1z0-1072-20 Dumps Collection 58Q 1 de 3

Which two identity providers can your administrator federate with Oracle Cloud Infrastructure? (Choose two.). Microsoft Active Directory. Oracle Identity Cloud Services. AWS Directory Services. Google Directory Federation Services.

Which two parameters are required in a back end set’s HTTP health check? (Choose two.). response body. URL path. timeout. port. status code.

You have successfully configured identity federation between Oracle Cloud Infrastructure (OCI) and Oracle Identity Cloud Services (IDCS). A new project manager wants access to OCI for her team and provides the name of an existing group within IDCS to use when granting access. How do you configure federation to allow the project team access to OCI resources?. Create a new IAM group in OCI and map it to the existing IDCS group. Create a new policy in IDCS and reference the name of the IAM group. Create a new Identity and Access Management (IAM) policy in OCI and reference the name of the IDCS group in each policy statement. Create a new compartment in OCI with the same name as the existing IDCS group. Create an IAM policy that references the new compartment and the name of the IDCS group. Create a new IAM group in OCI and map it to the existing IDCS group. Create a new IAM policy and reference the name of the IAM group in each policy statement.

Which two are required to create an IPSec VPN connection? (Choose two.). security list. static route CIDR. name. compute instance.

Which two statements about file storage service (FSS) are accurate? (Choose two.). FSS leverages UNIX user group and permission checking for file access security. Encryption of file system in FSS is optional. Identity and Access Management (IAM) controls which file systems are mountable by which instances. Security lists can be used as a virtual firewall to prevent an instance from mounting an FSS mount target within the same subnet. Data in transit to an FSS mount target is encrypted.

Where are DB Systems backups stored by default?. ASM disk group. locally attached NVMe on virtual machine. block volume. object storage on Oracle Cloud Infrastructure.

You have been notified of an application failure indicating that one or more of the Oracle Cloud Infrastructure (OCI) resources have become unavailable. After scanning the Compute and Database consoles, you notice that one of the DB Systems is missing. What would you do to identify the reason for this missing resource?. Navigate to the Audit console and search the previous 24 hours for all Delete actions to get a list of any resource that was deleted in the past 24 hours. Create a serial console connection to the DB System that does not appear in the management console. Connect to the serial console connection, and then review the system logs under /var/log/messages. View the service limits associated with your account to ensure that you have not exceeded the available number of DB system in your tenancy. Navigate to the Audit console and search the previous 24 hours for all List actions to get a list of every event that occurred in the past 24 hours.

An instance is launched with a primary VNIC that is created during instance launch. Which two operations are true when you add secondary VNICs to an existing instance? (Choose two.). You can remove the primary VNIC after the secondary VNIC’s attachment is complete. You can remove the secondary VNIC later if it is not needed. The primary and secondary VNIC association should be within the same Availability Domain. It is not possible to connect two VNICs to an instance.

Which two choices are true for Autonomous Data Warehouse (ADW)? (Choose two.). Billing stops only when the ADW is terminated. Billing stops for both CPU usage and storage usage when ADW is stopped. Billing for compute stops when ADW is stopped. Billing for storage continues when ADW is stopped.

Which two statements are true about Database Cloud Service (DBCS)? (Choose two.). Data Guard as a Service is offered among regions. You have full control over backup schedule and retention. You can manage Oracle parameters at a global system level. You cannot manage the database as sys/sysdba.

What is a valid option when exporting a custom image?. object storage URL. archive storage URL. file storage service. block volume.

You have a shared file system between two web servers using File Storage Service (FSS) and you were tasked to create a backup plan for this environment to protect the data placed into the shared file system. What is the recommended approach to create this backup using FSS features?. Implement a backup policy to execute a snapshot of the shared volume. Implement a backup policy to copy data from the shared volume to object storage. Compress the data that is in the shared volume and copy it into a different folder on the boot volume disk. Use the rsync tool to send data from the shared volume to a boot volume disk. Use the rsync tool to send data from the shared volume to a block volume.

Which storage service is used on OCI for a Data Transfer Service job?. An instance with enough storage to accommodate the job. An object bucket. A File System service instance. Block Volume.

