This page was exported from Latest Exam Prep [ http://certify.vceprep.com ] Export date:Sat Dec 14 11:40:35 2024 / +0000 GMT ___________________________________________________ Title: [2023] Pass Key features of 1z0-997-22 Course with Updated 145 Questions [Q37-Q56] --------------------------------------------------- [2023] Pass Key features of 1z0-997-22 Course with Updated 145 Questions 1z0-997-22 Sample Practice Exam Questions 2023 Updated Verified Oracle 1z0-997-22 Exam Syllabus Topics: TopicDetailsTopic 1Design, implement and operate databases in OCI Implement and operate solutions in OCI Evaluate multi-cloud solution architecturesTopic 2Implement solutions to meet business and technical requirements Operate and troubleshoot solutions on OCITopic 3Design, implement and operate solutions to meet compliance requirements Design scalable and elastic solutions for high availability and disaster recoveryTopic 4Manage infrastructure using IaC, OCI CLI, APIs and SDKs Design and implement hybrid network architectures to meet high availability, bandwidth and latency requirements   QUESTION 37A digital marketing company is planning to host a website on Oracle Cloud Infrastructure (OCI) and leverage OCI Container Engine for Kubernetes (OKE). The web server will make API calls to access OCI Object Storage to store all images uploaded by users.For security purposes, your manager instructed you to ensure that the credentials used by the web server to allow access not stored locally on the compute instance.What solution results in an Implementation with the least effort for this scenario?  Configure the credentials using Instance Principal to allow the web server to make API calls to OCl Object Storage  Configure the credentials using OCI Registry (OC1R) which will automatically connect with OKE allowing the web server to make API calls to OCI Object Storage.  Configure the credentials to use Transparent Data Encryption (TDE) which will automatically allow the web server to make API calls to OCl Object Storage.  Configure the credentials using OCI Key Management to allow an instance to make API calls and grant access to OCl Object Storage. QUESTION 38A startup company is looking for a solution for processing of data transmitted by the IOT devices fitted to transport vehicles that carry frozen foods. The data should be consumed and processed in real time. The processed data should be archived to OCI Object Storage bucket. and use Autonomous Data warehouse (ADW) to handle analytics.Which architecture will help you meet this requirement?  Use OCI Streaming Service to collect the incoming biometric data. Use an open source Hadoop cluster to analyze the data horn streaming service. Store the results to OCI Autonomous Data warehouse (ADW) to handle complex analytics  Use OCI Streaming Service to collect the incoming biometric data. Use Oracle Functions to process the date and show the results on a real-time dashboard and store the results lo OCI Object Storage Store the data In OCI Autonomous Data warehouse (ADW) to handle analytics.  Create an OCI Object Storage bucket to collect the incoming biometric data from the smart pet collar Fetch the data horn OC Object storage to OCI Autonomous Data Warehouse (ADW) every day and run analytics Jobs with it  Launch an open source Hadoop cluster to collect the Incoming biometrics data Use an Open source Fluentd cluster to analyze the- data me results to OCI Autonomous Transaction Processing (ADW)to handle complex analytics Real-time processing of high-volume streams of data– OCI Streaming service provides a fully managed, scalable, durable storage option for continuous, highvolume streams of data that you can consume and process in real-time– Use casesLog and Event data collectionWeb/Mobile activity data ingestionIoT Data streaming for processing and alertsMessaging: use streaming to decouple components of large systems– Oracle managed service with REST APIs (Create, Put, Get, Delete)– Integrated MonitoringQUESTION 39You notice that a majority of your Oracle Cloud Infrastructure (OCI) resources like compute instances, block volumes, and load balancers are not tagged. You have received a mandate from your CIO to add a predefined set of tags to identify owners for respective OCI resources. E.g. if Chris and Larry each create compute instances in a compartment, the instances that Chris creates include tags that contain his name as the value, while the instances that Larry creates have his name.Which option is the simplest way to implement this new tagging requirement?  Create a default tag for each compartment, which ensure that appropriate tags are applied at the time of resource creation.  Create an OCI Identity and Access Management policy requiring users to tag resources with their user name.  