• Home
  • Articles
  • [Sep 01, 2022] Oracle 1z0-1072-22 Real Exam Questions and Answers FREE [Q83-Q108]

[Sep 01, 2022] Oracle 1z0-1072-22 Real Exam Questions and Answers FREE [Q83-Q108]

Share

[Sep 01, 2022] Oracle 1z0-1072-22 Real Exam Questions and Answers FREE

Pass Oracle 1z0-1072-22 Exam Info and Free Practice Test


Oracle 1z0-1072-22 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Understand File System Snapshots and Cloning
  • Configure DNS and Traffic Management
Topic 2
  • Configure Security Lists and Network Security Groups
  • Describe and configure a layer-4 Network Load Balancer
Topic 3
  • Implement and manage VCN connectivity
  • Describe Public and Private DNS zones
Topic 4
  • Implement and manage Virtual Cloud Networks
  • Describe and configure a layer-7 Load Balancer
Topic 5
  • Understand External Database Service
  • Configure cross-region replication
Topic 6
  • Configure Virtual Cloud Network Routing and Gateways
  • Introduction to Database Systems and Autonomous Databases
Topic 7
  • Implement conditional and advanced policies
  • Configure and manage Object Storage

 

NEW QUESTION 83
As the Cloud Architect for your company, you have been tasked with designing a high performance (HPC) cluster in Oracle Cloud Infrastructure (OCI). The following requirements have been defined:
* The cluster must be a minimum of three nodes, but may increase to six nodes when demand requires.
* The cluster must be resilient to any potential infrastructure failures.
* To minimize latency, all nodes must be deployed within the same availability domain (AD).
* Adding or replacing nodes within the cluster should take no more than 30 minutes.
Which twosteps should be performed to satisfy these requirements in OCI? (Choose two.)

  • A. Deploy the cluster in a single AD with a shared file system that leverages the file storage service (FSS).
    Deploy a standby cluster in another AD and configure it to use thesame shared file system.
  • B. Deploy the cluster in a single AD. Place each of the nodes in one of the three different fault domains in that AD.
  • C. Create a backup of your HPC node compute instance boot volume. Launch new compute instances directly from thebackup reduce provisioning time.
  • D. Deploy the cluster in a single AD. Place each of the nodes in a different virtual cloud network (VCN) subnet.
  • E. Create a custom image of your HPC node compute instance. Launch new compute instances using this image to reduce provisioning time.

Answer: B,E

Explanation:
Explanation
A fault domain is a grouping of hardware and infrastructure within an availability domain. Each availability domain contains three fault domains. Fault domains provide anti-affinity: they let you distribute your instances so that the instances are not on the same physical hardware within a single availability domain. A hardware failure or Compute hardware maintenance event that affects one fault domain does not affect instances in other fault domains. In addition, thephysical hardware in a fault domain has independent and redundant power supplies, which prevents a failure in the power supply hardware within one fault domain from affecting other fault domains.
To control the placement of your compute instances, bare metal DB system instances, or virtual machine DB system instances, you can optionally specify the fault domain for a new instance or instance pool at launch time. If you don't specify the fault domain, the system selects one for you. Oracle Cloud Infrastructure makes a best-effort anti-affinity placement across different fault domains, while optimizing for available capacity in the availability domain. To change the fault domain for an instance, terminate it and launch a new instance in the preferred fault domain.
Use fault domains to do the following things:
Protect against unexpected hardware failures or power supply failures.
Protect against planned outages because of Compute hardware maintenance.

 

NEW QUESTION 84
You have anexternal facing web server running in the Oracle Cloud Infrastructure (OCI) London region. You are notified that customers in North America and Australia are facing high latency while connecting to your web server.
Which services are available on OCI thatcan help you get current latency statistics to your web server from these markets?

