This page was exported from Latest Exam Prep [ http://certify.vceprep.com ] Export date:Sat Sep 21 12:42:08 2024 / +0000 GMT ___________________________________________________ Title: 1z0-1072-23 Dumps To Pass Oracle Exam in 24 Hours - VCEPrep [Q20-Q44] --------------------------------------------------- 1z0-1072-23 Dumps To Pass Oracle Exam in 24 Hours - VCEPrep Buy Latest 1z0-1072-23 Exam Q&A PDF - One Year Free Update Oracle 1z0-1072-23 Exam Syllabus Topics: TopicDetailsTopic 1Describe OCI compute image options Configure DNS and Traffic ManagementTopic 2Configure Virtual Cloud Network Routing and Gateways Describe and configure a layer-7 Load BalancerTopic 3Configure Security Lists and Network Security Groups Describe and configure OS ManagementTopic 4Describe public and private IP addresses and virtual NICs Understand Network Command Center ServicesTopic 5Describe Public and Private DNS zones Configure Cloud Guard, Security Zone, and Security AdvisorTopic 6Implement and manage Virtual Cloud Networks Describe and configure a layer-4 Network Load Balancer   NO.20 Which is NOT a valid option for an Oracle Cloud Infrastructure (OCI) compute shape?  Bare Metal  Dedicated Virtual Machine Host  Virtual Machine  Exadata Virtual Machine Exadata Virtual Machine is not a valid option for an OCI compute shape. Exadata Virtual Machine is a deployment option for Exadata Cloud Service or Exadata Cloud@Customer, which are services that provide dedicated Exadata infrastructure for running Oracle databases in OCI. Exadata Virtual Machine allows you to create multiple virtual machines on each Exadata compute node and isolate them from each other using Oracle VM technology. The valid options for OCI compute shapes are:Bare Metal: A bare metal instance is a physical server that gives you direct access to the underlying hardware and full isolation from other tenants.Dedicated Virtual Machine Host: A dedicated virtual machine host is a physical server that hosts only your virtual machine instances and no other tenant’s instances.Virtual Machine: A virtual machine instance is a virtual server that runs on a shared physical server with other tenants’ instances.Burstable: A burstable instance is a virtual machine instance that has a baseline utilization of either 12% or 50% of each CPU core and can burst above the baseline when needed.NO.21 As a solution architect, you are showcasing the Oracle Cloud Infrastructure (OCI) Object Storage feature about Object Versioning to a customer.Which statement is true regarding OCI Object Storage Versioning?  Objects are physically deleted from a bucket when versioning is enabled.  Object Versioning is disabled on a bucket by default.  A bucket that is versioning-enabled can and will always have the latest version of the object in the bucket.  Object Versioning does not provide data protection against accidental or malicious object update, overwrite, or deletion.Explanation:Object Versioning is disabled on a bucket by default is a true statement regarding OCI Object Storage Versioning. Object Versioning is a feature that allows users to preserve, retrieve, and restore every version of every object stored in a bucket. Object Versioning is disabled on a bucket by default, but can be enabled or suspended by the user at any time. The other statements are false regarding OCI Object Storage Versioning. Reference: [Object Versioning]NO.22 A financial firm is designing an application architecture for its online trading platform that should have high availability and fault tolerance.Their solutions architects configured the application to use an Oracle Cloud Infrastructure (OCI) Object Storage bucket located in the US West (us-phoenix-1) region to store large amounts of financial dat a. The stored financial data in the bucket should not be impacted even if there is an outage in one of the Availability Domains or a complete region.What should the architect do to avoid any costly service disruptions and ensure data durability?  Create a replication policy to send data to a different bucket in another OCI region.  Copy the Object Storage bucket to a block volume.  Create a lifecycle policy to regularly send data from the Standard to Archive storage.  Create a new Object Storage bucket in another region and configure lifecycle policy to move data every 5 days. Create a replication policy to send data to a different bucket in another OCI region. The explanation is that replication is a feature of Object Storage that allows you to automatically copy objects from one bucket to another bucket, either in the same region or in a different region. Replication can help you improve data availability and durability, as well as meet compliance and disaster recovery requirements. To enable replication, you need to create a replication policy that specifies the source and destination buckets, the replication frequency, and the replication filters. Replication policies are evaluated every five minutes and copy any new or updated objects from the source bucket to the destination bucket.NO.23 You are part of an organization with thousands of users accessing Oracle Cloud Infrastructure (OCI). An unknownuser action was executed resulting in configuration errors. You are tasked to quickly identify the details of allusers who were active in the last six hours along with any REST API calls that were executed.Which OCI service would you use?  