Oracle 1Z0-1072-20 Online Practice Questions and Exam Preparation

Oracle 1Z0-1072-20 Online Questions & Answers

• Question 181:

  Which two statements are true about policies?

  A. You can use read, write, manage, and inspect as verbs for defining a policy.
  B. A policy is a document that specifies who can access which Oracle Cloud Infrastructure resources that your company has, and how.
  C. Users need not do anything but still have to be added to a group with appropriate policies defined.
  D. You can deny access to a group via policies.
  B. A policy is a document that specifies who can access which Oracle Cloud Infrastructure resources that your company has, and how.
  C. Users need not do anything but still have to be added to a group with appropriate policies defined.

• Question 182:

  In what two ways does Oracle Cloud Infrastructure (OCI) file storage service differ from OCI object storage and block volume services?

  A. You can move object storage buckets, block volumes and file storage mount targets between compartments.
  B. File Storage uses the network file system (NFS) protocol, whereas block volume uses iSCSI.
  C. Block volume service Is NVMe based, while file storage service is not.
  D. File storage mount target does not provide a private IP address, while the object storage bucket provides one.
  A. You can move object storage buckets, block volumes and file storage mount targets between compartments.
  B. File Storage uses the network file system (NFS) protocol, whereas block volume uses iSCSI.

  ---

  The mount target provides the IP address or DNS name that is used together with a unique export path to mount the file system. You can move mount targets from one compartment to another.

• Question 183:

  You have hired a new employee to run reports from the Autonomous Data Warehouse (ADW) and are not confident in their SQL writing ability. Into which consumer group will you assign this individual to minimize the impact of their code?

  A. Lowest
  B. Medium
  C. Highest
  D. High
  E. Low
  E. Low

  ---

  in ADW, The tnsnames.ora file provided with the credentials zip file contains three database service names identifiable as high, medium, and low. The predefined service names provide different levels of performance and concurrency for Autonomous Data Warehouse. high: The High database service provides the highest level of resources to each SQL statement resulting in the highest performance, but supports the fewest number of concurrent SQL statements. Any SQL statement in this service can use all the CPU and IO resources in your database. The number of concurrent SQL statements that can be run in this service is 3, this number is independent of the number of OCPUs in your database. medium: The Medium database service provides a lower level of resources to each SQL statement potentially resulting a lower level of performance, but supports more concurrent SQL statements. Any SQL statement in this service can use multiple CPU and IO resources in your database. The number of concurrent SQL statements that can be run in this service depends on the number of OCPUs in your database. low: The Low database service provides the least level of resources to each SQL statement, but supports the most number of concurrent SQL statements. Any SQL statement in this service can use a single CPU and multiple IO resources in your database. The number of concurrent SQL statements that can be run in this service can be up to 300 times the number of OCPUs. The predefined service names provide different levels of performance and concurrency for Autonomous DB Choose whichever database service offers the best balance of performance and concurrency. Use the low database service name. to minimize the impact of their SQLs to by low consumer group

• Question 184:

  Which two actions will occur when a back-end server that is registered with a backend set is marked to drain connections? (Choose two.)

  A. It disallows new connections to that backend server.
  B. It keeps the connections to that instance open and attempts to complete any in-flight requests.
  C. It redirects the requests to a user-defined error page.
  D. It immediately closes all existing connections to that instance.
  E. It forcibly closes all connections to that instance after a timeout period.
  A. It disallows new connections to that backend server.
  B. It keeps the connections to that instance open and attempts to complete any in-flight requests.

  ---

  References:

  https://docs.cloud.oracle.com/iaas/Content/Balance/Reference/sessionpersistence.htm The Load Balancing service considers a server marked drain available for existing persisted sessions. New requests that are not part of an existing

  persisted session are not sent to that server.

• Question 185:

  You have compartments C and D under the root compartment in your Oracle Cloud Infrastructure (OCI) tenancy; compartment C contains a sub-compartment also named D. You are trying to move this sub-compartment D to the parent compartment D like shown in the picture, but the move fails.

  

  What is the reason for this error?

  A. You need to move all the compartments in the hierarchy to the new parent compartment.
  B. You cannot move a subcompartment to another parent compartment.
  C. Both parent and child compartments cannot have the same name.
  D. Sub-compartment D needs to be empty before it can be moved.
  C. Both parent and child compartments cannot have the same name.

  ---

  Reference:

  https://docs.cloud.oracle.com/en-us/iaas/Content/Identity/Tasks/managingcompartments.htm (restriction on moving compartments)

• Question 186:

  A customer has launched a compute Instance in the Virtual Cloud Network (VCN), which has an Internet gateway, a service gateway, a default security lists and a default route table. Customer has opened up Port 22 in the security lists

  attached to the compute instance subnet, however is still unable to connect to compute instances using ssh.

  Which option would remedy this situation?

  A. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Internet Gateway (IGW)
  B. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful egress rule to allow icmp traffic in addition to the port 22.
  C. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Dynamic Routing Gateway (DRG)
  D. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Service Gateway (SGW)
  A. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Internet Gateway (IGW)

  ---

  You create an internet gateway in the context of a specific VCN. In other words, the internet gateway is automatically attached to a VCN. However, you can disable and re-enable the internet gateway at any time.

  For traffic to flow between a subnet and an internet gateway, you must create a route rule accordingly in the subnet's route table (for example, destination CIDR = 0.0.0.0/0 and target = internet gateway). If the internet gateway is disabled, that

  means no traffic will flow to or from the internet even if there's a route rule that enables that traffic. For the purposes of access control, you must specify the compartment where you want the internet gateway to reside. If you're not sure which

  compartment to use, put the internet gateway in the same compartment as the cloud network.

• Question 187:

  How can you provide users access to an existing compartment?

  A. by granting users access to a compartment when the compartment is created
  B. by adding users to a group and defining a policy to provide the group access to the compartment
  C. by adding users to a compartment. All users in the compartment will have access to the objects in the compartment.
  D. by granting access directly to the user when the user is created
  B. by adding users to a group and defining a policy to provide the group access to the compartment

  ---

  A policy is a document that specifies who can access which Oracle Cloud Infrastructure resources that your company has, and how. A policy simply allows a group to work in certain ways with specific types of resources in a particular

  compartment

  In general, here's the process an IAM administrator in your organization needs to follow:

  Define users, groups, and one or more compartments to hold the cloud resources for your organization.

  Create one or more policies, each written in the policy language. Place users into the appropriate groups depending on the compartments and resources they need to work with.

  Provide the users with the one-time passwords that they need in order to access the Console and work with the compartments. For more information,

• Question 188:

  Which two are valid options when migrating a database from on-premise to Oracle Cloud Infrastructure? (Choose two.)

  A. snapping or cloning storage form on-premise to Oracle Cloud Infrastructure
  B. performing a backup to Oracle Cloud Infrastructure Object Storage, and then restoring to a database server on Oracle Cloud Infrastructure
  C. performing RMAN backup to an on-premise storage device, and then shipping to Oracle Cloud Infrastructure D. converting the Oracle database to a NoSQL database and migrating to Oracle Cloud Infrastructure by using rsync file copy
  A. snapping or cloning storage form on-premise to Oracle Cloud Infrastructure
  C. performing RMAN backup to an on-premise storage device, and then shipping to Oracle Cloud Infrastructure D. converting the Oracle database to a NoSQL database and migrating to Oracle Cloud Infrastructure by using rsync file copy

• Question 189:

  You are an administrator with an application running in Oracle Cloud Infrastructure (OCI). The company has a fleet of OCI compute virtual instances behind an load balancer. The load balancer backend set health check API is providing a 'Critical' level warning. You have confirmed that your application Is running healthy on the backend servers. What Is the possible reason for this 'Critical' warning?

  A. The load balancer listener is not configured correctly.
  B. The security list associated with the subnet In which the backend server is provisioned does not include the IP range for the source of the health check requests.
  C. A user does not have correct Identity and Access Management (IAM) credentials on the backend servers.
  D. The route table associated with the subnet in which the backend server is provisioned does not include the route for the OCI load balancer.
  B. The security list associated with the subnet In which the backend server is provisioned does not include the IP range for the source of the health check requests.

• Question 190:

  A company currently uses Microsoft Active Directory as its identity provider. The company recently purchased Oracle Cloud Infrastructure (OCI) to leverage the cloud platform for its test and development operations. As the administrator, you are now tasked with giving access only to developers so that they can start creating resources in their OCI accounts. Which step will you perform to achieve this requirement?

  A. Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process.
  B. Federate all Microsoft Active Directory groups with OCI to allow users to use their existing credentials.
  C. Create a new user account for each user, and then create policies to provide access to developers.
  D. Create a group for developers on OCI, export all the developers from Microsoft Active Directory, and then import them into the Identity and Access Management (IAM) group.
  A. Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process.