  • A. Use the Internet Intelligence tool. Run tests using the web server's public IP address and review traceroute details from different vantage points
  • B. Use DNS Zone Management service to check latency over that connection
  • C. Setup a FastConnect with customers in those markets and check latency over that connection
  • D. Setup an IPsec VPN with customers in those markets and check latency over that connection

Answer: A

Explanation:
Explanation
The second tool, OCI IP Troubleshooting, helps troubleshoot issues with public facing IP addresses.
This feature is also part of our Internet Intelligence toolset, providing analytical insight to help network operations teams reduce the time it takes to troubleshoot an issue by providing awareness of availability and latency across the Internet.
Ref: https://blogs.oracle.
com/cloud-infrastructure/internet-intelligence,-now-available-in-the-oracle-cloud-infrastructure-console

 

NEW QUESTION 85
Which two statements about fault domains are true? (Choose two.)

  • A. A failed instance in a fault domain is automatically relaunched
  • B. A fault domain is selected automatically based on usage data
  • C. A fault domain is a grouping of hardware and infrastructure within an availability domain
  • D. Eachavailability domain contains three fault domains

Answer: C,D

Explanation:
Explanation
References:
A fault domain is a grouping of hardware and infrastructure within an availability domain. Each availability domain contains three fault domains. Fault domains provide anti-affinity: they let you distribute your instances so that the instances are not on the same physical hardware within a single availability domain.

 

NEW QUESTION 86
Which statement is true about OracleCloud Infrastructure FastConnect?

  • A. For public peering, a dynamic routing gateway must be configured and attached to the virtual cloud network (VCN)
  • B. The FastConnect provider network offers only 1 Gbps port connection speed increments
  • C. For private peering, FastConnect extends your existing infrastructure to allow you to consume object storage from your on-premises data center
  • D. For private peering, FastConnect extends your existing infrastructure toa virtual cloud network

Answer: D

Explanation:
Explanation
With FastConnect, you can choose to use , or both.
Private peering: To extend your existing infrastructure into a virtual cloud network (VCN) in Oracle Cloud Infrastructure (for example, to implement a hybrid cloud, or a lift and shift scenario). Communication across the connection is with IPv4 private addresses (typically RFC 1918).
Public peering: To access public services in Oracle Cloud Infrastructure without using the internet. For example, Object Storage, the Oracle Cloud InfrastructureConsole and APIs, or public load balancers in your VCN. Communication across the connection is with IPv4 public IP addresses. Without FastConnect, the traffic destined for public IP addresses would be routed over the internet.

 

NEW QUESTION 87
You aredesigning a two-tier web application in Oracle Cloud Infrastructure (OCI). Your clients want to access the web servers from anywhere, but want to prevent access to the database servers from the Internet.
Which is the recommended way to design the networkarchitecture?

  • A. Create a single public subnet for your web servers and database servers, and associate only your web servers to internet gateway.
  • B. Create public subnets for web servers and associate adynamic routing gateway with that subnet, and a private subnet for database servers with no association to dynamic gateway.
  • C. Create public subnets for web servers and private subnets for database servers in your VCN, and associate separate security listsand route tables for each subnet.
  • D. Create public subnets for web servers and private subnets for database servers in your virtual cloud network (VCN), and associate separate internet gateways for each subnet.

Answer: C

Explanation:
Explanation
When you create a subnet, by default it's considered public, which means instances in that subnet are allowed to have public IP addresses. Whoever launches the instance chooses whether it will have a public IP address.
You can override that behavior when creating the subnet and request that it be private, which means instances launched in the subnet are prohibited from having public IP addresses. Network administrators can therefore ensure that instances in the subnet have no internet access, even if the VCN has a working internet gateway, and security rules and firewall rules allow the traffic.
There are two optional gateways (virtual routers) that you can add to your VCN depending on the type of internet access you need:
Internet gateway: For resources with public IP addresses that need to be reached from the internet (example:
aweb server) or need to initiate connections to the internet.
NAT gateway: For resources without public IP addresses that need to initiate connections to the internet (example: for software updates) but need to be protected from inbound connections from the internet.
Just having an internet gateway alone does not expose the instances in the VCN's subnets directly to the internet. The following requirements must also be met:
The internet gateway must be enabled (by default, the internet gateway is enabled upon creation).
The subnet must be public.
The subnet musthave a route rule that directs traffic to the internet gateway.
The subnet must have security list rules that allow the traffic (and each instance's firewall must allow the traffic).
The instance must have a public IP address.

