This page was exported from Latest Exam Prep [ http://certify.vceprep.com ] Export date:Sat Dec 14 11:05:49 2024 / +0000 GMT ___________________________________________________ Title: 2022 VCEPrep Oracle 1z0-1067-22 Dumps and Exam Test Engine [Q15-Q35] --------------------------------------------------- 2022 VCEPrep Oracle 1z0-1067-22 Dumps and Exam Test Engine Oracle 1z0-1067-22 DUMPS WITH REAL EXAM QUESTIONS Oracle 1z0-1067-22 Exam Syllabus Topics: TopicDetailsTopic 1Implement hybrid network environments Security and ComplianceTopic 2Use Object Storage Lifecycle policies for tiered data storage Use the OCI CLI to simplify repetitive tasksTopic 3Implement automated notifications Designing for cloud-scale agility Describe and Configure OCI VaultTopic 4Configure Data Guard, Security Zone and Security Advisor (Missing in ILP) Configuration management tools to control infrastructureTopic 5Explain Troubleshooting resource availability and accessibility Configure Vulnerability Scanning and Web Application FirewallTopic 6Utilize edge services for automated failoverrecovery Create secure access control policiesTopic 7Implement compartment quotas, budgets and billing alerts Understand Metric Query Language (MQL) (Missing in ILP)   Q15. You have created a group for several auditors. You assign the following policies tothe group:What actions are the auditors allowed to perform within your tenancy? (Choose the best answer.)  The Auditors can view resources in the tenancy.  Auditors are able to create new instances in the tenancy.  The Auditors are able to delete resource in the tenancy.  Auditors are able to view all resources in the compartment. Explanationhttps://docs.oracle.com/en-us/iaas/Content/Identity/Concepts/policies.htm#VerbsQ16. You have been monitoring your company’s applications running in Oracle Cloud Infrastructure (OCI) and notice that the application is using OCI Traffic Management service. This service uses a traffic steering policy to distribute the DNS traffic based on subnet addresses in a rule set.Which steering policy is in use in this particular case? (Choose the best answer.)  Load Balancing policy  Geolocation steering  ASN steering policy  IP Prefix steering ExplanationIP Prefix steering policies enable customers to steer DNS traffic based on the IP Prefix of the originating query.Q17. Which statement about Oracle Cloud Infrastructure paravirtualized block volume attachments is TRUE?(Choose the best answer.)  Paravirtualized volumes may reduce the maximum IOPS performance for larger block volumes.  Paravirtualized is required to manage iSCSI configuration for virtual machine instances.  Paravirtualized volumes become immediately available on bare metal compute instances.  Paravirtualization utilizes the internal storage stack of compute instance OS and network hardware virtualization to access block volumes. Explanationhttps://docs.oracle.com/en-us/iaas/Content/Block/Concepts/overview.htm#ParavirtualizedQ18. Your team implemented a SaaS application that requires a whole system deployment for each new customer.The infrastructure provisioning is already automated via Terraform, and now you have been asked to develop an Ansible playbook to centralize configuration file management and deployment.What is the most effective way to ensure your playbooks are utilizing up-to-date and accurate inventory?(Choose the best answer.)  Export an inventory list from the Oracle Cloud Infrastructure Web console.  Export an inventory list using Terraform apply command.  Implement a Command Line Interface script to list all the resources and run it within Ansible to generate a dynamic inventory list.  Download the dynamic inventory script provided by Oracle Cloud Infrastructure and include it in the playbook invocation command. Explanationhttps://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/ansibleinventoryscript.htmQ19. You run a large global application with 90% of customers based in the US and Canada. You want to be able to test a new feature and allow a small percentage of users to access the new version of your application.What Oracle Cloud Infrastructure Traffic Management steering policy should you utilize? (Choose the best answer.)  Load Balancer  IP Prefix steering  ASN steering  Geolocation steering Explanationhttps://docs.oracle.com/en-us/iaas/Content/TrafficManagement/Tasks/trafficmanagement.htmQ20. One of your development teams has asked for your help to standardize the creation of several compute instances that must be provisioned each day of the week. You initially write several Command Line Interface (CLI) commands with all appropriate configuration parametersto achieve this task later determining this method lacks flexibility.Which command generates a JSON-based template that Oracle Cloud Infrastructure (OCI) CLI can use to provision these instances on a regular basis? (Choose the best answer.)  