You are about to upload log file (5 TiB size) to Oracle Cloud Infrastructure object storage and have decided to use multipart upload capability for a more efficient and resilient upload. Which two statements are true about multipart upload? (Choose two.). Individual object parts can be as small as 10 MiB or as large as 50 GiB. While a multipart upload is still active, you cannot add parts even if the total number of parts is less than 10,000. The maximum size for an uploaded object is 10 TiB. You do not have to commit the upload after you have uploaded all the object parts.

Your application front end consists of several Oracle Cloud Infrastructure compute instances behind a load balancer. You have configured the load balancer to perform health checks on these instances. If an instance fails to pass the configured health checks, what will happen?. The instance is replaced automatically by the load balancer. The instance is terminated automatically by the load balancer. The instance is taken out of the back end set by the load balancer. The load balancer stops sending traffic to that instance.

You deployed a web server in Oracle Cloud Infrastructure using an ephemeral public IP. After a few changes in your web server configuration, you rebooted the server and a new public IP was associated to your instance. What should you do to prevent this from happening again?. Create a reserved public IP and associate it with the security list that your complete instance is using. Create a reserved public IP and associate it with the subnet of your compute instance. Create a reserved public IP and associate it with the VNIC of your compute instance. Create a reserved public IP and associate it with the hosts file of your web server.

What is the default backup location for database backup on Database Cloud Service (DBCS)?. Object Storage on Oracle Cloud Infrastructure. ASM diskgroup. block volume. locally attached NVMe on Virtual Machine.

Your company is developing a new database application in Oracle Cloud Infrastructure. You need to test application functionality including a hardware failure scenario. Since the application is still in the development phase, you want to minimize infrastructure costs. Which database service deployment option meets this requirement?. two node real application cluster (RAC) system. Autonomous Data Warehouse (ADW) system as it provides auto fail over functionality. two node bare metal system with data guard enabled. single node bare metal system.

You are designing a lab exercise for your team that has a large number of graphics with large file sizes. The application becomes unresponsive if the graphics are embedded in the application. You have uploaded the graphics to Oracle Cloud Infrastructure and only added the URL in the application. You need to ensure these graphics are accessible without requiring any authentication for an extended period of time. How can you achieve these requirements?. Create pre-authenticated requests (PAR) and specify 00:00:0000 as the expiration time. Make the object storage bucket private and all objects public and use the URL found in the Object “Details”. Make the object storage bucket public and use the URL found in the Object “Details”. Create PARs and do not specify an expiration date.

You are asked to create a user that will access programmatic endpoints in Oracle Cloud Infrastructure. The user must not be allowed to authenticate by username and password. Which two authentication options can you use? (Choose two.). PEM Certificate file. Auth tokens. API signing key. Windows password. SSH key pair.

Which two statements define the types of DNS resolvers that exist? (Choose two.). A custom resolver allows instances to use the host names of the hosts in your on-prem network that are connected to your VCN by an IPSec VPN connection. A VCN resolver allows instances to use the host names of the hosts in your on-prem network that are connected to your VCN by an IPSec VPN connection. A VCN resolver allows instances to use host names to communicate with instances on other VCNs in your tenancy. An Internet resolver allows instances to use the host names that are published on the Internet.

You are implementing Oracle Cloud Infrastructure (OCI) FastConnect to access OCI public access points (e.g. – object storage). You want other Internet traffic from your on-premises environment to use your existing connection with your ISP. What is the correct way to establish OCI FastConnect to access these OCI public endpoints?. Configure private peering on your FastConnect link. Redistribute BGP routes learned into your existing routing table and advertise a default from your network infrastructure to OCI. Configure private peering on your FastConnect link with a static route that points to OCI object storage service. Configure public peering on your FastConnect link with a static route that points to OCI object storage service. Configure public peering on your FastConnect link. Redistribute BGP routes learned into your existing routing table and advertise a specific route for your network infrastructure to OCI.

Why are two subnets required to create a public load balancer when additional subnets are often used for back-end servers? (Choose two.). Routing is simpler when the load balancer is not in the same subnet as the back-end server. Performance is higher when more subnets are used. Additional subnets for back-end servers allow for separate route tables for these servers. Additional subnets for back-end servers allow for separate security lists for these servers.