 

NEW QUESTION 88
You have an application server running in a public subnet on a compute instance in US West (us-phoenix-1) region of Oracle Cloud Infrastructure (OCI).The data sitting on this instance needs to be copied to OCI Object storage bucket available in the same region without traversing over the internet. To enable the connectivity between the instance and Object Storage, you created a service gateway with service CIDR of all Object Storage in us-phoenix-1 enabled. You also modified the security rules to allow the desired traffic.
However, when you tried sending the data to the Object Storage bucket, you notice that the data is going over the internet and not via the service gateway.
What could be the possible reason for this behavior?

  • A. The service gateway created in the VCN resides in a differentavailability domain
  • B. The route table associated with the subnet has no route rule where the destination is object storage service
  • C. Identity and Access Management (IAM) policies restrict the access to the object storage bucket
  • D. The security list associated with the subnet has an egress rule that allows all traffic to be forwarded to a destination CIDR 0.0.0.0/0

Answer: B

 

NEW QUESTION 89
Your company has decided to move a few applications to Oracle Cloud and you have been asked to design it for both High Availability (HA) and Disaster Recovery (DR).
Which two should youconsider while designing your Oracle Cloud Infrastructure architecture? (Choose two.)

  • A. Region
  • B. Compartments
  • C. Availability Domain
  • D. Instance Shape

Answer: A,C

Explanation:
Explanation
References:https://blogs.oracle.com/cloud-infrastructure/migration-and-disaster-recovery-in-the-oracle-cloud-wi

 

NEW QUESTION 90
Which five are the required parameters to launch an instance in Oracle Cloud Infrastructure? (Choose five.)

  • A. host name
  • B. private IP address
  • C. Virtual Cloud Network
  • D. image operating system
  • E. instance shape
  • F. Availability Domain
  • G. subnet

Answer: C,D,E,F,G

Explanation:
Explanation
References:https://docs.cloud.oracle.com/iaas/Content/Compute/Concepts/computeoverview.htm

 

NEW QUESTION 91
You want an Oracle Cloud Infrastructure (OCI) compute instance in your compartment to make API calls to other services within OCI without storing credentials in a configuration file.
What do you need to do?

  • A. By default, all VM instances are created with an instance principal. Reference this instance principal in your IAM policy statement
  • B. Instances cannot access services outside their compartment
  • C. VM instances are treated as users. Create a user, assign the user to that VM instance, and reference the instance in your Identity and Access Management (IAM) policy statement
  • D. Create a dynamic group with appropriate matching rules to include the instance, and reference this group in your IAM policy statement

Answer: D

 

NEW QUESTION 92
Within your tenancy you have a compute instance with a boot volume and a block volume attached. The boot volume contains the OS and the attached block volume contains the instance's important data. Logs on the boot volume have filled the boot volume and are causing issues with the OS.
What should you do to resolve this situation?

  • A. Detach the block volume from the full instance. Create a new instance of the same shape with a larger boot volume and rsync the state of the boot volume between the instances. Attach the block volume to the new instance.
  • B. Stop the instance that is full. Create a manual backup of the block storage before making changes.
    Detach the block volume, create a new instance ofthe same shape with a larger custom boot volume and attach the block volume to the new instance. Configure the OS and any related application(s) to access the block volume under the same mount point as before.
  • C. Create a manual backup of the block storage instance. Create a custom imageof the full instance. Once that completes deploy the custom image to a new instance.
  • D. Create a new instance with a larger boot volume size as well a new block volume which is the same size or larger than the one attached to the full instance. rsync the state of the boot volume and the state of the block volume between the two instances.

Answer: B

Explanation:
Explanation
https://docs.cloud.oracle.com/en-us/iaas/Content/Block/Tasks/resizingavolume.htm

 

NEW QUESTION 93
Which two statements are true about policies?

  • A. You can use read, write, manage, and inspect as verbs for defining a policy.
  • B. You can deny access toa group via policies.
  • C. Users need not do anything but still have to be added to a group with appropriate policies defined.
  • D. Apolicy is a document that specifies who can access which Oracle Cloud Infrastructure resources that your company has, and how.

