You have an application running on Oracle Cloud Infrastructure. You Identified that the read and write operations are slowing your application down enough to impair user access. The application is currently using a VM.Standard2.1 compute without any block storage attached to it. Which two options allow you to increase disk IOPS performance?
A. Terminate the compute instance preserving the boot volume. Create a new compute instance using the VM.DenseI02.8 shape using the boot volume preserved and use the NVMe devices to host your application. B. Terminate the compute instance preserving the boot volume. Create a new compute instance using the VM.Standard2.2 shape using the boot volume preserved and attach a new block volume to host your application. C. Terminate the compute instance preserving the boot volume. Create a new compute instance using the VM.Standard2.2 shape using the boot volume preserved, but no block volume attached. D. Terminate the compute instance preserving the boot volume. Create a new compute instance using the BM.GPU2.2 shape using the boot volume preserved, but no block volume attached.
A. Terminate the compute instance preserving the boot volume. Create a new compute instance using the VM.DenseI02.8 shape using the boot volume preserved and use the NVMe devices to host your application. D. Terminate the compute instance preserving the boot volume. Create a new compute instance using the BM.GPU2.2 shape using the boot volume preserved, but no block volume attached.
Question 212:
You have been asked to create an Identity and Access Management (IAM) user that will authenticate to Oracle Cloud Infrastructure (OCI) API endpoints. This user must not be given credentials that would allow them to log into the OCI
console.
Which two authentication options can you use? (Choose two.)
A. SSL certificate B. API signing key C. SSH key pair D. PEM Certificate file E. Auth token
Which two statements are true about Oracle Cloud Infrastructure Compute Service? (Choose two.)
A. You can launch a virtual or bare metal instance by using the same LaunchInstance API. B. You cannot launch a bare metal server in Oracle Cloud Infrastructure Compute Service. C. You can attach a block volume in an Availability Domain other than your compute instance. D. You can share custom images across tenancies and regions.
A. You can launch a virtual or bare metal instance by using the same LaunchInstance API. D. You can share custom images across tenancies and regions.
References:
Regions and Availability Domains
Volumes are only accessible to instances in the same availability domain . You cannot move a volume between availability domains or regions.
An Oracle Cloud Infrastructure tenancy administrator is not able to delete a user in the tenancy. What can cause this issue?
A. User has multi-factor authentication (MFA) enabled. B. User is member of an Identity and Access Management (IAM) group. C. Users can be blocked but not deleted. D. User needs to be deleted from federation Identity Provider (IdP) before deleting from IAM.
A. User has multi-factor authentication (MFA) enabled.
Question 215:
What happens when you run terraform plan?
A. It configures, reconfigures, and instantiates resources and their dependencies. B. It shows the operator the course of action that would be taken if a change is applied. C. It deletes all existing resources and re-creates them. D. It shows a dependency graph.
B. It shows the operator the course of action that would be taken if a change is applied.
References:
The terraform plan command is used to create an execution plan. Terraform performs a refresh, unless explicitly disabled, and then determines what actions are necessary to achieve the desired state specified in the configuration files.
This command is a convenient way to check whether the execution plan for a set of changes matches your expectations without making any changes to real resources or to the state. For example, terraform plan might be run before
committing a change to version control, to create confidence that it will behave as expected.
Question 216:
You have an application server running in a public subnet on a compute instance in US West (us- phoenix-1) region of Oracle Cloud Infrastructure (OCI). The data sitting on this instance needs to be copied to OCI Object storage bucket
available in the same region without traversing over the internet. To enable the connectivity between the instance and Object Storage, you created a service gateway with service CIDR of all Object Storage in us-phoenix-1 enabled. You also
modified the security rules to allow the desired traffic.
However, when you tried sending the data to the Object Storage bucket, you notice that the data is going over the internet and not via the service gateway.
What could be the possible reason for this behavior?
A. The route table associated with the subnet has no route rule where the destination is object storage service B. The service gateway created in the VCN resides in a different availability domain C. The security list associated with the subnet has an egress rule that allows all traffic to be forwarded to a destination CIDR 0.0.0.0/0 D. Identity and Access Management (IAM) policies restrict the access to the object storage bucket
A. The route table associated with the subnet has no route rule where the destination is object storage service
Question 217:
Which tool can automatically install Oracle Cloud Infrastructure CLI?
You are designing a shared storage solution for your company in Oracle Cloud Infrastructure. The proposed storage solution should allow users to create a hierarchical structure (similar to the directory structure in Linux or Windows based
systems). The solution should provide data encryption and a large amount of storage space.
Which would be the best implementation strategy?
A. Use block storage. Create and attach a large block storage volume to one compute instance. Assign a public IP to the compute instance. Store data on the block storage and access it by connecting to the compute instance. B. Use object storage. Create a single namespace and multiple buckets to create the hierarchical directory structure. C. Use object storage. Create multiple namespaces with one bucket each. Make the buckets publicly accessible. D. Use file storage service. Create a file system and a mount target. Share the private IP of the mount target.
D. Use file storage service. Create a file system and a mount target. Share the private IP of the mount target.
Question 219:
A financial firm is designing an application architecture for its online trading platform that must have high availability and fault tolerance.
Their solutions architect configured the application to use an Oracle Cloud Infrastructure Object Storage bucket located in the US West (us-phoenix-1) region to store large amounts of financial data. The stored financial data in the bucket must
not be affected even if there is an outage in one of the Availability Domains or a complete region.
What should the architect do to avoid any costly
A. Create a new Object Storage bucket in another region and configure lifecycle policy to move data every 5 days. B. Create a lifecycle policy to regularly send data from Standard to Archive storage. C. Copy the Object Storage bucket to a block volume. D. Create a replication policy to send data to a different bucket in another OCI region.
A. Create a new Object Storage bucket in another region and configure lifecycle policy to move data every 5 days.
Question 220:
You have launched a compute instance running Oracle database in a private subnet in the Oracle Cloud Infrastructure US East region. You have also created a Service Gateway to back up the data files to OCI Object Storage in the same region. You have modified the security list associated with the private subnet to allow traffic to the Service Gateway, but your instance still cannot access OCI Object Storage. How can you resolve this issue?
A. Add a stateful rule that enables ingress HTTPS (TOP port 443) traffic to 001 Object Storage in the security list associated with the private subnet B. Add a stateful rule that enables egress HTTPS (TCP port 443) traffic to OCI Object Storage in the security list associated with the private subnet C. Add a rule in the Route Table associated with the private subnet with Target type as "Service Gateway" and destination service as all IAD services in the Oracle Service Network.' D. Use the default Security List, which has ports open for OCI Object Storage
C. Add a rule in the Route Table associated with the private subnet with Target type as "Service Gateway" and destination service as all IAD services in the Oracle Service Network.'
A service gateway lets your virtual cloud network (VCN) privately access specific Oracle services without exposing the data to the public internet. No internet gateway or NAT is required to reach those specific services. The resources in the
VCN can be in a private subnet and use only private IP addresses. The traffic from the VCN to the Oracle service travels over the Oracle network fabric and never traverses the internet.
The service gateway is regional and enables access only to supported Oracle services in the same region as the VCN.
For traffic to be routed from a subnet in your VCN to a service gateway, you must add a rule accordingly to the subnet's route table. The rule must use the service gateway as the target. For the destination, you must use the service CIDR label
that is enabled for the service gateway. This means that you don't have to know the specific public CIDRs, which could change over time.
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only Oracle exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your 1Z0-1072-21 exam preparations
and Oracle certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.