Your organization has deployed a large, complex application across multiple compute instances in Oracle Cloud Infrastructure (OCI). These compute instances also have block volume storage attached to them. You want to create a time consistent backup of these block volume storage. Which implementation strategy should be used?. Create a manual backup of each volume. Use scripts available in OCI to backup block volume storage. Group volumes in a volume group first and then use available scripts in OCI. Group volumes in a volume group and create a manual backup of the volume group.

Which certificate format is used with the load balancer?. PFX. PEM. PKCS12. CRT.

Which two statements are true about an Oracle Cloud Infrastructure object storage bucket? (Choose two.). You can associate a bucket with multiple compartments. You cannot change a bucket from private to public after it is created. You can associate a bucket with only a single compartment. You cannot edit or append data to an object, but you can replace the entire object.

Which DNS resource record type is used to point a host name to an IPv4 address?. ALIAS. A. CNAME. AAAA.

Your on-premises hosted application uses Oracle database server. Your database administrator must have access to the database server for managing the application. Your database server is sized for seasonal peak workloads, which results in high licensing costs. You want to move your application to Oracle Cloud Infrastructure (OCI) to take advantage of CPU scaling options. Which database offering on OCI would you select?. bare metal DB systems. VM DB systems. Autonomous Transactions Processing (ATP). Autonomous Data Warehouse (ADW).

Your company has decided to move a few applications to Oracle Cloud and you have been asked to design it for both High Availability (HA) and Disaster Recovery (DR). Which two should you consider while designing your Oracle Cloud Infrastructure architecture? (Choose two.). Region. Instance Shape. Compartments. Availability Domain.

What is the maximum IP address size range that you can have in a Virtual Cloud Network?. /16. /26. /24. /8.

Which two resources are availability domain constructs? (Choose two.). VCN. Groups. Block Volume. Compute Instance. Object Storage.

Which two statements are true about data guard service on DB Systems in Oracle Cloud Infrastructure (OCI)?. Data guard implementation requires two DB Systems, one running the primary database on a virtual machine and the standby database running on bare metal. Data guard implementation requires two DB Systems, one containing the primary database and one containing the standby database. Data guard configuration on the OCI is limited to a virtual machine only. Both DB Systems must use the same VCN, and port 1521 must be open.

Which two configuration formats does Terraform support? (Choose two.). YAML. JSON. HCL. XML.

A customer has launched a compute Instance in the Virtual Cloud Network (VCN), which has an Internet gateway, a service gateway, a default security lists and a default route table. Customer has opened up Port 22 in the security lists attached to the compute instance subnet, however is still unable to connect to compute instances using ssh. Which option would remedy this situation?. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Internet Gateway (IGW). Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful egress rule to allow icmp traffic in addition to the port 22. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Dynamic Routing Gateway (DRG). Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Service Gateway (SGW).

Which two statements are true about subnets within a VCN? (Choose two.). You can have multiple subnets in an Availability Domain for a given VCN. Private and Public subnets cannot reside in the same Availability Domain for a given VCN. Subnets can have their IP addresses overlap with other subnets in another network for a given VCN. Instances obtain their private IP and the associated security list from their subnets.

Which statement is true about cloning a volume?. You can clone a volume in another region. You need to detach a volume before cloning it. A cloned volume is the same as a snapshot that has a dependency on the source volume. You can change the block volume size when cloning a volume.

Which statement is true about cloning a volume?. You need to detach a volume before cloning from it. A cloned volume is the same as a snapshot that has a dependency on the source volume. You cannot change the block volume size when cloning a volume. You can create a clone for a volume across regions.

When creating a subnet, one or more placeholder security lists are often associated with the subnet. Why?. Each operator needs its own security list. Each protocol needs its own security list. Each network endpoint or instance in the subnet needs its own security list. It is not possible to add or remove security lists after a subnet is created.

Which deployment architecture is offered when you deploy the Platform Service Manager based Database Cloud Service (DBCS) onto Oracle Cloud Infrastructure?. Two node Primary RAC database leveraging ACFS for the shared file system. Single Instance database with a Single Instance Data Guard in Maximum Performance mode. Single Instance database with a Single Instance Data Guard in Maximum Protection mode. Two node Primary RAC database with a two node RAC Data Guard Standby in Maximum Performance mode.