Create an OCI Identity and Access Management policy to automatically tag a resource with the user name.  Create tag variables to automatically tag a resource with the user name. QUESTION 40As a solution architect, you are designing a web application to be deployed across multiple Oracle Cloud Infrastructures (OCI) regions for a global audience. Your goal is that users from each region should access the application web servers deployed in their own geographical OCI location.Which OCI feature can be used to achieve this?  OCI Traffic Management IP Prefix steering policy  OCI Global Load balancers  OCI Public Load Balancers  OCI Traffic Management GeoLocation steering policy QUESTION 41You are part of a project team working in the development environment created in OCI. You have realized that the CIDR block specified for one of the subnet in a VCN is not correct and want to delete the subnet. While deleting you are getting an error indicating that there are still resources that you must delete first. The error includes the OCID of the VNIC that is in the subnet.Which of the following action you will take to troubleshoot this issue?  Use OCI CLI to call “GetVnic” operation to find out the parent resource of the VNIC  Copy and Paste OCID of the VNIC in the search box of the OCI Console to find out the parent resource of the VNIC  Use OCI CLI to delete the VNIC first and then delete the subnet  Use OCI CLI to delete the subnet using –force option VCN, it must first be empty and have no related resources or attached gateways To delete a VCN’s subnets, they must first be empty.Note: When you create one of the preceding resources, you specify a VCN and subnet for it. The relevant service creates at least one VNIC in the subnet and attaches the VNIC to the resource. The service manages the VNICs on your behalf, so they are not readily apparent to you in the Console. The VNIC enables the resource to communicate with other resources over the network. Although this documentation commonly talks about the resource itself being in the subnet, it’s actually the resource’s attached VNIC.If the subnet is not empty, you instead get an error indicating that there are still resources that you must delete first. The error includes the OCID of a VNIC that is in the subnet (there could be more, but the error returns only a single VNIC’s OCID).You can use the Oracle Cloud Infrastructure command line interface (CLI) or another SDK or client to call the GetVnic operation with the VNIC OCID. The response includes the VNIC’s display name. Depending on the type of parent resource, the display name can indicate which parent resource the VNIC belongs to. You can then delete that parent resource, or you can contact your administrator to determine who owns the resource. When the VNIC’s parent resource is deleted, the attached VNIC is also deleted from the subnet. If there are remaining VNICs in the subnet, repeat the process of determining and deleting each parent resource until the subnet is empty. Then you can delete the subnet.For example, if you’re using the CLI, use this command to get information about the VNIC.oci network vnic get –vnic-id <VNIC_OCIDQUESTION 42Your customer has gone through a recent reorganization. As part of this change, they are organizing their Oracle Cloud Infrastructure (OCI) compartment structure to align with the company’s new organizational structure. (Refer to the exhibit)They have made the following change:Compartment A is moved, and its new parent compartment is compartment Dev.Policy defined in compartment A: Allow group G1 to manage instance-family in compartment A Policy defined in root compartment: Allow group admins to manage instance-family in compartment Ops: Test: A After the compartment move, which action will provide users of group G1 and admins with similar privileges as before the move?  Define the following policy in compartment Dev:Allow group G1 to manage instance-family in compartment A  Define the following policies in compartment Dev:Allow group G1 to manage instance-family in compartment AAllow group admins to manage instance-family in compartment Ops: Dev: A  Define the following policy in compartment: Dev:Allow group admins to manage instance-family in compartment Ops: Dev: A  Mo change in any policy statement is required as all the policies associated with a compartment being moved is automatically updated QUESTION 43You are working with a customer who needs to attach an Oracle Cloud Infrastructure (OCI) block volume to a VM instance with read/write access type. The customer wants to know if the number of IOPS and throughput performance differs between the following two choices:* Option A: attach a single 1 TB block volume to the VM instance* Option B: attach two separate 500 GB block volumes In a RAID 0 array configuration to the VM instance You can assume that the customer is using iSCSI attachment type to attach the volumes to the instance. In addition, you can assume 1 MB block size for throughput and 4 KB block size for IOPS consideration.How should you respond to the customer?  