Linux instance stops responding. Which is the correct way to troubleshoot the issue?

Ans: Create an instance console connection and check the console logs

19. What is the default location of the file created to organize the servers managed by Ansible?

Ans: /etc/ansible/hosts

20. You are using Terraform to create a sandbox environment for the development team. This environment consists of an Oracle Cloud Infrastructure virtual cloud network, two compute resources, and a database instance. As part of the Terraform configuration, you need to run a script on the two compute instances that will configure the connection to the database. Which Terraform feature should you leverage to accomplish this task?

Ans: The remote-exec provisioner

21. Which Oracle Cloud Infrastructure Service allows customers to configure routing policies for serving intelligent responses to DNS queries?

Ans: Traffic Management

22. The backups for a block volume are triggered every week and retained for four weeks. Additional ones are created every month, which are retained for twelve months. Which Automated policy is configured for this backup?

Ans: Silver

23. Which statement is true about the Oracle Cloud Infrastructure audit logs retention period?

Ans: You can configure log retention for up to 365 days.

24. You are an admin for an Oracle Cloud Infrastructure tenancy and you are using the Monitoring Service to monitor your team’s cloud resource usage.

Which is true regarding the Monitoring Service?

Ans: The Monitoring Service uses metrics to monitor resources and alarms to notify about metrics.

25. What is the Oracle Cloud Infrastructure Command Line Interface used for?

Ans: automating simple, repeatable actions

26. What is the most secure place to store secret keys on Oracle Cloud Infrastructure?

Ans: Vault

27. Which action do you need to perform to push a new image to the Oracle Cloud Infrastructure (OCI) Registry?

Ans: Generate an auth token to complete the authentication via Docker CLI.

28. Which Traffic Management Steering Policy dynamically routes traffic requests based on the originating IP prefix?

Ans: IP Prefix Steering

29. How can you provide user access to an existing compartment in Oracle Cloud Infrastructure?

Ans: by adding users to a group and defining a policy to provide group access to the compartment

30. All the backend server health status indicators report OK, but the load balancer does not pass traffic on a listener. What are two possible causes of this issue?

Ans: Listeners are configured to listen on the wrong port.

Listeners are using the wrong protocol.

31. Which two statements are true about the Oracle Cloud Infrastructure Cost Analysis Tool?

Ans: Costs can be filtered by Date, Tags, and Compartments.

The tool can only be accessed by members of the ADMINISTRATOR group.

32. What is the difference between service limits and compartment quotas?

Ans: Service limits are set by Oracle, while compartment quotas are set by administrators.

33. Which statement is FALSE regarding multipart uploads?

Ans: Uploads cannot be restarted if they fail due to a network issue.

34. Which two options show the correct scope for setting up Oracle Cloud Infrastructure budgets?

Ans: Cost-tracking tag

Compartment

35. Which Oracle Cloud Infrastructure Service monitors endpoints across a hybrid infrastructure?

Ans: Health Checks

36. Which alarm state is seen if the alarm metric is no longer being emitted?

Ans: Reset

37. What is the measurement related to the health, capacity, or performance of a given resource called?

Ans: Metric

OCI 2021 Architect Professional (1Z0-997-21) Certification (Practice Exam) Sample

Practice Exam for the Oracle Cloud Infrastructure 2021 Architect Professional (1Z0-997-21) Certification

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

1. You are working as a security consultant with a global insurance organization which is using Microsoft Azure Active Directory as an identity provider to manage user login/passwords. When a user logs in to Oracle Cloud Infrastructure (OCI) console, it should get authenticated by Azure AD.

Which set of steps are required to be configured in OCI to meet this requirement?

Ans: Setup Azure AD as an Identity Provider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups.

2. A global media organization is working on a project which lets users upload their videos to the site. After upload is complete, the video should be automatically processed by an AI algorithm. The algorithm will try to recognize certain actions in the videos so that it can be used to show related advertisements in future. The development team wants to focus on writing AI code and not worry about underlying infrastructure for high availability, scalability, security and monitoring.

Which Oracle Cloud Infrastructure (OCI) services would meet these requirements?

Ans: OCI Object Storage, OCI Events service and OCI Functions.

3. An online gaming application is deployed to multiple Availability Domains in the Oracle Cloud Infrastructure (OCI) us-ashburn-1 region. Considering the high volume of traffic that the gaming application handles, the company has hired you to ensure that the data stored by the application is scalable, highly available, and disaster resilient. In the event of failure, the Recovery Time Objective (RTO) and Recovery Point Objective (RPO) must be less than 2 hours.

Which Disaster Recovery strategy should be used to achieve the RTO and RPO requirements in the event of a system failure?

Ans: Configure hourly block volumes backups using the OCI Command Line Interface (CLI).

4. A fast growing E-commerce company has deployed their online shopping application on Oracle Cloud Infrastructure. The application was deployed on compute instances with Autoscaling configuration for application servers fronted by a load balancer and OCI Autonomous Transaction Processing (ATP) in the backend. In order to promote their e-commerce platform 50% discount was announced on all the products for a limited period. During the day 1 of promotional period it was observed that the application is running slow and company’s hotline is flooded with complaints.

What could be two possible reasons for this situation?

Ans: Autoscaling has already scaled to the maximum number of instances specified in the configuration and there is no room for scaling further.