You have an application deployed in Oracle Cloud Infrastructure running only in the Phoenix region. You were asked to create a disaster recovery (DR) plan that will protect against the loss of critical data. The DR site must be at least 500 miles from your primary site and data transfer between the two sites must not traverse the public Internet. Which is the recommended disaster recovery plan?. Create a new virtual cloud network (VCN) in the Phoenix region and create a subnet in one availability domain (AD) that is not currently being used by your production systems. Establish VCN peering between the production and DR sites. Create a DR environment in Ashburn. Associate a DRG with the VCN in each region and create a remote peering connection between the two VCNs. Create a DR environment in Ashburn and provision a FastConnect virtual circuit using DRG between the regions. Create a DR environment in Ashburn. Associate a dynamic routing gateway (DRG) with the VCN in each region and configure an IPsec VPN connection between the two regions.

You are in the process of setting up a highly available student registration website on Oracle Cloud Infrastructure (OCI). You use a load balancer and a database service on OCI. You launch two compute instances each in a different subnet and add them to the back end set of a public load balancer. The load balancer is configured correctly and working. You then deploy the student registration application on these two compute instances. The application can communicate with the database service. However, when you type the URL of this student registration application in your browser, no web page appears. What could be the cause?. The security lists of the subnets on which the two instances are located do not have “allow” rules for port 80 and 443. The load balancer performed a health check on the application and found that compute instances were not in a healthy state and terminated the instances. The client requested https access to the application and the load balancer service does not support end-to-end SSL from the client to the listener to the back-end set. The Dynamic Routing Gateway is preventing the client traffic from your data center network from reaching the public IP of the load balancer.

You have one database-style application that frequently makes many random reads and writes across the dataset. Which storage offering supports this application?. Object Storage Service. Archive Storage Service. File Storage Service. Block Storage Service.

A customer wants to do development on premise while leveraging services such as Java Cloud, Mobile Developer Cloud, and App Builder Services. The customer would also like to scale out the application, stretching from on-premises to the cloud by using a common API. Which two Infrastructure options can the customer leverage to do this? (Choose two.). Oracle Cloud at Customer. Oracle Cloud Infrastructure Classic. Oracle Cloud Ravello service. Oracle Cloud Infrastructure.

A company currently uses Microsoft Active Directory as its identity provider. The company recently subscribed to Oracle Cloud Infrastructure (OCI) to leverage the cloud platform for test and development. As the administrator, you configured the OCI tenancy to be federated with Microsoft Active Directory. Now you need to give access to developers so that they can start creating resources in their OCI accounts. Which step will you perform to make sure you are not duplicating user creation inside of OCI tenancy?. Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process. Create a new user account in OCI for each user, and then create policies to provide access to developers. Create a group for developers on OCI, export all the developers from Microsoft Active Directory, and then import them into the Identity and Access Management (IAM) group. Create a single user account in OCI, and then create policies to provide access to developers to this single account.

What happens when you run terraform plan?. It configures, reconfigures, and instantiates resources and their dependencies. It shows the operator the course of action that would be taken if a change is applied. It deletes all existing resources and re-creates them. It shows a dependency graph.

Which two statements are true about restoring a block volume from a manual or policy-based block volume backup? (Choose two.). It can be restored as new volumes with different sizes from the backups. It can be restored as a new volume to any AD across different regions. It must be restored as a new volume to the same availability domain (AD) on which the original block volume backup resides. It can be restored as a new volume to any AD in the same region.

You are deploying a highly available web application In Oracle Cloud Infrastructure and have decided to use a public load balancer. The back-end web servers will be distributed across all three availability domains (ADs). How many subnets should you create to deliver a secure, highly available application?. two subnets in total; one regional private subnet to host your back-end web servers and one regional public subnet to host your public load load balancer. two subnets in total; one regional public subnet to host your back-end web servers and one regional private subnet to host your public load load balancer. three subnets in total; one regional public subnet to host your back-end web servers and two AD specific private subnets to host your private load load balancer. one subnet in total; one regional private subnet to host your back-end web servers and your public load balancer.

You create a public Load Balancer instance and configure a back end set “BES1” with one back end server running a service on port 80. You also create a listener on port 80 and configure that listener to use the back end set “BES1”. A client makes one HTTP request to the Load Balancer with the correct protocol and port. How many connections does the Load Balancer maintain?. 1. 2. 4. 3.