Notifications  Service Connectors  Notifications  Logging  Audit ExplanationAudit is the OCI service that would help identify the details of all users who were active in the last six hours along with any REST API calls that were executed. Audit is a service that records all API calls and other actions taken by or on behalf of users in OCI. It can be used to track user activity, monitor compliance, and troubleshoot issues. The other options are not suitable for this task. References: [Audit]NO.24 Which TWO are key benefits of setting up Site-to-Site VPN on Oracle Cloud Infrastructure (OCI)?  When setting up Site-to-Site VPN, it creates a private connection that provides consistent network experience.  When setting up Site-to-Site VPN, customers can configure it to use static or dynamic routing (BGP).  When setting up Site-to-Site VPN, OCI provisions redundant VPN tunnels.  When setting up Site-to-Site VPN, customers can expect bandwidth above 2 Gbps. When setting up Site-to-Site VPN, customers can configure it to use static or dynamic routing (BGP). When setting up Site-to-Site VPN, OCI provisions redundant VPN tunnels. The explanation is that Site-to-Site VPN is a secure and encrypted connection between your on-premises network and your Virtual Cloud Network (VCN) in OCI over the public internet. When setting up Site-to-Site VPN, you can choose to use static routing or dynamic routing (Border Gateway Protocol or BGP) to exchange routes between your network and OCI. OCI also provisions two redundant VPN tunnels for each Site-to-Site VPN connection to provide high availability and failover.NO.25 You have a high-demand web application running on Oracle Cloud Infrastructure (OCI). Your tenancy administrator has set up a schedule-based autoscaling policy on instance pool withan initial size of 5 instancesfor the application.Policy 1:Target pool size:10 instancesExecution time:8:30 a.m. on every Monday through Friday, in every month, in every year Cron expression:0 30 8 ? * MON-FRI * Which statement accurately explains the goal of this policy?  Goal: A one-time schedule with only one scaling out event. At 8:30 a.m., on December 31, 2021, scale theinstance pool to 10 instances from 5.  Goal: A recurring monthly schedule. On all days of the month, set the initial pool size to 5 instances. At8.30 a.m., on every day of the month, scale out to 10 instances.  Goal: A recurring daily schedule. On weekday mornings at 8.30 a.m., scale out to 10 instances.  Goal: A recurring weekly schedule. On all days of the week at 8.30 a.m., scale out the pool to 10 instancesfrom the initial size of 5 ExplanationThe explanation is that a schedule-based autoscaling policy allows you to adjust the size of your instance pool based on a cron expression that specifies the date and time of the scaling action. The cron expression consists of six fields: seconds, minutes, hours, day of month, month, and day of week. In this case, the cron expression is 0 30 8 ? * MON-FRI *, which means that the scaling action will occur at 8:30 a.m. on every Monday through Friday, regardless of the day of month or month. Therefore, the goal of this policy is to scale out the instance pool to 10 instances on weekday mornings at 8:30 a.m.NO.26 Which TWO statements about the Oracle Cloud Infrastructure (OCI) File Storage Service are accurate?  Communication with file systems in a mount target is encrypted via HTTPS.  File systems use Oracle-managed keys by default.  Customer can encrypt data in their file system using their own Vault encryption key.  Mount targets use Oracle-managed keys by default.  Customer can encrypt the communication to a mount target via export options. ExplanationFile systems use Oracle-managed keys by default. Customer can encrypt data in their file system using their own Vault encryption key. The explanation is that File Storage Service encrypts all data at rest using AES-256 encryption algorithm. By default, File Storage Service uses Oracle-managed keys to encrypt and decrypt data.However, you can also use your own Vault encryption key to encrypt data in your file system. To do so, you need to create a key in Vault and associate it with your file system when you create or update it.NO.27 You are a system administrator of your company and you are managing a complex environment consisting of compute instances running Oracle Linux on Oracle Cloud Infrastructure (OCI). It’s your task to apply all the latestkernel security updates to all instances.Which OCI service will allow you to complete this task?  