The health check on some of the backend servers has failed and the load balancer has taken those servers temporarily out of rotation.

5. You are responsible for migrating your on-premises legacy databases on 11.2.0.4 version to Autonomous Transaction Processing - Dedicated (ATP-D) in Oracle Cloud Infrastructure (OCI). As a solution architect, you need to plan your migration approach.

Which three options do you need to implement together to migrate your on-premises databases to OCI?

Ans: Launch Autonomous Transaction Processing – Dedicated database in OCI.

Use Oracle GoldenGate replication to keep on-premises database online during migration.

Convert on-premises databases to PDB, upgrade to 19c, and encrypt.

6. An insurance company is storing critical financial data in the Oracle Cloud Infrastructure block volume. This volume is currently encrypted using oracle managed keys. Due to regulatory compliance, the customer wants to encrypt the data using the keys that they can control and not the keys which are controlled by Oracle.

What of the following series of tasks are required to encrypt the block volume using customer managed keys ?

Ans: Create a vault, create a master encryption key in the vault, assign this master encryption key to the block volume.

7. Which of the following is NOT a good use case for the Oracle Cloud Infrastructure (OCI) Streaming service?

Ans: Meeting compliance requirements for data to remain unchanged over a long time, so that it can be retrieved for audit purposes.

8. You have been asked to review some network proposals by a major client. The client's IT director needs to provision two Virtual Cloud Network (VCN) for a major application. Both applications use a large number of virtual machine instances, and so will ideally occupy VCNs with as many address spaces as possible. Additionally, in the future, VCN peering will be required to allow communication between the VCNs.

Which of the following are valid IP ranges to consider for the VCNs?

Ans: 10.0.0.0/24 and 10.0.1.0/24

9. Which of the below options for private access to services within Oracle Cloud Infrastructure (OCI) is NOT valid?

Ans: You cannot use the private endpoint for hosts in the on-premises network.

10. As an administrator you want to give users of ObjectWriters group full access to bucket Bucket-A and its objects in compartment comp-images. You want users of ObjectWriters to not be able to access or modify properties of any other buckets and its objects in the compartment comp-images.

Select the statement(s) below that will best define your IAM policies.

Ans: Allow group ObjectWriters to inspect buckets in compartment comp-images

Allow group ObjectWriters to read buckets in compartment comp-images where target.bucket.name='Bucket-A'

Allow group ObjectWriters to manage objects in compartment comp-images where target.bucket.name='Bucket-A'

11. You want to automate the processing of new image files to generate thumbnails. The expected rate is 10 new files every hour.

Which of the following is the most cost effective option to meet this requirement in Oracle Cloud Infrastructure (OCI)?

Ans: Upload files to an OCI Object storage bucket. Every time a file is uploaded, an event is emitted. Write a rule to filter these events with an action to trigger a function in Oracle Functions. The function processes the image in the file and stores the thumbnails back in an Object storage bucket.

12. You have deployed an application server in a private subnet in your virtual cloud network (VCN). For the database, you have provisioned an Autonomous Transaction Processing (ATP) serverless instance. However, you are unable to connect to the database instance from your application server.

Which two steps would you need to enable this connectivity?

Ans: Create a NAT Gateway and add the following route rule to the route table of private subnet.

CIDR: 0.0.0.0/0

Target: NAT Gateway

Add a stateful egress rule to the security list associated with your private subnet.

Destination CIDR: 0.0.0.0/0

Protocols: All Protocols

13. You have an application running in Microsoft Azure and want to use Oracle Autonomous Data warehouse (ADW) instance for running business analytics.

How can you build a secure solution for such a use-case?

Ans: Setup an interconnect between OCI and Microsoft Azure using FastConnect and ExpressRoute. Use a Service Gateway in OCI Virtual Cloud Network to provide connectivity to the Oracle ADW instance for the application in Microsoft Azure VNet.

14. Your customer has gone through a recent reorganization. As part of this change, they are organizing their Oracle Cloud Infrastructure (OCI) compartment structure to align with the company's new organizational structure. (Refer to the exhibit)

exhibit

They have made the following change:

Compartment A is moved, and its new parent compartment is compartment Dev.

Policy defined in compartment A: Allow group G1 to manage instance-family in compartment A

Policy defined in root compartment: Allow group admins to manage instance-family in compartment Ops: Test: A

After the compartment move, which action will provide users of group G1 and admins with similar privileges as before the move?

Ans: Define the following policy in compartment Dev:

Allow group G1 to manage instance-family in compartment A

15. You notice that a majority of your Oracle Cloud Infrastructure (OCI) resources like compute instances, block volumes, and load balancers are not tagged. You have received a mandate from your CIO to add a predefined set of tags to identify owners for respective OCI resources. E.g. if Chris and Larry each create compute instances in a compartment, the instances that Chris creates include tags that contain his name as the value, while the instances that Larry creates have his name.

Which option is the simplest way to implement this new tagging requirement?

Ans: Create tag variables to automatically tag a resource with the user name.

16. A manufacturing company is planning to migrate their on-premises database to Oracle Cloud Infrastructure and has hired you for the migration. Customer has provided following information regarding their existing on-premises database:

Database version, database character set, storage for data staging, acceptable length of system outage.