Option B provides higher level of throughput, but lower level of IOPS performance.  Both options provide the same number of IOPS and throughput performance.  Option A provides better IOPS, but lower throughput performance.  Option B provides better IOPS and throughput performance. QUESTION 44A company has an urgent requirement to migrate 300 TB of data to Oracle Cloud Infrastructure (OCI) In two weeks. Their data center has been recently struck by a massive hurricane and the building has been badly damaged, although still operational. They have a 100 Mbps Internet line but the connection is Intermittent due to the damages caused to the electrical grid in this scenario, what is the most effective service to use to migrate the data to OCI given the time constraints?  Setup a OCI Storage Gateway to connect your data center and your VCN. Once the connection has been established, upload all data to OCI using OCI Storage Gateway Cloud Sync tool.  Setup a hybrid network by launching aIGbpsFastConnect virtual circuit between your data center and OCI. Use OCI Object storage multipart upload tool to automate the migration of your data to OCI.  Use multiple OCI Data Transfer Appliances to transfer data to OCI.  Upload the data to OCI using OCI Object Storage multipart upload tool.  Storage Gateway to connect your data center and your VCN. Once the connection has been established, upload all data to OCI. Due to the network speed is not good enough and the connection is Intermittent due to the damages caused to the electrical grid Oracle offers offline data transfer solutions that let you migrate data to Oracle Cloud Infrastructure.You have 2 Options of Data TransferDISK-BASED DATA TRANSFERYou send your data as files on encrypted commodity disk to an Oracle transfer site. Operators at the Oracle transfer site upload the files into your designated Object Storage bucket in your tenancy.APPLIANCE-BASED DATA TRANSFERyou send your data as files on secure, high-capacity, Oracle-supplied storage appliances to an Oracle transfer site. Operators at the Oracle transfer site upload the data into your designated Object Storage bucket in your tenancy.QUESTION 45As an administrator you want to give users of ObjectWriters group full access to bucket Bucket-A and its objects in compartment comp-images. You want users of ObjectWriters to not be able to access or modify properties of any other buckets and its objects in the compartment comp-images.Select the statement(s) below that will best define your IAM policies.  Allow group ObjectWriters to mange buckets in compartment comp- images Allow group ObjectWriters to manage objects in compartment comp-images where target.bucket.name= ‘Eucket-A’  Allow group ObjectWriters to manage buckets in compartment comp-images where target.bucket.name=’ Bucket-A’  Allow group ObjectWriters to inspect buckets in compartment comp-images Allow group ObjectWriters to read buckets in compartment comp-images where target.bucket.name=’ Bucket-A” Allow group ObjectWriters to manage objects in compartment comp-images where target.bucket.name=’ Bucket-A’  Allow group ObjectWritexs to read buckets in compartmentcomp-images Allow group ObjectWriters to manage objects in compartment comp- images where target.bucket.name= ‘Bucket-A’ QUESTION 46You are working on the migration of the web application infrastructure of your company from on-premises to Oracle Cloud Infrastructure. You need to ensure that the DNS cache entries of external clients will not direct them to the on-premises infrastructure after switching to the new infrastructure.Which of the following options will minimize this problem?  Reduce the TTL of the DNS records after the switch.  DNS changes propagate fast enough that it is not necessary to take any action.  Increase the TTL of the DNS records before the switch.  Increase the TTL of the DNS records after the switch.  Reduce the TTL of the DNS records before the switch. QUESTION 47A retail company runs their online shopping platform entirely on Oracle cloud Infrastructure (OCI). This is a 3-tier web application that Includes a Mbps Load Balancer. Virtual Machine Instances for web and an Oracle DB Systems Virtual Machine Due to unprecedented growth, they noticed an Increase in the Incoming traffic to their website and all users start getting 503 (Service Unavailable) errors.What is the potential problem in this scenario?  The Load Balancer health check status Indicates critical situation for half of the backend webservers  All the web servers are too busy and not able to answer any request from users.  