Answer: C,D

 

NEW QUESTION 94
You are running your warehouse using Autonomous Data Warehouse (ADW) service and you noticed that a newly configured batch job is always running in serial even through nothing else is running in the database.All your jobs are configured to run with parallelism enabled.
What could be the reason for this batch job to run in serial?

  • A. The batch job depends on only one table and parallelism cannot be enabled on single-table queries.
  • B. The parallelism of batchjob depends on the number of ADW databases involved in the query.
  • C. The new batch job runs on database tables that are not enable for parallel execution.
  • D. Parallelism on the database iscontrolled by the application, not the database.
  • E. The new batch job is connected to LOW consumer group.

Answer: E

 

NEW QUESTION 95
Which two parameters arerequired in a back end set's HTTP health check? (Choose two.)

  • A. response body
  • B. port
  • C. timeout
  • D. status code
  • E. URL path

Answer: B,E

Explanation:
Explanation
https://docs.cloud.oracle.com/iaas/Content/GSG/Tasks/loadbalancing.htm#Create Enter the Health Check details.
Load Balancing automatically checks the health of the instances for your load balancer. If it detects an unhealthy instance, it stops sending traffic to the instance and reroutes traffic to healthy instances. In this step, you provide the information required to check the health of servers in the backend set and ensure that they can receive data traffic.
Protocol: Select HTTP.Port: Enter 80URL Path (URI): Enter /The rest of the fields are optional and can be left blank for this tutorial.
Click Create.

 

NEW QUESTION 96
When you try to create an instance on Oracle Cloud Infrastructure (OCI), what are three valid sources to choose theimage from?

  • A. Dedicated VM Host
  • B. Partner Images
  • C. Instance Pools
  • D. Bare Metal Instance
  • E. Platform Images
  • F. Object Storage
  • G. Custom Image

Answer: B,E,G

Explanation:
Reference:https://docs.cloud.oracle.com/en-us/iaas/Content/Compute/Tasks/launchinginstance.htm

 

NEW QUESTION 97
Which three can you achieve by using Terraform? (Choose three.)

  • A. Continuously maintain the configuration files in an instance.
  • B. Create resources in the right order without regard to the order in the terraform plan file.
  • C. Automatically re-provision the resources that are tainted or whose configuration has changed.
  • D. Automatically translate a deployed infrastructure and create a plan.
  • E. Automatically destroy all the resources that are in tenancy.

Answer: B,C,E

 

NEW QUESTION 98
You have two NFS clientsrunning in two different subnets within the same Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN). You have created a shared file system for the two NFS clients who want to connect to the same file system, but you want to restrict one of the clients to have READ access while the other has READ/Write access. Which OCr feature would you leverage to meet this requirement?

  • A. Use File Storage NFS Export Options to control access for the NFS clients
  • B. Use VCN security rules to control access for the NFS clients
  • C. Use OCI Identity Access Management to control access for the NFS clients
  • D. Use NFS security to control access for the NES clients

Answer: A

Explanation:
Explanation
Oracle Cloud Infrastructure File Storage service provides a durable, scalable, secure,enterprise-grade network file system. You can connect to a File Storage service file system from any bare metal, virtual machine, or container instance in your Virtual Cloud Network (VCN). You can also access a file system from outside the VCN using OracleCloud Infrastructure FastConnect and Internet Protocol security (IPSec) virtual private network (VPN).
EXPORT
Exports control how NFS clients access file systems when they connect to a mount target. File systems are exported (made available) through mounttargets. Each mount target maintains an export set which contains one or many exports. A file system must have at least one export in one mount target in order for instances to mount the file system. The information used by an export includes the file system OCID, mount target OCID, export set OCID, export path, and client export options. For more information, see Managing Mount Targets.
EXPORT SET
Collection of one or more exports that control what filesystems the mount target exports using NFSv3 protocol and how those file systems are found using the NFS mount protocol. Each mount target has an export set. Each file system associated with the mount target has at least one export in the export set.
EXPORT PATH
A path that is specified when an export is created. It uniquely identifies the file system within the mount target, letting you associate up to 100 file systems to a single mount target. This path is unrelated to any path within the file system itself, or the client mount point path.
EXPORT OPTIONS
NFS export options are a set of parameters within the export that specify the level of access granted to NFS clients when they connect to a mount target. An NFS export options entry within an export defines access for a single IP address or CIDR block range. For more information, see Working with NFS Export Options.