What additional information do you need from customer in order to recommend a suitable migration method? (Choose Two)

Ans: Data types used in the on-premises database.

On-Premises host operating system and version.

17. You are working on the migration of the web application infrastructure of your company from on-premises to Oracle Cloud Infrastructure. You need to ensure that the DNS cache entries of external clients will not direct them to the on-premises infrastructure after switching to the new infrastructure.

Which of the following options will minimize this problem?

Ans: Reduce the TTL of the DNS records before the switch.

18. As part of planning the network design on Oracle Cloud Infrastructure, you have been asked to create an Oracle Cloud Infrastructure Virtual Cloud Network (VCN) with 3 subnets, one in each Availability Domain. Each subnet needs to have a minimum of 64 usable IP addresses.

What is the smallest subnet and VCN size you should use to implement this design? The requirements are static, so no growth is expected.

Ans: /23 for the VCN; /25 for the subnets

19. A developer is using Oracle Functions to deploy her code as part of an event-driven solution in Oracle Cloud Infrastructure (OCI). When she invokes her function, Oracle Functions returns a FunctionInvokeImageNotAvailable message and a 502 error:

{"code":"FunctionInvokeImageNotAvailable","message":"Failed to pull function image"}

Fn: Error invoking function. status: 502 message: Failed to pull function image

Which of the following options is NOT a plausible reason for this error?

Ans: OCI Events service rule is not configured with the correct location of the function in OCI Registry.

20. You have been asked to implement a bespoke financial application in Oracle Cloud Infrastructure using virtual machine instances controlled by Autoscaling across multiple Availability Domains. The application stores transaction logs, intermediate transaction data, and audit data and needs to store this on a persistent, durable data store accessible from all of the application servers. The application requires the file system to be mounted in the /audit folder on the Linux file system. The system needs to tolerate the failure of two or more Fault Domains and still maintain data integrity. The solution should be as low maintenance as possible.

What storage architecture should you suggest?

Ans: Use File Storage Service(FSS). Configure FSS to operate from all Availability Domains the application servers operate in and mount the file system in the /audit folder.

21. A cloud consultant is working on a implementation project on Oracle Cloud Infrastructure (OCI). As part of the compliance requirements, the objects placed in OCI Object Storage should be automatically archived first and then deleted. He is testing a lifecycle policy on Object Storage and created a policy as below:

[ { "name": “Archive_doc”, "action": "ARCHIVE", "objectNameFilter": { "inclusionPrefixes": [ “doc”] },

"timeAmount": 5, “timeUnit”: “DAYS”, "isEnabled": true },

{ "name": “Delete_doc”, "action": "DELETE", "objectNameFilter": { "inclusionPrefixes": [ “doc”] },

"timeAmount": 5, “timeUnit”: “DAYS”, “isEnabled": true }

]

What will happen after this policy is applied?

Ans: All objects with names starting with “doc” will be deleted after 5 days of object creation.

22. You are creating an Oracle Cloud Infrastructure Dynamic Group. To determine the members of this group you are defining a set of matching rules.

Which of the following are the supported variables to define conditions in the matching rules? (Choose Two)

Ans: tag.<tagnamespace>.<tagkey>.value - the tag namespace and tag key.

instance.compartment.id - the OCID of the compartment where the instance resides.

23. Your organization is planning on using Oracle Cloud Infrastructure (OCI) File Storage Service (FSS). You will be deploying multiple compute instance in Oracle Cloud Infrastructure(OCI) and mounting the file system to these compute instances.

The file system will hold payment data processed by a Database instance and utilized by compute instances to create a overall inventory report. You need to restrict access to this data for specific compute instances and must be allowed/blocked per compute instance’s CIDR block.

Which option can you use to secure access?

Ans: Use ‘Export option’ feature of FSS to restrict access to the mounted file systems.

24. You have created compartment called Dev for developers. There are two IAM groups for developers: group-dev1 and group-dev2. You need to write an Identity and Access Management (IAM) policy to give users in these groups access to manage all resources in the compartment Dev.

Which of the following IAM policy will accomplish this?

Ans: Allow group group-dev1 group-dev2 to manage all resources in compartment Dev

25. Your security team has informed you that there are a number of malicious requests for your web application coming from a set of IP addresses originating from a country in Europe.

Which of the following methods can be used to mitigate these type of unauthorized requests?

Ans: Web Application Firewall policy using access control rules

26. You are a solution architect working with a startup that has decided to move their workload to Oracle Cloud Infrastructure. Since their workload is small, upon architecting, you decide its sufficient to use 8 compute instances to run their workload. The company wants to use a common storage for their instances. So, you propose the idea of attaching a block volume to multiple instances to provide a common storage.

Which of the below option is NOT true for such a solution?

Ans: You can delete a block volume from one instance without detaching it from all other instances there by keeping other instance’s storage intact.

27. An E-commerce company which sells computers, tablets, and other electronics items has recently decided to move all of their on-premises infrastructure to Oracle Cloud Infrastructure (OCI). One of their on-premises application is running on an NGINX server and the Oracle Database is running in a 2 node Oracle Real Application Clusters (RAC) configuration.

They cannot afford to have any application down time when they do the migration.

What is an effective mechanism to migrate the customer application to OCI and set up regular automated backups?