The Database Is down hence users can not access the web site  The Traffic Management Policy is not set to load Balancer the traffic to the web servers.  You did not configure a Service Gateway to allow connection between web servers and load Balance A 503 Service Unavailable Error is an HTTP response status code indicating that a server is temporarily unable to handle the request. This may be due to the server being overloaded or down for maintenance.QUESTION 48You are working as a solution architect with a global automotive provider who is looking to create a multi-cloud solution. They want to run their application tier in Microsoft Azure while utilizing the Oracle DB Systems in the Oracle Cloud Infrastructure (OCI).What is the most-fault tolerant and secure solution for this customer? (Choose the best answer.)  Deploy the Oracle database system into a public subnet in your VCN and assign a public IP address. Connect your application tier running in Azure to the public IP address of the database system over the internet.  Create a FastConnect virtual circuit with Microsoft Azure as the provider to establish a private interconnect between the application tier running in the Azure Virtual Network and the OCI VCN that contains the Oracle Databases.  Create an encrypted, Virtual Private Network connection between the Microsoft Azure Virtual Network that contains the application tier and the OCI Virtual Cloud Network (VCN) that contains the Oracle Databases.  Use an OCI Virtual Cloud Network remote peering connection to create a remote network connection between the application tier running in Microsoft Azure Virtual Network and Oracle Databases running in the OCI Virtual Cloud Network (VCN). https://docs.oracle.com/en/solutions/learn-azure-oci-interconnect/index.html#GUID-FBE38C70-A4CF-40C5-A37A-121241D21199QUESTION 49You are responsible for migrating your on premises legacy databases on 11.2.0.4 version to Autonomous Transaction Processing Dedicated (ATP-D) In Oracle Cloud Infrastructure (OCI). As a solution architect, you need to plan your migration approach.Which two options do you need to implement together to migrate your on premises databases to OCI?  Use Oracle Data Guard to keep on premises database always active during migration  Retain changes to Oracle shipped privileges, stored procedures or views In the on-premises databases.  Use Oracle GoldenGate replication to keep on premises database online during migration.  Convert on-premises databases to PDB, upgrade to 19c, and encrypt Migration.  Retain all legacy structures and unsupported features (e.g. taw U>Bs) In the onuses databases for migration. Autonomous Database is an Oracle Managed and Secure environment.A physical database can’t simply be migrated to autonomous because:– Database must be converted to PDB, upgraded to 19c, and encrypted– Any changes to Oracle shipped privileges, stored procedures or views must be removed– All legacy structures and unsupported features must be removed (e.g. legacy LOBs) GoldenGate replication can be used to keep database online during migrationQUESTION 50Your organization is planning on using Oracle Cloud Infrastructure (OCI) File Storage Service (FSS). You will be deploying multiple compute instance in Oracle Cloud Infrastructure (OCI) and mounting the file system to these compute instances. The file system will hold payment data processed by a Database instance and utilized by compute instances to create a overall inventory report. You need to restrict access to this data for specific compute instances and must be allowed/blocked per compute instance’s CIDR block.Which option can you use to secure access?  Use stateless Security List rule to restrict access from known IP addresses only.  Create a new VCN security list, choose SOURCE TYPE as Service and SOURCE SERVICE as FSS. Add stateless ingress and egress rules for specific P address and CIDR blocks.  Use ‘Export option’ feature of FSS to restrict access to the mounted file systems.  Create and configure OCI Web Application Firewall service with built in DNS based intelligent routing. ExplanationNFS export options enable you to create more granular access control than is possible using just security list rules to limit VCN access. You can use NFS export options to specify access levels for IP addresses or CIDR blocks connecting to file systems through exports in a mount target. Access can be restricted so that each client’s file system is inaccessible and invisible to the other, providing better security controls in multi-tenant environments.Using NFS export option access controls, you can limit clients’ ability to connect to the file system and view or write data. For example, if you want to allow clients to consume but not update resources in your file system, you can set access to Read Only. You can also reduce client root access to your file systems and map specified User IDs (UIDs) and Group IDs (GIDs) to an anonymous UID/GID of your choice. For more information about how NFS export options work with other security layersQUESTION 51A retailer bank is currently hosting their mission critical customer application on-premises. The application has a standard 3 tier architecture -4 application servers process the incoming traffic and store application data in an Oracle Exadata Database Server. The bank has recently has service disruption to other inter applications to they are looking to avoid this issue for their mission critical Customer Application.Which Oracle Cloud Infrastructure services should you recommend as part of the DR solution?  OCI DNS Service’ Public Load Balancer, Oracle Database Cloud Backup Service, Object Storage Service, Oracle Bare Metal Cloud Service, Oracle Bare Metal Cloud Service with GoldenGate, OCI Container Engines for Kubernetes, Oracle IPSec VPN  OCI Traffic Management, Private Load Balancer, Compute instances distributed across multiple Availability Domains and/or Fault Domains, Exadata Cloud Service with Data Guard, Oracle FastConnect, Object Storage, Database Cloud backup module  OCI Traffic Management, Public toad Balancer, Compute Instances distributed across multiple Availability Domains and/or Vault domains. Exadata Cloud Service with Data Guard, Oracle FastConnect, Object Storage, Database cloud backup module  OCI DNS Service, Load Balancer as a service using Public Load Balancer distributing traffic Compute Instance across multiple regions, Oracle RAC Database using Virtual Machines, Remote Peering connecting two VCNs in different regions. Exadata Cloud Service with GoldenGate FastConnect, Object Storage, Database Cloud backup module. OCI Traffic Management Steering Policies can account for health of answers to provide failover capabilities, provide the ability to load balance traffic across multiple resources, and account for the location where the query was initiated to provide a simple, flexible and powerful mechanism to efficiently steer DNS traffic.Public Load Balancer Accepts traffic from the internet using a public IP address that serves as the entry point for incoming traffic. Load balancing service creates a primary load balancer and a standby load balancer, each in a different availability domainQUESTION 52Your company needs to migrate a business critical application from your data center to Oracle Cloud Infrastructure (OCI). The application runs on Oracle Database and both the application and database servers run on Oracle Linux version 7. The application server is WebLogic server running on multiple 4-core servers and the database is deployed as an Oracle Database Enterprise Edition RAC database on 2 servers (4-cores each).Which method of database migration should you choose so that the application has minimal impact? (Choose the best answer.)  Deploy Virtual Machine RAC DB system on OCI and use the Oracle Database Backup module with RMAN to migrate the data from customer on-premises to OCI.  Deploy Virtual Machine RAC DB system on OCI and use the ZDM tool for the database migration.  Deploy Autonomous Transaction Processing Database on OCI and use the MV2ADB tool for the database migration.  Deploy Exadata Cloud Service Base rack and use Oracle Data Pump tool to migrate the data from customer on-premises to OCI. https://docs.oracle.com/en/database/oracle/zero-downtime-migration/19.2/zdmug/introduction-to-zero-downtime-migration.html#GUID-FF4CA22F-CC83-4118-AF26-6E7BE224717FQUESTION 53An online Stock trading application is deployed to multiple Availability Domains in the us phoenix-1 region. Considering the high volume of transactions that the trading application handles, the company has hired you to ensure that the data stored by the application available, and disaster resilient. In the event of failure, the Recovery lime Objective (UK)) must be less than 2 hours to meet regulator requirements.Which Disaster Recovery strategy should be used to achieve the RTO requirement In the event of system failure?  Configure hourly block volumes backups through the Storage Gateway service.  Configure hourly block volumes backups using the Oracle Cloud Infrastructure (OCI) Command Line Interface (CLI)  Store hourly block volumes backup to NVMe device under a compute instance and generate a custom Image every 5 minutes.  