OCI Architect 2021 Associate [1Z0-1072-21] - Practice Exam

Ace your homework & exams now with Quizwiz!

Which Oracle-defined backup policy includes weekly incremental backups that run on Sunday, also includes a full backup that runs yearly during the first part of January, and is retained for five years? A. Silver policy B. Platinum policy C. Bronze policy D. Gold policy

A

Which block volume performance level is recommended for throughput-intensive workloads with large sequential I/O, such as streaming, log processing, and data warehouses? A. Lower cost B. Balanced C. High performance D. Ultra-high performance

A

You want a specific set of users, who do not have IAM user credentials, to access a bucket for a duration of 2 days. Which mechanism can help you achieve this? A. Pre-authenticated requests B. Converting the bucket to a public bucket C. Auto config file creation D. Moving the bucket to an archive tier

A

You want to forbid the creation of public buckets in Object Storage.Which OCI security feature can you use to achieve this? A. Security zone and security zone recipe B. Roving Edge infrastructure and data sets C. Event notifications and topics D. Triggers and procedure

A

Which TWO statements are true about site-to-site VPN? A. It provides a site-to-site IPSec connection between your on-premises network and your virtual cloud network (VCN). B. It encrypts IP traffic before the packets are transferred from the source to the destination and decrypts the traffic when it arrives. C. You need a dynamic routing gateway when you are trying to connect your VCN to the Internet by using site-to-site VCN. D. You cannot use multiple site-to-site connections between your on-premises network and virtual cloud network (VCN).

A, B

Which two statements are true about Object Storage? A. It is a regional service and is not tied to any specific compute instance. B. It supports private access from Oracle Cloud Infrastructure resources in a VCN through a service gateway. C. Archive is the default tier for Object Storage buckets. D. You can back up a DB system to Object Storage only via the Internet.

A, B

Which three components are managed by the customer and not by Oracle in a shared security model of OCI? A. Data B. Accounts and identities C. Application D. Physical hosts E. Physical networks

A, B, C

Which four layers of access control are used by the File Storage service? A. NFS export option B. Oracle Cloud Infrastructure (OCI) policy C. NFS v.3 Unix security D. Key management E. Web application firewall F. Network security

A, B, C, F

Which three statements are true about a master encryption security key protected by software? A. It is stored in a server. B. It can be exported from a server. C.It is stored in an HSM device. D. Cryptographic operations are allowed on clients. E. It cannot be exported from HSM.

A, B, D

Which FOUR types of images can be used in Oracle Cloud Infrastructure? A. Oracle-provided Linux images B. Oracle-provided Windows images C. Oracle-provided Solaris images D. Custom images created from existing images in OCI E. Prebuilt application images from Oracle available in the OCI Marketplace

A, B, D, E

Which three statements are true about compartments? A. Compartments can be nested. B. You cannot control the type of resources that can be created within a compartment. C. One compartment can have resources from multiple regions. D. Multiple compartments can share a single resource. E. You can set a budget on a compartment such that you are notified as soon as the budget is exceeded.

A, B, E

When changing the performance level of boot volumes, which two performance levels can you select? A. High performance B. Lower cost C. Balanced D. Ultra-high performance

A, C

Which TWO conditions must be met for an instance to communicate directly with the Internet? A. Instance must have a public IP address. B. Public subnet must have route tables without any security lists. C. Instance must be in a private subnet. D. Instance's VCN must have an Internet gateway.

A, D

Which TWO statements are true about autoscaling? A. An autoscaling configuration can include one or more autoscaling policies. B. Metric-based autoscaling relies on performance metrics that are collected by the Tracking service. C. For autoscaling to work, you must configure a load balancer. D. Each instance pool can have only one autoscaling configuration.

A, D

Which TWO statements are true about private IP objects? A. A private IP can have a public IP assigned to it. B. Secondary private IPs must be manually deleted when you terminate the mapped instance. B. Each instance receives a primary private IP object and a secondary private IP object at launch. D. You can add a secondary private IP to either the primary VNIC or a secondary VNIC of an instance after it's launched.