Ans: Launch a compute instance and run an NGINX server to host the application. Deploy a 2 node VM DB Systems with Oracle RAC enabled. Setup Oracle GoldenGate to synchronize data from their on-premises database to OCI VM Database. Export and Import the on-premises database to OCI VM DB Systems using Oracle Data Pump, apply the GoldenGate trail files to sync up the OCI database with the on-premises database. Enable automatic backups for the OCI VM database and then cut over the application from on-premises to OCI.

28. Which of the following is NOT a good use case for using the functionality available in the Oracle Cloud Infrastructure (OCI) Events service?

Ans: Capture Monitoring Alarms and invoke Autoscaling of compute instances.

29. You have decided to migrate your application to Oracle Cloud Infrastructure and use Oracle Functions to deploy your microservices.

Which monitoring metrics are available to help you calculate your total cost for using Oracle Functions per month? (Choose Two)

Ans: Number of times a function is invoked.

Length of time a function runs.

30. An E-Commerce company wants to deploy their web application for Oracle Database on Oracle Cloud Infrastructure (OCI) DB Systems. In compliance with the business continuity program of the business, they need to provide a Recovery Point Objective (RPO) of 1 hour and a Recovery Time Objective (RTO) of 5 minutes. The web application should be highly available within the region and meet the RTO and RPO requirements in case of a region outage.

Which approach is the most suitable and cost effective configuration for this scenario?

Ans: Deploy a 2 node Virtual Machine (VM) Oracle RAC database in one region and replicate the database to a 2 node VM Oracle RAC database in another region using a manual setup and configuration of Oracle Data Guard.

31. You are trying to troubleshoot the configuration of your Oracle Cloud Infrastructure (OCI) Load Balancing service. You have a backend HTTP service for which you have created a backend set in the load balancer. You have configured health checks for the backend set. Although the health checks appear good, customers sometimes experience transaction failures.

Which of the following options will definitely lead to this problem?

Ans: You are running a TCP-level health check against your HTTP service. The TCP handshake can succeed and indicate that the service is up even when the HTTP service has issues.

32. You are part of a project team working in the development environment created in Oracle Cloud Infrastructure (OCI). You realize that the CIDR block specified for one of the subnets in a Virtual Cloud Network (VCN) is not correct and want to delete the subnet. While deleting you get an error indicating that there are still resources that you must delete first. The error includes the OCID of the VNIC that is in the subnet.

Which of the following actions you will take to troubleshoot this issue?

Ans: Use OCI CLI to call “network vnic” and “compute vnic-attachment” operations to find out the parent resource of the VNIC.

33. Design and implement hybrid network architectures to meet high availability, bandwidth and latency requirements

Your Oracle database is deployed on-premises and has produced 100 TB database backup locally. You have a disaster recovery plan that requires you to create redundant database backups in Oracle Cloud Infrastructure (OCI). Once the initial backup is completed, the backup must be available for retrieval in less than 30 minutes to support the Recovery Time Objective (RTO) of your solution.

Which is the most cost effective option to meet these requirements?

Ans: Use OCI Storage Gateway to transfer the backup files to OCI Object Storage Standard tier as the final destination.

34. You have configured backups for your Oracle Cloud Infrastructure (OCI) 2-node RAC DB systems on virtual machines. In the console, the database backup displays a Failed status.

Which of the following options is the most likely reason for this backup issue?

Ans: The auth token being used by the Object Store Swift endpoint is incorrect.

35. Which of the below options is true regarding Oracle Cloud Infrastructure’s load balancing service?

Ans: The public load balancer applies a floating public IP address to the primary load balancer.

36. As a solution architect, you are designing a web application to be deployed across multiple Oracle Cloud Infrastructures (OCI) regions for a global audience. Your goal is that users from each region should access the application web servers deployed in their own geographical OCI location.

Which OCI feature can be used to achieve this?

Ans: OCI Traffic Management GeoLocation steering policy

37. You have to migrate your application to Oracle Cloud Infrastructure (OCI). The database is constantly being updated and needs to be online without interruptions. How can you transition the database to OCI without interrupting its use?

Ans: Use an on-premises database with one-way synchronization to a cloud-based database and allow clients to connect only to the on-premises database until it is synchronized.

38. You are tasked with backing up your data using Oracle Cloud Infrastructure Block Volume service.

When you are finalizing your block volume backup schedule, which of the following two are valid considerations for your backup plan?

Ans: Frequency: How often you want to back up your data.

Number of stored backups: How many backups you need to keep available and the deletion schedule for those you no longer need.

39. An eCommerce company is running on Oracle Cloud Infrastructure (OCI) and many compute instances remain unused for the most part of the year except during Black Friday and Christmas. You suggest them to use OCI’s Autoscaling feature and present them a slide to showcase the features of Autoscaling.

Which option below is inaccurate in your presentation to the customer?

Ans: When an instance pool scales in, instances are terminated in this order: the number of instances is balanced across Availability Domains, and then balanced across Fault Domains. Finally, within a Fault Domain, the newest instance is terminated first.

40. Which of the following is NOT a good use case for the volume backup feature of the Oracle Cloud Infrastructure Block Volume service?

Ans: Rapidly duplicate an environment in seconds to test configuration changes without impacting your production environment.

41. Which of the following features is NOT supported by Oracle Cloud Infrastructure Multi-factor authentication (MFA)?

Ans : Members of the Administrators group can enable MFA for other users.

42. You are working as a solution architect for a customer in Frankfurt, which uses multiple compute instance VMs spread among three Availability Domains in the Oracle Cloud Infrastructure (OCI) eu-frankfurt-1 region. The compute instances do not have public IP addresses and are running in private subnets inside a Virtual Cloud Network (VCN). You have set up OCI Autoscaling feature for the compute instances, but find out that instances cannot be auto scaled. You have enabled monitoring on the instances.

What could be wrong in this situation?

Ans: You need to set up a Service Gateway to send metrics to the OCI Monitoring service.

43. You have deployed a multi-tier application with multiple compute instances in Oracle Cloud Infrastructure. You want to back up these volumes and have decided to use ‘Volume Groups’ feature. The Block volume and Compute instances exist in different compartments within your tenancy.

Periodically, a few child compartments are moved under different parent compartments, and you notice that sometimes volume group backup fails.

What should be the cause ?

Ans: The Identity and Access Management policy allowing backup failed to move when the compartment was moved.

44. Many development engineers are deploying new instances as part of their projects in Oracle Cloud Infrastructure tenancy, but majority of these instances have not been tagged. You as an administrator of this tenancy want to enforce tagging to identify owners who are launching these instances.

Which option below should be used to implement this requirement?

Ans: Create a predefined tag with tag variables to automatically tag a resource with username.

45. You have been asked to create a mobile application which will be used for submitting orders by users of a popular E-Commerce site. The application is built to work with Autonomous Transaction Processing - Serverless (ATP-S) database as the backend and HTML5 on Oracle Application Express as the front end. During the peak usage of the application you notice that the application response time is very slow. ATP-S database is deployed with 3 CPU cores and 1 TB of memory.

Which two options are expensive or impractical ways to improve the application response times?

Ans: Scale up CPU core count and memory during peak times.

Identify the maximum CPU capacity needed for peak times and scale the CPU core count for the ATP-S database to that number. ATP-S will scale the CPU core count down when not needed.

46. You are designing the network infrastructure for an application consisting of a web server (server-1) and a Domain Name Server (server-2) running in two different subnets inside the same Virtual Cloud Network (VCN) in Oracle Cloud Infrastructure (OCI). You have a requirement where your end users will access server-1 from the internet and server-2 from your customer’s on-premises network. The on-premises network is connected to your VCN over a FastConnect virtual circuit.

How should you design your routing configuration to meet these requirements?

Ans: Configure two routing tables: first one with a route to internet via an Internet gateway; associate this route table to the subnet containing server-1.Configure the second route table to propagate specific routes to the on-premises network via a Dynamic Routing Gateway; associate this route table to subnet containing server-2.

47. A customer has a Virtual Machine instance running in their Oracle Cloud Infrastructure tenancy. They realized that they wrongly picked a smaller shape for their compute instance. They are reaching out to you to help them fix the issue.

Which of the below options is best recommended to suggest to the customer?

Ans: Change the shape of the virtual machine instance using the Change Shape feature available in the console.

48. You are building a demo for a customer that showcases Oracle Cloud Infrastructure (OCI) Events service and Oracle Functions. You plan to create an event every time an image is uploaded to an OCI Object Storage bucket. You have also created a function that is listening to the event and processes the image for face recognition.

Choose the two actions from below that are NOT required to run the demo successfully.

Ans: Creating an event rule is not permitted for OCI Object storage.

The function must be deployed only to Oracle Kubernetes Engine (OKE).

49. A company is running High Performance Computing workloads on Oracle Cloud Infrastructure and are using OCI bare metal compute shape. They have decided to create a custom image of the bare metal instance's boot disk and use it to launch other instances.

Which of the following is a NOT a true statement?

Ans: You can create additional custom images of an instance while the instance is engaged in the image creation process.

50. There are two compartments: Networks and DevInstances

There are two groups: NetworkAdmins with a user named Nick, and Devs with a user named Dave

The following IAM policies are being used:

Allow group NetworkAdmins to manage virtual-network-family in compartment Networks

Allow group NetworkAdmins to manage instance-family in compartment Networks

Allow group Devs to use virtual-network-family in compartment Networks

Allow group Devs to manage all-resources in compartment DevInstances

Nick creates a VCN in Networks compartment. Dave creates a VCN in DevInstances compartment.

Which of the following statements is INCORRECT?

Ans: Nick launches instances in Networks using VCN in DevInstances compartment

Oracle Cloud Platform Application Integration 2021 Specialist (1Z0-1042-21) Sample Question

Oracle Cloud Platform Application Integration 2021 Specialist (1Z0-1042-21) Sample Question

Skill Check: Leverage Oracle Integration Cloud to Simplify Cloud Integration

----------------------------------------------------------------------------------------------

1. Which of the following solutions are sample integrations that can be found in Oracle Marketplace?

Ans: Recipes

2. Which of the following statements are true? - Statement A : With Integrations with the same major version number, only one integration can be active. - Statement B : Integrations with different major versions can be active at the same time.

Ans: Both the statements are true

3. Which of the following integration operation allows you to create a new integration that can be edited separately?

Ans: Clone

4. Which of the following statements are true? Statement A : Only deactivated integrations can be deleted. Statement B : Integrations should be activated in order to be editable.