Configure your application to use synchronous master slave data replication between Availability Domains. You can use the CLI, REST APIs, or the SDKs to automate, script, and manage volume backups and their lifecycle.Planning Your BackupThe primary use of backups is to support business continuity, disaster recovery, and long-term archiving requirements. When determining a backup schedule, your backup plan and goals should consider the following:Frequency: How often you want to back up your data.Recovery time: How long you can wait for a backup to be restored and accessible to the applications that use it. The time for a backup to complete varies on several factors, but it will generally take a few minutes or longer, depending on the size of the data being backed up and the amount of data that has changed since your last backup.Number of stored backups: How many backups you need to keep available and the deletion schedule for those you no longer need. You can only create one backup at a time, so if a backup is underway, it will need to complete before you can create another one. For details about the number of backups you can storeQUESTION 54A company has an application that processes confidential data. The data is currently stored in an on-premises data center. A solution architect needs to move this data to Oracle Cloud Infrastructure (OCI) Object Storage and ensure data is encrypted in-transit to OCI.Which two steps should the solution architect perform to set up the most cost-effective connection between on-premises data center and OCI?  Set up private end point for accessing Object Storage.  Attach an Internet Gateway to Virtual Cloud network(VCN).  Configure a service gateway accessing Object Storage.  Set up an IPsec tunnel between the customer equipment and software VPN on an oci instance  Configure a private peering connection on the Oracle FastConnect  Set up VPN Connect between the customer equipment and the Dynamic Routing Gateway. QUESTION 55You developed a microservices based application that runs on Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE). Your security team wants to use SSL termination for this application. What should you do to create a secure SSL termination for this application using fewest steps?  Create a self-signed certificate and it’s corresponding key. Create a Kubernetes secret using the certificate and the key. Then add these an notations to the Kubernetes service:annotations:service.beta.kubernetes.io/oci-load-balancer-ssl-ports: “443”service.beta.kubernetes.io/oci-load-balancer-security-list-management-mode:”Frontend”  Generate a self-signed certificate using Let’s Encrypt. Use that certificate on OCI Load Balancer. Create the Kubernetes service usingthis load balancer.  Add these annotationsto the Kubernetes service:annotations:service.beta.kubernetes.io/oci-load-balancer-ssl-ports: “443”service.beta.kubernetes.io/oci-load-balancer-ssl-secret-key: ssl-secret-key  Create a self-signed certificate and it’s corresponding key. Create a Kubernetes secret using then add these annotationsto the Kubernetes service.Service.beta.kubernete.io/oci-load-balancer-ssl-ports: “443”Service.beta.kubernete.io/oci-load-balancer-tls-secret:SSL-CERTIFICATE-SECRET QUESTION 56You want to automate the processing of new image files to generate thumbnails. The expected rate is 10 new files every hour.Which of the following is the most cost effective option to meet this requirement in Oracle Cloud Infrastructure (OCI)?  Upload all files to an Oracle Streaming Service (OSS) stream. Setup a cron job to invoke a function in Oracle Functions to fetch data from the stream. Invoke another function to process the image files and generate thumbnails.Store thumbnails in another OSS stream.  Upload files to an OCI Object storage bucket. Every time a file is uploaded, an event is emitted. Write a rule to filter these events with an action to trigger a function in Oracle Functions. The function processes the image in the file and stores the thumbnails back in an Object storage bucket.  Build a web application to ingest the files and save them to a NoSQL Database. Configure OCI Events service to trigger a notification using Oracle Notification Service (ONS). ONS invokes a custom application to process the image files to generate thumbnails. Store thumbnails in a NoSQL Database table.  Upload files to an OCI Object storage bucket. Every time a file is uploaded, trigger an event with an action to provision a compute instance with a cloud-init script to access the file, process it and store it back in an Object storage bucket. Terminate the instance using Autoscaling policy after the processing is finished.  Loading … The New 1z0-997-22 2023 Updated Verified Study Guides & Best Courses: https://www.vceprep.com/1z0-997-22-latest-vce-prep.html --------------------------------------------------- Images: https://certify.vceprep.com/wp-content/plugins/watu/loading.gif https://certify.vceprep.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2023-03-18 16:12:57 Post date GMT: 2023-03-18 16:12:57 Post modified date: 2023-03-18 16:12:57 Post modified date GMT: 2023-03-18 16:12:57