 

NEW QUESTION 99
When terminating a compute instance, you want to preserve theboot volume and its data.
Which step will you need to perform?

  • A. Reboot the instance first, and then terminate the instance.
  • B. Before terminating the instance, you must detach the boot volume.
  • C. Disable the default optionto delete the boot volume when terminating an instance.
  • D. You cannot preserve the boot volume; it will always be deleted when you terminate the instance.

Answer: C

Explanation:
Explanation
References: Thedialog will show you when you terminate the instance. If you want to preserve the boot volume associated with the instance, uncheck Permanently delete the attached Boot Volume.
https://docs.cloud.oracle.com/iaas/Content/Compute/Tasks/terminatinginstance.htm

 

NEW QUESTION 100
You have multiple applicationsinstalled on a compute instance and these applications generate a large amount of log files. These log files must reside on the boot volume for a minimum of 15 days and must be retained for at least 60 days. The 60-day retention requirement is causing an issue with available disk space.
What are the two recommended methods to provide additional boot volume space for this compute instance?
(Choose two.)

  • A. Write a custom script to remove the log files on a daily basis and free up the space on the boot volume.
  • B. Terminate the instance while preserving the boot volume. Create a new instance from the boot volume and select a DenseIO shape to take advantage of local NVMe storage.
  • C. Create a custom image and launch a new compute instance with a larger boot volume size.
  • D. Create and attach a block volume to the compute instance and copythe log files.
  • E. Create an object storage bucket and use a script that runs daily to move log files older than 15 days to the bucket.

Answer: C,E

Explanation:
Explanation
These log files must resideon the boot volume for a minimum of 15 days so you have to increase the boot Volume

 

NEW QUESTION 101
Which two statements about file storage service (FSS) are accurate? (Choose two.)

  • A. Security lists can be used asa virtual firewall to prevent an instance from mounting an FSS mount target within the same subnet
  • B. Data in transit to an FSS mount target is encrypted
  • C. Encryption of file system in FSS is optional
  • D. Identity and Access Management (IAM) controls which file systems are mountable by which instances
  • E. FSSleverages UNIX user group and permission checking for file access security

Answer: B,E

Explanation:
Explanation
All data is encrypted at rest. and In-transit encryption provides a way to secure yourdata between instances and mounted file systems using TLS v. 1.2 (Transport Layer Security) encryption.
File Storage service supports the AUTH_UNIX style of authentication and permission checking for remote NFS client requests.

 

NEW QUESTION 102
Whichthree types of credentials are used to manage Oracle Cloud Infrastructure Identity and Access Management (IAM)? (Choose three.)

  • A. SSH Key
  • B. API Signing Key
  • C. Console Password
  • D. Windows Password
  • E. Swift Password

Answer: B,C,E

Explanation:
Explanation
References:https://cloud.oracle.com/iaas/whitepapers/best-practices-for-iam-on-oci.pdfYou manage the following types of credentials with Oracle Cloud Infrastructure IAM:Console password: For signing in to the Console, which is the user interface for interacting with Oracle Cloud InfrastructureAPI signing key (in PEM format): For sending API requests, which require authenticationSwift password: For using a Swift client with Recovery Manager (RMAN) to back up an Oracle Database System (DB System) database to Object Storage

 

NEW QUESTION 103
Which statement is true about interconnecting Virtual CloudNetwork (VCN)?

  • A. Peering VCNs should not have overlapping CIDR blocks.
  • B. The only way to interconnect VCNs is through peering.
  • C. VCNs must be in the same tenancy to be peered.
  • D. VCNs support transitive peering.

Answer: A

Explanation:
Reference:https://docs.cloud.oracle.com/en-us/iaas/Content/Network/Tasks/remoteVCNpeering.htm(note)

 

NEW QUESTION 104
Which three are valid Terraform configuration components? (Choose three.)

  • A. region
  • B. data source
  • C. metadata
  • D. variable
  • E. resource
  • F. instance

Answer: B,D,E

 

NEW QUESTION 105
Which of the following statement is true regarding Oracle Cloud Infrastructure Object Storage Pre-Authenticated Requests?