Ans: Statement A is true, Statement B is false

5. Integrations are uniquely identified by a version number of format xx.yy.zzzz. In this format, yy.zzzz represents

Ans: Minor version

6. Which of the following integration style allows all four interaction patterns (synchronous interface, asynchronous interface [one-way], asynchronous interface with callback, event based)?

Ans: App Driven Orchestration

7. Which of the following message exchange pattern is also known as “Fire and Forget”?

Ans: Asynchronous request (one-way)

8. Choose the pattern that is identical to Scheduled Orchestration.

Ans: File Transfer

9. Choose the operation that is used to fetch a list of file names in the specified directory of the target FTP server.

Ans: List Files

10. Which of the following prerequisites should be met while creating a ATP/ADW connection with Oracle Integration?

Ans: Options a, b and c

Oracle Cloud Database Services 2021 Specialist (1Z0-1093-21) Sample Questions

Oracle Cloud Database Services 2021 Specialist (1Z0-1093-21) Sample Questions:

1. How many DB systems must you provision before you can enable Oracle Data Guard for a virtual machine DB system database?

Ans: One with the primary database, because a new DB system with the standby database is created and associated with the primary database when you enable Oracle Data Guard.

2. The /u02 directory containing Oracle Homes (OH) is 80% utilized and you need to free up space in it. you own two Oracle Homes (OH193_A and OH193_B), each with a test database (193A and 193B respectively).

You decide to consolidate both databases into a single Oracle Home (OH193. |_A) to free up space. Which TWO actions must you perform?

Ans: use the Move Database option from the console.

Schedule a downtime window with the Test teams who use the 193B database.

3. You enable automatic backups on your Exadata Cloud@Customer.?

Ans: Transparent Data Encryption (TDE) keystore (wallet)

4. After you have provisioned a virtual machine (VM) database (DB) system, what action can you take to meet changes in block storage requirements?

Ans: If a vm DB system requires more block storage, increase the storage at any time without impacting the system.

5. Which FOUR storage options are available in Oracle Cloud Infrastructure (OCI)?

Ans: Local storage

Block Storage

File Storage

Object Storage

6. Which is NOT a prerequisite for patching Grid Infrastructure or database homes when using the console?

a) Oracle Clusterware is down on the VM cluster.

7. You want to permanently delete the DB System and its attached HeatWave cluster. Which action should you perform?

Ans: Delete the DB system and it will also delete the attached HeatWave Cluster.

8. In addition to the automatic backup of your Oracle Database associated with a database deployment, you are planning to take an on-demand backup of a database on Exadata Cloud Service.

How do you do this?

Ans: Use the Create Backup button in the backup section of the Database Details page.

9. What information is required to connect to the NoSQL Database Cloud Service?

Ans: signing key fingerprint, API signing key, tenancy OCID

10. What THREE steps must you perform to connect to a MySQL database in the database system by using SSH and MySQL Shell?

a) Connect to the MySQL Database Service instance.

c) Start MySQL Shell on the compute instance.

d) SSH into the compute instance from your local machine.

11.

Oracle Autonomous Database 2021 Specialist (1z0-931-21) Sample Questions

Oracle Cloud Infrastructure (OCI) 1Z0-931-21 Sample Questions:

1. As a database architect you are tasked with configuring a high concurrency, production OLTP application to connect to an Autonomous Transaction Processing database with a requirement to have some reporting queries run in parallel mode.

Which connection service is appropriate for such a workload?

Ans: TPURGENT

2. Which can be Scaled independently of the number of CPUs in an Autonomous Database?

Ans: Storage

3. What predefined user is created when an Autonomous Database (ADB) instance is created that you connect to in order to create other users and grant roles?

Ans: ADMIN

4. Given the steps:

1. Create Oracle Machine Learning User

2. Create projects

3. Create workspaces

4. Create Notebooks

5. Run SQL Scripts

Which two steps are out of order when working with Oracle Machine learning?

Ans: Run SQL Scripts

Create workspaces

5. How many pre-defined service names are configured in tnsnames.ora for a single Autonomous Transaction Processing database instance, and what are they called?

Ans: Five. They are called tpurgent, tp, high, medium and low.

6. Your customer has upgraded their on premise 11.2 database to 12.2. During this migration the database was migrated to a pluggable database and is now in production.

How should the customer unplug their database to migrate to Autonomous Database (ADB)?

Ans: Pluggable databases cannot be migrated to ADB using plug, unplug or clone.

7. While Autonomous Transaction Processing and Autonomous Data Warehouse use the same Oracle database, which statement is true about the workloads?

Ans: Data that Is bulk loaded, by default, uses the row format in Autonomous Transaction Processing where Autonomous Data Warehouse data format Is columnar.

8. When you connect Oracle Analytics Cloud to the Autonomous Data Warehouse, what file needs to be uploaded?

Ans: CWALLET.SSO

9. Which statement is true in regards to database links?

Ans: Connect to Autonomous Database from remote database using a database link.