OCI Streaming service  OS Management service  OCI Registry  OCI Security Zones to achieve automatic security updates  OCI Cloud Guard to monitor and install the security updates ExplanationOS Management service is the OCI service that will allow you to complete this task. OS Management service is a service that helps users automate patching and package management for Oracle Linux and Windows instances in OCI. It can also help users monitor and manage system configuration and compliance across their instances. The other options are not suitable for this task, as they do not provide the functionality of OS Management service. References: [OS Management Service]NO.28 Which is NOT a valid option for an Oracle Cloud Infrastructure (OCI) compute shape?  Bare Metal  Dedicated Virtual Machine Host  Virtual Machine  Exadata Virtual Machine ExplanationExadata Virtual Machine is not a valid option for an OCI compute shape. Exadata Virtual Machine is a deployment option for Exadata Cloud Service or Exadata Cloud@Customer, which are services that provide dedicated Exadata infrastructure for running Oracle databases in OCI. Exadata Virtual Machine allows you to create multiple virtual machines on each Exadata compute node and isolate them from each other using Oracle VM technology. The valid options for OCI compute shapes are:Bare Metal: A bare metal instance is a physical server that gives you direct access to the underlying hardware and full isolation from other tenants.Dedicated Virtual Machine Host: A dedicated virtual machine host is a physical server that hosts only your virtual machine instances and no other tenant’s instances.Virtual Machine: A virtual machine instance is a virtual server that runs on a shared physical server with other tenants’ instances.Burstable: A burstable instance is a virtual machine instance that has a baseline utilization of either 12% or 50% of each CPU core and can burst above the baseline when needed.NO.29 You have an instance running in Oracle Cloud Infrastructure (OCI) that cannot be live-migrated during an infrastructure maintenance event. OCI schedules a maintenance due date within 14 to 16 days and sends you a notification.What would happen if you choose not to proactively reboot the instance before the scheduled maintenance due date?  The instance will get terminated.  The instance is either reboot-migrated or rebuilt in place for you.  You will receive another notification to reboot within the next 14 days.  You will receive another notification to reboot within the next 7 days. If you choose not to proactively reboot the instance before the scheduled maintenance due date, the instance is either reboot-migrated or rebuilt in place for you. Reboot-migration is a process where OCI migrates your instance to a new physical host without changing its configuration or public IP address. Rebuild in place is a process where OCI shuts down your instance, performs maintenance on the physical host, and restarts your instance with the same configuration and public IP address. The other options are not correct. Reference: [Reboot-Migration], [Rebuild in Place]NO.30 Which TWO components are optional while creating the Monitoring Query Language (MQL) expressions in the Oracle Cloud Infrastructure (OCI) Monitoring service?  Interval  Statistic  Dimensions  Grouping Function  Metric ExplanationDimensions and Grouping Function are two optional components while creating the Monitoring Query Language (MQL) expressions in the OCI Monitoring service. Dimensions are key-value pairs that provide additional information about a metric, such as region, compartment, or resource type. Grouping Function is a function that aggregates metric data across one or more dimensions, such as sum, count, or average. The other options are required components for MQL expressions. References: [Dimensions], [Grouping Function]NO.31 Which statement is NOT correct regarding the Oracle Cloud Infrastructure (OI) File System snapshots?  Even if nothing has changed within the file system since the last snapshot was taken, a new snapshot consumes more storage.  Snapshots are accessible under the root directory of the file system at .snapshot/name.  Before you can clone a file system, at least one snapshot must exist for the file system.  Snapshots are a consistent, point-in-time view of your file systems. Even if nothing has changed within the file system since the last snapshot was taken, a new snapshot does not consume more storage. This is because snapshots are incremental and only store the changes made to the file system since the previous snapshot. The other statements are correct regarding the OCI File System snapshots. Reference: [Snapshots and Storage Consumption]NO.32 You want to create a policy to allow the NetworkAdmins group to manage Virtual Cloud Network (VCN) in compartment C. You want to attach this policy to the tenancy. The compartment hierarchy is shown below.Which policy statement can be used to accomplish this task?  