  • A. It is not possible to create pre-authenticated requests for the buckets, but only for the objects
  • B. It Is not possible to create pre-authenticated requests for "archive" storage tier
  • C. Pre-authenticated requests don't have an expiration
  • D. Changing the bucket visibility does not change existing pre-authenticated requests

Answer: D

Explanation:
Explanation
Pre-authenticated requests provide a way to let users access a bucket or an object without having their own credentials, as long as the request creator has permissions to access those objects. For example, you can create a request that lets an operations support user upload backups to a bucket without owning API keys. Or,you can create a request that lets a business partner update shared data in a bucket without owning API keys.
When you create a pre-authenticated request, a unique URL is generated. Anyone you provide this URL to can access the Object Storage resourcesidentified in the preauthenticated request, using standard HTTP tools like curl and wget.
Understand the following scope and constraints regarding pre-authenticated requests:
Users can't list bucket contents.
You can create an unlimited number of pre-authenticated requests.
There is no time limit to the expiration date that you can set.
You can't edit a pre-authenticated request. If you want to change user access options in response to changing requirements, you must create a new preauthenticated request.
The target and actions for a pre-authenticated request are based on the creator's permissions. The request is not, however, bound to the creator's account login credentials. If the creator's login credentials change, a pre-authenticated request is not affected.
You cannot delete a bucket that has a pre-authenticated request associated with that bucket or with an object in that bucket.
Understand the following scope and constraints regarding public access:
Changing the type of access is bi-directional.You can change a bucket's access from public to private or from private to public.
Changing the type of access doesn't affect existing pre-authenticated requests. Existing pre-authenticated requests still work.

 

NEW QUESTION 106
You have been tasked with creating one virtual cloud network (VCN) each for two line of business (LOB) applications. LOB A and LOB B will need to communicate with each other. To ensure that you can utilize VCN peering, which network CIDR ranges should be used?

  • A. VCN A (10.0.0.0/16) and VCN B (10.0.16.0/24)
  • B. VCN A (10.0.2.0/16) and VCN B (10.0.2.0/25)
  • C. VCN A (172.16.0.0/24) and VCN B (172.16.0.0/28)
  • D. VCN A (10.0.0.0/16) and VCN B (10.1.0.0/16)

Answer: D

Explanation:
Explanation
VCN A (10.0.0.0/16) will use a range of IPS from .255.255 and VCN B (10.1.0.0/16) will use a range of IPS from 10.1.0.0 to 10.1.255.255 so will not be any Overlap between 2VCNs

 

NEW QUESTION 107
You work for a health insurance company that stores a large number of patient health records in an Oracle Cloud Infrastructure (OCI) Object Storage bucket named "HealthRecords".
Each record needs to be securely stored for a period of 5 years for regulatory compliance purposes and cannot be modified, overwritten or deleted during this time period.
What can you do to meet this requirement?

  • A. Enable encryption on the HealthRecords bucket using your own vault master encryption keys.
  • B. Create an OCI Object Storage Lifecycle Policies rule to archive objects in the HealthRecords bucket for five years.
  • C. Create an OCI Object Storage time-bound Retention Rule on the HealthRecords bucket for five years.
    Enable Retention Rule Lock on this bucket.
  • D. Enable versioning on the HealthRecords bucket.

Answer: C

Explanation:
Reference:https://docs.cloud.oracle.com/en-us/iaas/Content/Object/Tasks/usingretentionrules.htm

 

NEW QUESTION 108
......

Latest 1z0-1072-22 Exam Dumps Oracle Exam: https://www.pdfdumps.com/1z0-1072-22-valid-exam.html

New 2022 Latest Questions 1z0-1072-22 Dumps - Use Updated Oracle Exam: https://drive.google.com/open?id=18H_9lVpWwTFOY-cPdk1vDedEYypXNiur

Related Articles

more
Oracle 1z0-1072-22 Certification Practice Exam

PDFDumps exam dumps are edited on the base of the real exam, so the high hit rate is without doubt. PDFDumps makes you pass your exam for just one-shot and with high score.

Latest PDF Dumps

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 PDFDumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy