Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Oracle 1z0-997-22

Oracle 1z0-997-22 Exam Practice Questions (P. 5)

  • Full Access (58 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
You are a solutions architect for a global health care company, which has numerous data centers around the globe. Due to the increasing volume of data that your company stores, you are tasked with setting up a durable, cost-effective solution to archive data from existing on-premises tape-based backup infrastructure to Oracle Cloud Infrastructure (OCI).
Which is the most effective mechanism to implement this requirement?
  1. A
    Use the File Storage Service in OCI and copy the data from your existing tape-based backup to the shared file system.
  2. B
    Set up an on-premises OCI Storage Gateway, which will back up your data to the OCI Object Storage Standard tier. Use Object Storage life cycle policy management to move any data older than 30 days from the Standard to the Archive tier.
  3. C
    Set up FastConnect to connect your on-premises network to OCI VCN and use the rsync tool to copy your data to the OCI Object Storage Archive tier.
  4. D
    Set up an on-premises OCI Storage Gateway, which will back up your data to the OCI Object Storage Archive tier.
  5. E
    Set up an on-premises OCI Storage Gateway, which will back up your data to the OCI Object Storage Standard tier.

Correct Answer:
D

Question #22
A company runs a public-facing application that uses a Java-based web service via a RESTful API in their on-premises data center. Use of the API is expected to double with a new product launch. The business wants to migrate their application to Oracle Cloud Infrastructure (OCI) to meet the scale and reliability requirements.
In order to achieve this, they will divert only 40% of the traffic to the new Apache Tomcat web servers running on OCI and serve the remaining 60% traffic through their on-premises infrastructure. Once the migration is complete and application works fine, they will divert all traffic to OCI.
How can these requirements be met with the LEAST amount of effort?
  1. A
    Set up a VPN connectivity between on-premises infrastructure and OCI and create routing tables to distribute traffic between them.
  2. B
    Use OCI Traffic management service with Failover steering policy and distribute traffic between OCI and on-premises infrastructure.
  3. C
    Use OCI Load Balancing service to distribute traffic between OCI and on-premises infrastructure.
  4. D
    Use OCI Traffic management service with Load Balancing steering policy and distribute traffic between OCI and on-premises infrastructure.

Correct Answer:
D

Question #23
You are developing a Serverless function for your company's IoT project. This function should access Oracle Cloud Infrastructure (OCI) Object Storage to store some files. You choose Oracle Functions to deploy this function on OCI. However, your security team doesn't allow you to carry any API Token or RSA Key to authenticate the function against the OCI API to access the Object Storage.
What should you do to get this function to access OCI Object Storage without carrying any static authentication files?
  1. A
    There is no way that you can access the OCI resources from a running function.
  2. B
    Set up a Dynamic Group using the format below:
    All {resource, type = ‘fnfunc’, resource.compartment.id -
    ‘ocidl.compartment.ocl..aaaaaaaa23________smwa’)
    Create a policy using the format below to give access to OCI Object Storage: allow dynamic-group acme-func-dyn-grp to manage objects in compartment acme- storage-compartment where all (target.bucket.name-‘acme-functions-bucket’)
    Include a call to a 'resource principal provider' in your function code as below: signer - oci.auth.signers.get_resource_principals_signer{}
  3. C
    Add these two policy statements for your compartment to give your function automatic access to all other OCI resources:
    Allow group to manage fn-app in compartmert
    Allow group to manage fn-function in compartment
  4. D
    Add these two policy statements for your compartment and then include a call to a 'resource principal provider' in your function code:
    Allow group acme functions-developers to inspect repos in tenancy
    Allow group acme-functions-developers to manage repos in tenancy where all {target.repo.name-/acme-web-app*/ }

Correct Answer:
B

Question #24
Your company developed a function that needs to access the Oracle Database to inject some data to it at runtime. You are tasked to move this function to the Oracle Cloud Infrastructure (OCI) and use Oracle Functions and access Oracle Autonomous Database. You created a Dockerfile below to run this function, however, you are getting this error "cx_Oracle.DatabaseError: ORA-12560: TNS:protocol adapter error".

What should you do to make sure that Oracle Functions can run this Dockerfile properly?
  1. A
    Use --privileged flag while running the Docker container to add runtime privilege.
  2. B
    Use –cap-add-ALL flag while running the Docker container to add runtime capability.
  3. C
    You need to run this Container as root, so add this line:
    USER root
  4. D
    Add these two lines to your Dockerfile:
    groupadd --gid 1000 fn && \
    adduser --uid 1000 --gid fn fn

Correct Answer:
D

Question #25
Your company will soon start moving critical systems into the Oracle Cloud Infrastructure (OCI) platform. These systems will reside in the us-phoenix-1 and us-ashburn-1 regions. As part of the migration plan, you review the company's existing security policies and written guidelines for the OCI platform usage within the company.
Your security processes for critical systems require that all data be encrypted at rest using Customer-Managed Keys.
Which TWO options ensure compliance with this policy? (Choose two.)
  1. A
    When you create a new compute instance through the OCI console, use the default options for "configure boot volume" to speed up the process of creating this compute instance.
  2. B
    When you create a new compute instance through the OCI console, use the default shape to speed up the process of creating this compute instance.
  3. C
    When you create a new OCI Object Storage bucket through the OCI console, you need to choose the "ENCRYPT USING CUSTOMER-MANAGED KEYS" option.
  4. D
    When you create a new block volume through the OCI console, select the "Encrypt using Customer-Managed Keys" checkbox and use the encryption keys generated and stored in OCI Vault.
  5. E
    You do not need to perform any additional actions because the OCI Block Volume service always encrypts all block volumes, boot volumes, and volume backups at rest by using the Advanced Encryption Standard (AES) algorithm with 256-bit encryption.

Correct Answer:
CD

Previous Questions Next Questions

All Pages