Allow group NetworkAdmins to manage virtual-network-family in compartment B:C  Allow group NetworkAdmins to manage virtual-network-family in compartment C  Allow group NetworkAdmins to manage virtual-network-family in tenancy  Allow group NetworkAdmins to manage virtual-network-family in compartment A:B:C Allow group NetworkAdmins to manage virtual-network-family in compartment A:B:C. The explanation is that when you attach a policy to the tenancy, you need to specify the full path of the compartment where you want to grant permissions. In this case, the compartment C is a sub-compartment of compartment B, which is a sub-compartment of compartment A, which is a sub-compartment of the root compartment (tenancy). Therefore, the full path of compartment C is A:B:C. The virtual-network-family resource type includes all the resources related to VCN, such as subnets, route tables, security lists, gateways, etc.NO.33 Which TWO statements are TRUE about Private IP addresses in Oracle Cloud Infrastructure (OCI)?  Each VNIC can only have one private IP address.  By default, the primary VNIC of an instance in a subnet has one primary private IP address.  By default, the primary VNIC of an instance in a subnet has one primary private IP address and one secondary private IP address.  A private IP can have an optional public IP assigned to it if it resides in a public subnet. ExplanationBy default, the primary VNIC of an instance in a subnet has one primary private IP address. A private IP can have an optional public IP assigned to it if it resides in a public subnet. The explanation is that a private IP address is an IPv4 address that is assigned to a VNIC and belongs to the CIDR block of the VCN or subnet.By default, the primary VNIC of an instance in a subnet has one primary private IP address, which is automatically assigned by OCI and cannot be changed. However, you can also assign secondary private IP addresses to a VNIC, either manually or automatically, up to a maximum of 31 per VNIC. A private IP address can have an optional public IP address assigned to it, which allows the instance to communicate with the internet. A public IP address can be either ephemeral or reserved, depending on whether you want to keep it after stopping or terminating the instance. A private IP address can only have a public IP address assigned to it if it resides in a public subnet, which means that the subnet’s route table has a route rule that directs traffic to the internet gateway.NO.34 Which Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) policy is invalid?  Allow dynamic-group FrontEnd to manage instance-family in compartment Project-A  Allow any-user to inspect users in tenancy  Allow group A-Developers to create volumes in compartment Project-A  Allow group A-Admins to manage all-resources in compartment Project-A ExplanationAllow group A-Developers to create volumes in compartment Project-A is an invalid IAM policy. This is because create is not a valid verb for volumes. The correct verb for creating volumes is attach. The other options are valid IAM policies that use correct verbs and syntax. References: [IAM Policies], [Verbs]NO.35 You need to set up instance principals so that an application running on an instance can call Oracle Cloud Infrastructure (OCI) public services, without the need to configure user credentials.A developer in your team has already configured the application built using an OCI SDK to authenticate using the instance principals provider.Which is NOTa necessary step to complete this set up?  Create a dynamic group with matching rules to specify which instances can make API calls against services.  Generate Auth Tokens to enable instances in the dynamic group to authenticate with APIs.  Create a policy granting permissions to the dynamic group to access services in your compartment or tenancy.  Deploy the application and the SDK to all the instances that belong to the dynamic group. Generating Auth Tokens to enable instances in the dynamic group to authenticate with APIs is not a necessary step to complete this set up. This is because Auth Tokens are used to authenticate users, not instances, when making API calls to OCI services. Instance principals are a feature that allows instances to authenticate themselves using certificates, without requiring user credentials or Auth Tokens. The other options are necessary steps to complete this set up, as they enable instances in the dynamic group to make API calls against services using instance principals and IAM policies. Reference: [Instance Principals], [Auth Tokens]NO.36 Oracle Cloud Agent is a lightweight process that manages plugins running on compute instances.Which is NOT a valid Oracle Cloud Agent plugin name?  Live Migration Agent  OS Management Service Agent  Compute Instance Run Command  Bastion Bastion is not a valid Oracle Cloud Agent plugin name. Bastion is a service that enables secure and controlled access to compute instances in OCI. The other options are valid plugin names that provide different functionalities for the instances. Reference: [Bastion], [Cloud Agent Plugins]NO.37 In which two ways can Oracle Security Zones assist with the cloud security shared responsibility model?  Encrypt storage resources with a customer-managed key.  Allow access to an unsecured compartment, which is moved from a standard compartment.  Deny public access to Oracle Cloud Infrastructure resources, such as databases and object storage buckets.  Add or move a standard compartment to a highly secured security zone compartment. ExplanationOracle Security Zones is a service that helps you enforce best practices and prevent misconfigurations on your OCI resources by applying predefined policies and controls. Some of the benefits of using Security Zones are:Encrypt storage resources with a customer-managed key: Security Zones require that all storage resources, such as block volumes, boot volumes, file systems, and object storage buckets, are encrypted with a customer-managed key from Vault. This ensures that you have full control over the encryption and decryption of your data at rest.Deny public access to OCI resources, such as databases and object storage buckets: Security Zones prevent you from creating or updating OCI resources that have public access enabled, such as databases and object storage buckets that are accessible from the internet. This reduces the risk of unauthorized access or data leakage.NO.38 Which tool provides a diagram of the implemented topology of all Virtual Cloud Networks (VCNs) in a selected region and tenancy?  Network Watcher  Traffic Analytics  VCN Flow Logs  Network Visualizer ExplanationNetwork Visualizer is the tool that provides a diagram of the implemented topology of all VCNs in a selected region and tenancy. Network Visualizer is a feature of the OCI Networking service that allows users to view and manage their network resources in a graphical interface. It can help users understand their network topology, troubleshoot issues, and optimize performance. The other options are not tools that provide a diagram of the VCN topology, but rather other features or services of OCI Networking. References: [Network Visualizer]NO.39 You have a high-demand web application running on Oracle Cloud Infrastructure (OCI). Your tenancy administrator has set up a schedule-based autoscaling policy on instance pool with an initial size of 5 instances for the application.Policy 1:Target pool size:10 instancesExecution time:8:30 a.m. on every Monday through Friday, in every month, in every year Cron expression:0 30 8 ? * MON-FRI * Which statement accurately explains the goal of this policy?  Goal: A one-time schedule with only one scaling out event. At 8:30 a.m., on December 31, 2021, scale the instance pool to 10 instances from 5.  Goal: A recurring monthly schedule. On all days of the month, set the initial pool size to 5 instances. At8.30 a.m., on every day of the month, scale out to 10 instances.  Goal: A recurring daily schedule. On weekday mornings at 8.30 a.m., scale out to 10 instances.  Goal: A recurring weekly schedule. On all days of the week at 8.30 a.m., scale out the pool to 10 instances from the initial size of 5 The explanation is that a schedule-based autoscaling policy allows you to adjust the size of your instance pool based on a cron expression that specifies the date and time of the scaling action. The cron expression consists of six fields: seconds, minutes, hours, day of month, month, and day of week. In this case, the cron expression is 0 30 8 ? * MON-FRI *, which means that the scaling action will occur at 8:30 a.m. on every Monday through Friday, regardless of the day of month or month. Therefore, the goal of this policy is to scale out the instance pool to 10 instances on weekday mornings at 8:30 a.m.NO.40 Which of the following statements is true about cloning a volume in the Oracle Cloud Infrastructure (OCI) Block Volume service?  You need to detach a volume before cloning it.  Creating a clone takes longer than creating a backup of a volume.  You can clone a volume to another region.  