oci compute instance create – -generate-cli-skeleton  oci compute instance launch – -generate-cli-skeleton  oci compute provision-instance – -generate-full-command-json-input  oci compute instance launch – -generate-full-command-json-input Explanationhttps://docs.oracle.com/en-us/iaas/tools/oci-cli/3.0.5/oci_cli_docs/oci.html#cmdoption-generate-full-command-jsQ21. You are working with Terraform on your laptop and have been tasked with spinning up multiple compute instances in Oracle Cloud Infrastructure (OCI) for a project. In addition, you are also required tocollect IP addresses of provisioned instances and write them to a file and save it in your laptop.Which specific Terraform functionality can help accomplish this task? (Choose the best answer.)  Terraform modules  Terraform remote state  Terraform local-exec  Terraform remote-exec Explanationhttps://www.terraform.io/docs/language/resources/provisioners/remote-exec.htmlQ22. You have a web application running on Oracle Cloud Infrastructure (OCI) that lets users log in with a username and password. You notice that an attacker has tried to use SQL comment “–” to alter the database query, remove the password check and log in as a user. You decide to prevent any future attacks.Which of the following OCI services or features would you choose tosafeguard your application? (Choose the best answer.)  Network Security Group  Data Safe  Web Application Framework (WAF)  Vault ExplanationWAF provides you with the ability to create and manage rules for internet threats including Cross-SiteScripting (XSS), SQL Injection and other OWASP-defined vulnerabilities.Q23. You set up a bastion host in your VCN to only allow your IP address (140.19.2.140) to establish SSH connections to your Compute Instances that are deployed in a private subnet. The Compute Instances have an attached Network Security Group with a Source Type: Network Security Group (NSG), Source NSG:NSG-050504. To secure the bastion host, you added the following ingress rules to its Network Security Group:However, after checking the bastion host logs, you discovered that there areIP addresses other than your own that can access your bastion host.What is the root cause of this issue? (Choose the best answer.)  The Security List allows access to all IP address which overrides the Network Security Group ingress rules.  Allcompute instances associated with NSG-050504 are also able to connect to the bastion host.  The port 22 provides unrestricted access to 140.19.2.140 and to other IP address.  A netmask of /32 allows all IP address in the 140.19.2.0 network, other thanyour IP 140.19.2.140 Q24. Your customer is running a set of compute instances inside a private subnet to manage their workloads on Oracle Cloud Infrastructure(OCI) tenancy. You have set up auto scaling feature to provide consistent performance to their end users during period of high demand.Which step should be met for auto scaling to work? (Choose the best answer.)  OS Management Service agent (osms) mustbe installed on the instances.  Audit logs for the instances should be enabled.  Service gateway should be setup to allow instances to send metrics to monitoring service.  Monitoring for the instances should not be enabled. Explanationhttps://docs.oracle.com/en-us/iaas/Content/Compute/Tasks/enablingmonitoring.htm#Enabling_Monitoring_for_C Service gateways or public IP addresses: The compute instance must have either a public IP address or a service gateway to be able to send compute instance metrics to the Monitoring service.For metric-based autoscaling, monitoring is enabled on the instances in the instance pool, and the Monitoring service is receiving metrics that are emitted by the instance. When you initially create an instance pool using instances that support monitoring, monitoring is enabled by default, regardless of the settingsin the pool’s instance configuration.Q25. Recently, your e-commerce web application has been receiving significantly more traffic than usual. Users are reporting they often encounter a 503 Service Error when trying to access your site. Sometimes the site is very slow.You check your instance pool configuration to confirm that the maximum number of instances is configured to allow 20 compute instances. Currently, 14 compute instances have been provisioned by the instance pool.You also confirm that current CPU utilization across all hosts exceeds the scale-out threshold you set in your auto-scaling policy. However, the instance pool is not provisioning any newinstances.What can you check to determine why the application is NOT functioning properly? (Choose the best answer.)  Verify that the new offer feature code did not introduce any performance bugs.  Verify that the database is accessible.  Verifythat the compute resource quota has not been exceeded.  Verify that the Quality Assurance team is not currently performing load-testing against production. Q26. You are asked to deploy a new application that has been designed to scale horizontally. The business stakeholders have asked that theapplication be deployed in us-phoenix-1.Normal usage requires 2 OCPUs. You expect to have few spikes during the week, that will require up to 4 OCPUs, and a major usage uptick at the end of each month that will require 8 OCPUs.What is the most cost-effective approach to implement a highly available and scalable solution? (Choose the best answer.)  