10. What are three methods to load data into the Autonomous Database?

Ans: Oracle Data Pump

Oracle GoldenGate

SQL*Loader

OCI Architect 2021 Associate (1Z0-1072-21) Certification (Practice Exam) Sample

Oracle Cloud Infrastructure (OCI) 2021 Architect Associate (1Z0-1072-21) Certification (Practice Exam)

Test: Practice Exam For - Oracle Cloud Infrastructure 2021 Architect Associate Certification

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

1. Which TWO statements are true about autoscaling?

Ans: An autoscaling configuration can include one or more autoscaling policies.

Each instance pool can have only one autoscaling configuration.

2. Which FOUR types of images can be used in Oracle Cloud Infrastructure?

Ans: Custom images created from existing images in OCI

Oracle-provided Linux images

Oracle-provided Windows images

Prebuilt application images from Oracle available in the OCI Marketplace

3. When you create a block volumne, what is its default performance level?

Ans: Balanced

4. Which autonomous database type is specialized for developing NoSQL-style applications that use JavaScript Object Notation documents?

Ans: Aunomous JSON Database

5. Which three security services provide infrastructure protection?

Ans: WAF

Securtiy lists

DdoS Protection

6. Which type of load balancer distributes traffic based on IP address and destination ports only?

Ans: Layer-4

7. Which two statements are true about cloning a file system?

Ans: All snapshots that exist in the parent file system are inherited by the clone, up to and including the snapshot that is used as the source of the clone.

File system properties such as compartment, tags, display name, keys, and mount target export information are not copied over from the parent.

8. Which two statements are true about local VCN peering?

Ans: The VCNs can be in different Oracle Cloud Infrastructure tenancies but in the same region.

You can use a single DRG for local peering.

9. Which Object Storage tier would you use for data that you need to access quickly, immediately, and frequently?

Ans: Standard tier

10. At which level are retention rules configured?

Ans: Bucket level

11. Your application or workload includes big data and analytics, media processing, or content management.

You require Portable Operating System Interface (POSIX)-compliant file system access semantics and concurrently accessible storage.

Which storage servce must you use?

Ans: File Storage

12. Compartment A is a child compartment of root.

Compartment B is a child compartment of Compartment A.

Compartment C is a child compartment of Compartment B.

You have attached the following policy to Compartment A:

Allow group NetworkAdmins to manage virtual-network-family in Compartment A.

For which compartments can a user of the NetwrokAdmin group manage VCNs?

Ans: Compartment A, Compartment B, and Compartment C only

13. Which two statements are true about application-based load balancers?

Ans: They perform content-based routing.

They support both HTTP and HTTPS.

14. You want a specific set of users, who do not have IAM user credentials, to access a bucket for a duration of 2 days.

Which mechanism can help you achive this?

Ans: Pre-authenticated requests

15. Examine this policy:

Allow group GroupMgr to manage volumes in tenancy where request.permission != 'VOLUME_DELETE'

Which three actions can a user belonging to the GroupMgr group perform?

Ans: Move volumes.

Create volumes.

Update volumes.

16. Which TWO connectivity options can you use to give your virtual cloud network (VCN) access to the Internet?

Ans: NAT gateway

Internet gateway

17. Which type of logs are emitted by API gateways, events, and Object Storage?

Ans: Service logs

18. Which three statements are true about compartments?

Ans: One compartment can have resources from multiple regions.

You can set a budget on a compartment such that you are notified as soon as the budget is exceeded.

Compartments can be nested.

19. Which two statements are true about boot volumes?

Ans: When you terminate the instance, you can preserve the boot volume and its data.

When you launch a virtual machine (VM) or bare metal instance based on a platform image or custom image, a new boot volume for the instance is created in the same compartment.

20. Which three other components are emitted along with raw data points or timestamp-value pairs as metrics to the Monitoring service?

Ans: Metadata

Namespace

Dimension

21. Which TWO statements are true about the OS Management service?

Ans: It allows you to specify a date and time when a managed instance will be updated.

If a managed instance is terminated, the OS Management service will automatically remove it from the managed instance list.

22. Which TWO statements are true about private IP objects?

Ans: A private IP can have a public IP assigned to it.

You can add a secondary private IP to either the primary VNIC or a secondary VNIC of an instance after it's launched.

23. Which three components are managed by the customer and not by Oracle in a shared security model of OCI?

Ans: Data

Accounts and identities

Application

24. Which TWO statements are true about site-to-site VPN?

Ans: It provides a site-to-site IPSec connection between your on-premises network and your virtual cloud network (VCN).

It encrypts IP traffic before the packets are transferred from the source to the destination and decrypts the traffic when it arrives.

25. For which TWO types of workloads must you use a bare metal compute instance?

Ans: Performance-sensitive workloads

Workloads that require a specific hypervisor

26. Which protocol is used by FastConnect?

Ans: BGP

27. What happens to traffic if there is no route rule that matches the network traffic you intend to route outside the VCN?

Ans: It is dropped.

28. What is the allowable VCN size range?

Ans: /16 through /30

29. Which gateway allows resources within a VCN to communicate with the Internet but prevents any inbound traffic?

Ans: NAT gateway

30. Database admins and app developers want to run OLTP and OLAP workloads directly from their MySQL database, thus eliminating the need for complex, time-consuming, and expensive data movement and integration with a separate analytics database? Which feature of MySQL database service enables this?

Ans: Heatwave

31. For maximum cost efficiency, when launching compute instances, which capacity type must you select for workloads that run periodically or for short periods of time and that don’t require continuous availability?

Ans: Pre-emptible capacity

32. You have two objects in a bucket: ObjectX and ObjectY. ObjectX was last modified 14 months ago and Object Y was last modified 3 months ago. You create a retention rule with a duration of 1 year. Which two statements are true?

Ans: Object Y cannot be modified or deleted for the next 9 months.

Object X can be modified or deleted immediately.

33. Which TWO conditions must be met for an instance to communicate directly with the Internet?

Ans: Instance must have a public IP address.

Instance's VCN must have an Internet gateway.

34. Which two statements are true about a block volume clone?

Ans: You can clone a volume group.

It creates a single point-in-time copy of a volume without having to go through the backup and restore process.

35. You have enabled versioning for a bucket. What happens when you upload an object with the same name as an existing object?

Ans : The existing object becomes a previous version and the newly uploaded object becomes the latest version.

36. Which two statements are true about NoSQL Cloud Service?

Ans: Throughput capacity is measured in write units and read units.

It interoperates with NoSQL Database Enterprise edition through a single programmatic interface with no application code modification.

37. Which Traffic Management Steering policy distributes DNS traffic to different endpoints based on the location of the end user?

Ans: Geolocation steering

38. What is used to specify the actions that Cloud Guard can take when detectors identify problems?

Ans: Responder

39. Which two statements are true about Object Storage?

Ans : It is a regional service and is not tied to any specific compute instance.

It supports private access from Oracle Cloud Infrastructure resources in a VCN through a service gateway.

40. Which Oracle Database edition is required to deploy a two-node Oracle RAC DB system?

Ans: Enterprise Edition - Extreme Performance

41. You want to forbid the creation of public buckets in Object Storage.

Which OCI security feature can you use to achieve this?

Ans: Security zone and security zone recipe

42. Examine these two policies:

Allow group GroupAdmins to manage groups in tenancy where all {target.group.name=/A-*/,target.group.name!='A-Admins'}

Allow group GroupAdmins to inspect groups in tenancy

Which statement is true?

Ans: GroupAdmins can create, update, or delete any groups whose names start with "A-", except for the A-Admins group.

43. At which layer of the OSI model does a web application firewall help to filter traffic?

Ans: Application layer

44. Which policy is automatically applied when you create a cloud account?

Ans: Allow Group Administrator to manage all-resources in tenancy

45. When you enable auto tiering, objects larger than 1 MiB are automatically moved from the Standard tier to which tier?

Ans: Infrequent Access tier

46. When changing the performance level of boot volumes, which two performance levels can you select?

Ans: High performance

Balanced

47. You want users of the NetworkAdmin group to manage a cloud network in any compartment of a tenancy. What must you allow the NetworkAdmin group to do?

Ans: Manage virtual-network-family in tenancy.

48. When triggered, an alarm sends an alarm message to the configured topic. In which service is the topic configured?

Ans: Notification

49. Which three encryption algorithms are supported by OCI Vault?

Ans: AES

RSA

ECDSA

50. Which Oracle-defined backup policy includes weekly incremental backups that run on Sunday, also includes a full backup that runs yearly during the first part of January, and is retained for five years?

Ans: Silver policy

51. Which four layers of access control are used by the File Storage service?

Ans: NFS export option

Network security

NFS v.3 Unix security

Oracle Cloud Infrastructure (OCI) policy

52. Which block volume performance level is recommended for throughput-intensive workloads with large sequential I/O, such as streaming,

log processing, and data warehouses?

Ans: Lower cost

53. Which co-managed database service applies the combined power of Exadata and Oracle Cloud Infrastructure while enabling you to meet your organization's data-residency requirements?

Ans: Exadata Cloud@Customer

54. An instance running in a development compartment needs to make API calls to other OCI services. How can you achieve this without configuring user credentials or setting up a configuration file?

Ans: Create a dynamic group with matching rules to include your instance and write a policy for this dynamic group.

55. You want to make a point-in-time snapshot of the data on a block volume. Under which condition can you make a block volume backup?

Ans: When it is attached to an instance or while it is detached

56. Which OCI networking method must you use to divide your network into multiple VCNs based on departments, with each VCN having direct, private access to the others while avoiding traffic flowing over the Internet or through your on-premises network?

Ans: VCN peering

57. Which cloud solution in Oracle Cloud Infrastructure lets you index, enrich, aggregate, explore, search, analyze, correlate, visualize, and monitor all log data from your applications and system infrastructure?

Ans: Logging analytics

58. Which TWO statements are true about security lists?

Ans: The default security list allows TCP traffic on destination port 22 (SSH) from authorized source IP addresses and any source port.

The default security list does not include a rule to allow ping requests.

59. Which two statements are true about auth tokens?

Ans: Every user can generate up to two auth tokens.

They can be used to authenticate third-party APIs.

60. Which three statements are true about a master encryption security key protected by software?

Ans: Cryptographic operations are allowed on clients.

It can be exported from a server.

It is stored in a server.

61. Which OCI security feature can you use to ensure that unwanted bots are mitigated while desirable bots are allowed to enter?

Ans: Web application firewall

62. Which network security service allows you to separate the VCN's subnet architecture from your application security requirements?

Ans: Network security group