A, D

Which TWO statements are true about the OS Management service? A. If a managed instance is terminated, the OS Management service will automatically remove it from the managed instance list. B. If the OS Management service fails while updating a package, you must contact Oracle Support to identify the cause of failure. C. Actions such as installing or removing updates are synchronous and do not initiate work requests. D. It allows you to specify a date and time when a managed instance will be updated.

A, D

Which two statements are true about NoSQL Cloud Service? A. It interoperates with NoSQL Database Enterprise edition through a single programmatic interface with no application code modification. B. Storage capacity is managed in each NoSQL cluster. C. Database deployment can be at on-premises data centers, or BYOL with Oracle Cloud or other cloud vendors. D. Throughput capacity is measured in write units and read units.

A, D

Which two statements are true about auth tokens? A. Every user can generate up to two auth tokens. B. They make use of a public key/private key pair. C. They expire after 14 days by default. D. They can be used to authenticate third-party APIs.

A, D

Database admins and app developers want to run OLTP and OLAP workloads directly from their MySQL database, thus eliminating the need for complex, time-consuming, and expensive data movement and integration with a separate analytics database? Which feature of MySQL database service enables this? A. Automatic Memory Management B. Heatwave C. Exalogic D. ElastiCache

B

When triggered, an alarm sends an alarm message to the configured topic. In which service is the topic configured? A. Synchronization B. Notification C. Monitoring D. Management

B

Which OCI security feature can you use to ensure that unwanted bots are mitigated while desirable bots are allowed to enter? A. Cloud Guard B. Web application firewall C. Data Vault D. Security zone

B

Which Traffic Management Steering policy distributes DNS traffic to different endpoints based on the location of the end user? A. IP prefix steering B. Geolocation steering C. ASN steering D. Load balancer

B

Which co-managed database service applies the combined power of Exadata and Oracle Cloud Infrastructure while enabling you to meet your organization's data-residency requirements? A. Autonomous Database B. Exadata Cloud@Customer C. Exadata Cloud Service D. Bare metal and virtual machine DB systems

B

Which type of logs are emitted by API gateways, events, and Object Storage? A. Archive logs B. Service logs C. Custom logs D. Audit logs

B

Which TWO connectivity options can you use to give your virtual cloud network (VCN) access to the Internet? A. FastConnect B. NAT gateway C. Internet gateway D. Service gateway

B, C

Which TWO statements are true about security lists? A. They are applied to a group of VNICs of your choice instead of all the VNICs in a given subnet. B. The default security list does not include a rule to allow ping requests. C. The default security list allows TCP traffic on destination port 22 (SSH) from authorized source IP addresses and any source port. D. Each subnet can have only one security list associated with it.

B, C

Which two statements are true about a block volume clone? A. It is slower than a block volume backup. B. It creates a single point-in-time copy of a volume without having to go through the backup and restore process. C. You can clone a volume group. D. It makes use of Object Storage.

B, C

Which two statements are true about application-based load balancers? A. They are based on IP address and destination ports only. B. They perform content-based routing. C. They support both HTTP and HTTPS. D. They act only on the TCP layer variables.

B, C

Which two statements are true about local VCN peering? A. It uses an Internet gateway. B. You can use a single DRG for local peering. C. The VCNs can be in different Oracle Cloud Infrastructure tenancies but in the same region. D. The two VCNs must have overlapping CIDRs.

B, C

You have two objects in a bucket: ObjectX and ObjectY. ObjectX was last modified 14 months ago and Object Y was last modified 3 months ago. You create a retention rule with a duration of 1 year. Which two statements are true? A. Object X cannot be modified or deleted for the next 2 months. B. Object Y cannot be modified or deleted for the next 9 months. C. Object X can be modified or deleted immediately. D. Object Y can be modified or deleted immediately.

B, C

Examine this policy: Allow group GroupMgr to manage volumes in tenancy where request.permission != 'VOLUME_DELETE' Which three actions can a user belonging to the GroupMgr group perform? A. Delete volumes. B. Move volumes. C. Update volumes. D. Create volumes.

B, C, D

Which three other components are emitted along with raw data points or timestamp-value pairs as metrics to the Monitoring service? A. Attribute B. Dimension C. Metadata D. Data E. Namespace

B, C, E

For which TWO types of workloads must you use a bare metal compute instance? A. Workload that do not require BYO image B. Performance-sensitive workloads C. Virtualized workloads D. Workloads that require a specific hypervisor

B, D

Which two statements are true about boot volumes? A. You cannot group boot volumes with block volumes into the same volume group B. When you launch a virtual machine (VM) or bare metal instance based on a platform image or custom image, a new boot volume for the instance is created in the same compartment. C. When you terminate your instance, you can keep the associated boot volume and use it to launch a new instance, but it must be of the same shape and size as the original instance. D. When you terminate the instance, you can preserve the boot volume and its data.

B, D

Which two statements are true about cloning a file system? A. You can clone a parent file system but you cannot create a clone of a clone. B. All snapshots that exist in the parent file system are inherited by the clone, up to and including the snapshot that is used as the source of the clone. C. You can create multiple clones of a parent file system in the same availability domain. D. File system properties such as compartment, tags, display name, keys, and mount target export information are not copied over from the parent.

B, D

At which level are retention rules configured? A. Object level B. Compartment level C. Bucket level D. Namespace level

C

For maximum cost efficiency, when launching compute instances, which capacity type must you select for workloads that run periodically or for short periods of time and that don't require continuous availability? A. Reserved capacity B. Dedicated capacity C. Pre-emptible capacity D. On-demand capacity

C

What is the allowable VCN size range? A. /8 through /16 B. /0 through /32 C. /16 through /30 D. /8 through /24

C

When you create a block volume, what is its default performance level? A. High performance B. Lower cost C. Balanced D. Ultra-high performance

C

Which Oracle Database edition is required to deploy a two-node Oracle RAC DB system? A. Standard Edition B. Enterprise Edition - High Performance C. Enterprise Edition - Extreme Performance D. Enterprise Edition

C

Which cloud solution in Oracle Cloud Infrastructure lets you index, enrich, aggregate, explore, search, analyze, correlate, visualize, and monitor all log data from your applications and system infrastructure? A. Correlated analytics B. Service analytics C. Logging analytics D. Monitoring analytics

C

Which protocol is used by FastConnect? A. OSPF B. DNS routing C. BGP D. IPSec

C

Which type of load balancer distributes traffic based on IP address and destination ports only? A. Layer-2 B. Layer-7 C. Layer-4 D. Layer-6

C

Which three encryption algorithms are supported by OCI Vault? A. HMAC B. IDEA C. RSA D. AES E. ECDSA

C, D, E

Which three security services provide infrastructure protection? A. Key Vault B. Cloud Guard C. Security lists D. WAF E. DdoS Protection

C, D, E

An instance running in a development compartment needs to make API calls to other OCI services. How can you achieve this without configuring user credentials or setting up a configuration file? A. The requirement cannot be achieved with configuring user credentials or setting up a configuration file. B. Create a dynamic group with matching rules to include your instance. C. Instances can automatically make calls to other OCI services; hence no configuration is needed. D. Create a dynamic group with matching rules to include your instance and write a policy for this dynamic group.

D

At which layer of the OSI model does a web application firewall help to filter traffic? A. Presentation layer B. Datalink layer C. Transport layer D. Application layer

D

Compartment A is a child compartment of root. Compartment B is a child compartment of Compartment A. Compartment C is a child compartment of Compartment B. You have attached the following policy to Compartment A: Allow group NetworkAdmins to manage virtual-network-family in Compartment A. For which compartments can a user of the NetworkAdmins group manage VCNs? A. Compartment B and Compartment C only B. Root compartment, Compartment A, Compartment B, and Compartment C C. Compartment A only D. Compartment A, Compartment B, and Compartment C only

D

Examine these two policies: Allow group GroupAdmins to manage groups in tenancy where all {target.group.name=/A-*/,target.group.name!='A-Admins'} Allow group GroupAdmins to inspect groups in tenancy Which statement is true? A. GroupAdmins can create, update, or delete any groups whose names end with "A-", except for the A-Admins group. B. GroupAdmins can create, update, or delete any groups whose names start with "A." C. GroupAdmins can create, update, or delete any groups whose names start with "A." D. GroupAdmins can create, update, or delete any groups whose names start with "A-", except for the A-Admins group.

D

What happens to traffic if there is no route rule that matches the network traffic you intend to route outside the VCN? A. It is sent over FastConnect. B. It is sent over the Internet gateway C. It is sent over the NAT gateway D. It is dropped.

D

What is used to specify the actions that Cloud Guard can take when detectors identify problems? A. Metrics B. Threshold C. Alarms D. Responder

D

When you enable auto tiering, objects larger than 1 MiB are automatically moved from the Standard tier to which tier? A. Backup tier B. Archive tier C. Redundancy tier D. Infrequent Access tier

D

Which OCI networking method must you use to divide your network into multiple VCNs based on departments, with each VCN having direct, private access to the others while avoiding traffic flowing over the Internet or through your on-premises network? A. NAT gateway B. Site-to-site VPN C. FastConnect D. VCN peering

D

Which autonomous database type is specialized for developing NoSQL-style applications that use JavaScript Object Notation documents? A. Oracle APEX Application Development B. Autonomous Data Warehouse C. Autonomous Transaction Processing D. Autonomous JSON Database

D

Which gateway allows resources within a VCN to communicate with the Internet but prevents any inbound traffic? A. Dynamic routing gateway B. Internet gateway C. Service gateway D. NAT gateway

D

Which network security service allows you to separate the VCN's subnet architecture from your application security requirements? A. Flow logs B. Access control C. Security lists D. Network security group

D

Which policy is automatically applied when you create a cloud account? A. Allow Group Administrator to manage all-resources in regions B. Allow Group Administrator to manage all-resources in all-domains C. Allow Group Administrator to manage all-resources in all-compartments D. Allow Group Administrator to manage all-resources in tenancy

D

You have enabled versioning for a bucket. What happens when you upload an object with the same name as an existing object? A. The object is overwritten and the overwritten object is not retained or recoverable. B. The existing object is moved to a different bucket which has been marked for archival. C. It returns an error. D. The existing object becomes a previous version and the newly uploaded object becomes the latest version.

D

You want to make a point-in-time snapshot of the data on a block volume. Under which condition can you make a block volume backup? A. Only when it is detached from all instances B. Only when it is attached to an instance C. OCI does not provide point-in-time backup of data on a block volume. D. When it is attached to an instance or while it is detached

D

You want users of the NetworkAdmin group to manage a cloud network in any compartment of a tenancy. What must you allow the NetworkAdmin group to do? A. Manage instance-family in compartment ABC. B. Use virtual-network-family in compartment XYZ. C. Manage network-catalog-listing in tenancy. D. Manage virtual-network-family in tenancy.

D

Your application or workload includes big data and analytics, media processing, or content management. You require Portable Operating System Interface (POSIX)-compliant file system access semantics and concurrently accessible storage. Which storage service must you use? A. Block Storage B. Vault Storage C. Object Storage D. File Storage

D

Which Object Storage tier would you use for data that you need to access quickly, immediately, and frequently? A. Ultra-high performance tier B. Archive tier C. High performance tier D. Infrequent access tier E. Standard tier

E


Related study sets

Mega International Econ (Part 1): Chapter 26: The XR and BOP

View Set

ANS and Endocrine system ch 15&17

View Set

FIN 3214: Chapter 7: Net Present Value and Other Investment Rules

View Set

EVERYTHING FOR CHAPTER 4 FINANCIAL LIT!

View Set