Create an instance pool with a VM.Standard2.2 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances, to handle the weekly spikes, and a maximum of 4 instances.  Create an instance with 1 OCPU shape. Use the Resize Instance action to scale up to a larger shape when more resources are needed.  Create an instance with 1 OCPU shape.Use a CLI script to clone it when more resources are needed.  Create an instance pool with a VM.Standard2.1 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances and a maximum of 8 instances. Explanationhttps://docs.oracle.com/en-us/iaas/Content/Compute/References/computeshapes.htm#baremetalshapes__bm-stanQ27. You have received an email from your manager to provision new resources on Oracle Cloud Infrastructure (OCI). When researching OCI, you determined that you should use OCI Resource Manager. Since this is a task that will be done multiple times for development, test, and production. You will need to create a command that can be re-used.Which CLI command can be used in this situation? (Choose the best answer.)  oci resource-manager stack create –tenancy-id <tenancy_OCID> –config-source prod.zip –variables file://variables.json –display-name Production stack build –description Creating new Production environment  oci resource-manager stack update –compartment-id <compartment_OCID> –config-source prod.zip –variables file://variables.json –display-name “Production stack build” –description Creating new Production environment  oci resource-manager stack create –compartment-id <compartment_OCID> –config-source prod.zip –variables file://variables.json –display-name Production stack build –description Creating new Production environment  oci resource-manager stack update –tenancy-id <tenancy_OCID> –config-source prod.zip –variables file://variables.json –display-name “Production stack build” –description Creating new Production environment Explanationhttps://docs.oracle.com/en-us/iaas/tools/oci-cli/3.0.2/oci_cli_docs/cmdref/resource-manager/stack/create.htmlQ28. You have been asked to update the lifecycle policy for object storage using the Oracle Cloud Infrastructure (OCI) Command Line Interface (CLI).Which command can successfully update the policy? (Choose the bestanswer.)  oci os object-lifecycle-policy delete -ns <object_storage_namespace> -bn <bucket_name>  oci os object-lifecycle-policy put -ns <object_storage_namespace> -bn <bucket_name>  oci os object-lifecycle-policy put -ns <object_storage_namespace> -bn <bucket_name> – -items<json_formatted_lifecycle_policy>  oci os object-lifecycle-policy get -ns <object_storage_namespace> -bn <bucket_name> Explanationhttps://docs.oracle.com/en-us/iaas/Content/Object/Tasks/usinglifecyclepolicies.htm#clihttps://docs.oracle.com/en-us/iaas/tools/oci-cli/2.17.0/oci_cli_docs/cmdref/os/object-lifecycle-policy/put.htmlQ29. You are asked to implement the disaster recovery (DR) and business continuity requirements for Oracle Cloud Infrastructure (OCI) Block Volumes. Two OCI regions being used: a primary/source region and a DR/destination region. The requirements are:* There should be a copy of data in the destination region to use if a region-wide disaster occurs in the source region* Minimize costsWhich design will help you meet these requirements? (Choose the best answer.)  Clone block volumes. Use Object Storage lifecycle management to automatically move clone objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.  Clone block volumes. Copy block volume clonesfrom source region to destination region at regular intervals.  Back up block volumes. Copy block volume backups from source region to destination region at regular intervals.  Back up block volumes. Use Object Storage lifecycle management to automatically move backup objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals. Explanationhttps://docs.oracle.com/en-us/iaas/Content/Block/Tasks/copyingvolumebackupcrossregion.htmQ30. You havecreated a geolocation steering policy in the Oracle Cloud Infrastructure (OCI) Traffic Management service, with this configuration:What happens to requests that originate in Africa? (Choose the best answer.)  The traffic will be forwarded at the same time to both Pool 1 and Pool 2.  The traffic will be dropped.  The traffic will be forwarded randomly to any of the pools mentioned in the rules.  The traffic will be forwarded to Pool 1. If Pool 1 is not available, then it will be forwarded toPool 2. ExplanationThis policy currently has no global catch-all. No global catch-all means that queries not matching any of the above rules will receive a random answer. Global Catche-all need to set up if the traffic does not meet any condition in the pool and you still want to serve the request. Default is serve randomly.https://www.oracle.com/a/ocom/docs/cloud/traffic-management-100.pdfQ31. You have a group pf developers who launch multiple VM.Standard2.2 compute instances every day into the compartment Dev. As a result, your OCI tenancyquickly hit the service limit for this shape. Other groups can no longer create new instances using VM.Standard2.2 shape.Because of this, your company has issued a new mandate that the Dev compartment must include a quota to allow for use of only 20 VM.Standard2.2 shapes per Availability Domain. Your solution should not affect any other compartment in the tenancy.Which quota statement should be used to implement this new requirement? (Choose the best answer.)  set compute quota vm-standard2-2count to10 in compartment dev where request.region = us-phoenix-1  set compute quota vm-standard2-2-count to 20 in compartment dev  zero compute quotas in tenancy set compute quota vm-standard2-2-count to 20 in compartment dev  zero compute quotas in tenancy set compute quota vm-standard2-2-count to 20 in tenancy dev Explanationhttps://docs.oracle.com/en-us/iaas/Content/General/Concepts/resourcequotas.htm#twoQ32. Your company hasrestructured its HR departments. As part of this change, you also need to re-organize compartments within Oracle Cloud Infrastructure (OCI) to align them to the company’s new organizational structure. The following change is required:Compartment Team_xneeds to be moved under a new parent compartment, Project_B The tenancy has the following policies defined for compartments Project_A and Project_B: Policy1: Allow group G1 to manage instance-family in compartment HR:Project_A Policy2: Allow group G2 tomanage instance-family in compartment HR:Project_B Which two statements describe the impacts after the compartment Team_x is moved? (Choose two.)  Group G2 can now manage instance-families in compartment Project_B and compartment Team_X  Group G1 can now manage instance-families in compartment Project_A, compartment Project_B and compartment Team_X  Group G1 can now manage instance-families in compartment Project_A but not in compartment Team_x  Group G2 can now manage instance-families in compartment Project_A but not in compartment Team_x  Group G2 can now manage instance-families in compartment Project_B, compartment Project_A and compartment Team_X Q33. You have the following compartment structure within your company’s Oracle Cloud Infrastructure (OCI) tenancy:You want to create a policy in the root compartment to allow SystemAdmins to manage VCNs only in CompartmentC.Which policy is correct? (Choose the best answer.)  Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentB:CompartmentC  Allow group SystemAdmins to manage virtual-network-family in compartment Root  Allow group SystemAdmins to manage virtual-network-family incompartmentCompartmentA:CompartmentB:CompartmentC  Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentC ExplanationComplete Compartment path is required. It is also advisable to do so, as policies are name based ones.Q34. You have recently joined a startup company and quickly find that nobody is tracking the amount of money spent on Oracle Cloud Infrastructure (OCI). Seeing an opportunity to help save money you begin creating a solution tobetter track the cost of resources provisioned by each individual on the team.Which option allows you to identify excessive spend across all resources in your tenancy? (Choose the best answer.)  Use the Python SDK to write a custom application thatwill monitor the Audit log. Look for CREATE events and configure the application to send you an email each time a new resource is created.  Create a tag namespace named BILLING with a Tag Key named CostCenter. Tag each of your resources with this Tag Keyand the correct value.  Use the Events Service and create rules that will act when a new Object Storage bucket or Compute Instance has been created. Have the rule email you each time one of these events occurs.  Create a budget for each compartment that will send a notification when monthly spend reaches a pre- defined amount. Explanationhttps://docs.oracle.com/en-us/iaas/Content/Tagging/Tasks/usingcosttrackingtags.htmQ35. You have created the following JSON file to specify a lifecycle policy for one of your object storage buckets:How will this policy affect the objects that are stored in the bucket? (Choose the best answer.)  Objects with the prefix “LOGS” will be retained for 120 days and then deleted permanently.  Objectscontaining the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be deleted 120 days after creation.  The objects with prefix “LOGS” will be deleted 30 days after creation date.  Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be migrated back to standard Storage120 days after creation.  Loading … 2022 New VCEPrep 1z0-1067-22 PDF Recently Updated Questions: https://www.vceprep.com/1z0-1067-22-latest-vce-prep.html --------------------------------------------------- Images: https://certify.vceprep.com/wp-content/plugins/watu/loading.gif https://certify.vceprep.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2022-12-25 16:09:10 Post date GMT: 2022-12-25 16:09:10 Post modified date: 2022-12-25 16:09:10 Post modified date GMT: 2022-12-25 16:09:10