You can change the block volume size when cloning a volume. You can change the block volume size when cloning a volume. The explanation is that cloning a volume is a way of creating an exact copy of an existing volume without creating a backup first. Cloning a volume is faster and cheaper than creating a backup and restoring it to a new volume. When you clone a volume, you can change the block volume size, performance, encryption settings, and tags of the new volume. You do not need to detach a volume before cloning it, as cloning does not affect the source volume or its attachments. You cannot clone a volume to another region, as cloning only works within the same region and availability domain. Creating a clone usually takes less time than creating a backup of a volume, as cloning does not involve transferring data to Object Storage.NO.41 Which statement is NOT correct regarding the Oracle Cloud Infrastructure (OI) File System snapshots?  Even if nothing has changed within the file system since the last snapshot was taken, a new snapshot consumes more storage.  Snapshots are accessible under the root directory of the file system at .snapshot/name.  Before you can clone a file system, at least one snapshot must exist for the file system.  Snapshots are a consistent, point-in-time view of your file systems. ExplanationEven if nothing has changed within the file system since the last snapshot was taken, a new snapshot does not consume more storage. This is because snapshots are incremental and only store the changes made to the file system since the previous snapshot. The other statements are correct regarding the OCI File System snapshots.References: [Snapshots and Storage Consumption]NO.42 You want to distribute DNS traffic to different endpoints based on the location of the end user. Which Traffic Management Steering Policy would you use?  IP Prefix  Load Balancer  Geolocation  Failover The explanation is that geolocation is a type of Traffic Management Steering Policy that allows you to distribute DNS traffic to different endpoints based on the location of the end user. Geolocation steering policies use geolocation data from third-party providers to map end user IP addresses to geographic regions. You can create rules that specify which endpoints to serve for each region or country, or use a default endpoint for unspecified regions.NO.43 You plan to upload a large file (3 TiB) to Oracle Cloud Infrastructure (OCI) Object Storage. You would like tominimize the impact of network failures while uploading, and therefore you decide to use the multipart upload capability.Which TWO statements are true about performing a multipart upload using the Multipart Upload API?  You do not need to split the object into parts. Object Storage splits the object into parts and uploads all ofthe parts automatically.  While a multipart upload is still active, you can keep adding parts as long asthe total number is less than10,000.  You do not have to commit the upload after you have uploaded all the object parts.  When you split the object into individual parts, each part can be as large as 50 GiB. ExplanationWhile a multipart upload is still active, you can keep adding parts as long as the total number is less than10,000. When you split the object into individual parts, each part can be as large as 50 GiB. The explanation is that a multipart upload allows you to upload a large object in parts, which can improve performance and reliability. You need to split the object into parts yourself and upload each part separately using the Multipart Upload API. You can add parts to an active multipart upload until you reach the maximum number of 10,000 parts per upload. Each part can range from 10 MiB to 50 GiB in size, except for the last part, which can be any size.NO.44 Which TWO statements are NOTcorrect regarding the Oracle Cloud Infrastructure (OCI) burstable instances?  If the instance’s average CPU utilization over the past 24 hours is below thebaseline, the system allows itto burst above the baseline.  Baseline utilization is a fraction of each CPU core, either 25% or 75%.  Burstable instances cost less than regular instances with the same total OCPU count.  Burstable instances are designed for scenarios where an instance is not typically idle and has high CPUutilization.  Burstable instances are charged according to the baseline OCPU. ExplanationThe explanation is that burstable instances are VM instances that have a baseline utilization of either 12% or 50% of each CPU core, not 25% or 75%. Burstable instances are designed for scenarios where an instance is typically idle or has low CPU utilization but occasionally needs to burst above the baseline to handle spikes in demand. Burstable instances cost less than regular instances with the same total OCPU count but charge extra for bursting above the baseline OCPU. Loading … Download the Latest 1z0-1072-23 Dump - 2024 1z0-1072-23 Exam Question Bank: https://www.vceprep.com/1z0-1072-23-latest-vce-prep.html --------------------------------------------------- Images: https://certify.vceprep.com/wp-content/plugins/watu/loading.gif https://certify.vceprep.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2024-04-02 14:44:05 Post date GMT: 2024-04-02 14:44:05 Post modified date: 2024-04-02 14:44:05 Post modified date GMT: 2024-04-02 14:44:05