You are an administrator with an application running on OCI. The company has a fleet of OCI compute virtual instances behind an OCI Load Balancer. The OCI Load Balancer Backend Set health check API is providing a ‘Critical’ level warning. You have confirmed that your application is running healthy on the backend servers. What is the possible reason for this ‘Critical’ warning?. A user does not have correct IAM credentials on the Backend Servers. The Backend Server VCN’s Route Table does not include the route for OCI LB. OCI Load Balancer Listener is not configured correctly. The Backend Server VCN’s Security List does not include the IP range for the source of the health check requests.

Which three are capabilities of the dbaascli utility? (Choose three.). Patching the primary database deployment. Open port 1521 in the VCN to allow for traffic to the listener. Start and open the database instance. Switchover and failover in an Oracle Guard configuration. Clone a DB.

Which statement is true about Oracle Cloud Infrastructure Object Storage Service?. An Archive Object Storage tier bucket can be upgraded to the Standard Object Storage tier. You cannot directly download an object from an Archive Object Storage bucket. An existing Standard Object Storage tier bucket can be downgraded to the Archive Object Storage tier. Data retrieval in Archive Object Storage is instantaneous.

How can you provide users access to an existing compartment?. by granting users access to a compartment when the compartment is created. by adding users to a group and defining a policy to provide the group access to the compartment. by adding users to a compartment. All users in the compartment will have access to the objects in the compartment. by granting access directly to the user when the user is created.

You are designing a networking infrastructure in multiple Oracle Cloud Infrastructure regions and require connectivity between workloads in each region. You have created a dynamic routing gateway (DRG) and a remote peering connection. However, your workloads are unable to communicate with each other. What are two reasons for this? (Choose two.). The security lists associated with subnets in each virtual cloud network (VCN) do not have the appropriate ingress rules. Identity and Access Management (IAM) policies have not been defined to allow connectivity across the two VCNs in different regions. A local peering gateway needs to be created in each VCN with a default route rule added in the route table forwarding the traffic to the local peering gateway. An Internet gateway needs to be created in each VCN with a default route rule added in the route table forwarding the traffic to the Internet Gateway. The route table associated with subnets in each VCN do not have a route rule defined to forward the traffic to their respective DRGs.

Which two are valid options when migrating a database from on-premise to Oracle Cloud Infrastructure? (Choose two.). snapping or cloning storage form on-premise to Oracle Cloud Infrastructure. performing a backup to Oracle Cloud Infrastructure Object Storage, and then restoring to a database server on Oracle Cloud Infrastructure. performing RMAN backup to an on-premise storage device, and then shipping to Oracle Cloud Infrastructure. converting the Oracle database to a NoSQL database and migrating to Oracle Cloud Infrastructure by using rsync file copy.

You are deploying a highly available web application in Oracle Cloud Infrastructure and have decided to use a public load balancer. The back-end web servers will be distributed across all three availability domains (ADs). How many subnets should you create to deliver a secure highly available application?. three subnets in total; one subnet in each AD. five subnets in total; two subnets each in the first and second AD with a single subnet in the third AD. six subnets in total; two subnets in each AD; one for the load balancer and one for the web servers. four subnets in total; one subnet in each AD for the web servers and a single subnet in any one AD for the load balancer.

You deployed a compute instance (VM.Standard2.16) to run a SQL database. After a few weeks, you need to increase disk performance by using NVMe disks; the number of CPUs will not change. As a first step you terminate the instance and preserve the boot volume. What is the next step?. Create a new instance using a VM.DenseIO2.16 shape using the preserved boot volume and move the SQL Database data to block volume. Create a new instance using a VM.DenseIO2.8 shape using the preserved boot volume and move the SQL Database data to NVMe disks. Create a new instance using a VM.Standard1.16 shape using the preserved boot volume and move the SQL Database data to NVMe disks. Create a new instance using a VM.DenseIO2.16 shape using the preserved boot volume move the SQL Database data to NVMe disks.

You want an instance in your compartment to make API calls to other services within Oracle Cloud Infrastructure without storing credentials in a configuration file. What do you need to do?. No action is required. By default, all VM instances are created with an Instance Principal. Instances cannot access services outside their compartment. VM instances are treated as users. Create a user and assign the user to that VM instance. Create appropriate matching rules in the Dynamic Group to create an Instance Principal.

Which two resources reside exclusively in a single availability domain? (Choose two.). compute instance. block volume. object storage. groups. virtual cloud network.