Oracle 1Z0-997-20 Online Practice Questions and Exam Preparation

Oracle 1Z0-997-20 Online Questions & Answers

• Question 51:

  You are creating an Oracle Cloud Infrastructure Dynamic Group. To determine the members of this group you are defining a set of matching rules.

  Which of the following are the supported variables to define conditions in the matching rules? (Choose Two)

  A. instance.compartment.id -the OCID of the compartment where the instance resides.
  B. instance.tenancy.id -the OCID of the tenancy where the instance resides.
  C. tag...value -the tag namespace and tag key.
  D. iam.policy.id - the OCID of the IAM policy to apply to the group.
  A. instance.compartment.id -the OCID of the compartment where the instance resides.
  C. tag...value -the tag namespace and tag key.

• Question 52:

  You are working on the migration of the web application infrastructure of your company from on-premises to Oracle Cloud Infrastructure. You need to ensure that the DNS cache entries of external clients will not direct them to the on-premises infrastructure after switching to the new infrastructure.

  Which of the following options will minimize this problem?

  A. Reduce the TTL of the DNS records after the switch.
  B. DNS changes propagate fast enough that it is not necessary to take any action.
  C. Increase the TTL of the DNS records before the switch.
  D. Increase the TTL of the DNS records after the switch.
  E. Reduce the TTL of the DNS records before the switch.
  E. Reduce the TTL of the DNS records before the switch.

• Question 53:

  A startup company is looking for a solution for processing of data transmitted by the IOT devices fitted to transport vehicles that carry frozen foods. The data should be consumed and processed in real time. The processed data should be archived to OCI Object Storage bucket. and use Autonomous Data warehouse (ADW) to handle analytics.

  Which architecture will help you meet this requirement?

  A. Use OCI Streaming Service to collect the incoming biometric data. Use an open source Hadoop cluster to analyze the data horn streaming service. Store the results to OCI Autonomous Data warehouse (ADW) to handle complex analytics
  B. Use OCI Streaming Service to collect the incoming biometric data. Use Oracle Functions to process the date and show the results on a real-time dashboard and store the results lo OCI Object Storage Store the data In OCI Autonomous Data warehouse (ADW) to handle analytics.
  C. Create an OCI Object Storage bucket to collect the incoming biometric data from the smart pet collar Fetch the data horn OC\ Object storage to OCI Autonomous Data Warehouse (ADW) every day and run analytics Jobs with it
  D. Launch an open source Hadoop cluster to collect the Incoming biometrics data Use an Open source Fluentd cluster to analyze the- data me results to OCI Autonomous Transaction Processing (ADW)to handle complex analytics
  B. Use OCI Streaming Service to collect the incoming biometric data. Use Oracle Functions to process the date and show the results on a real-time dashboard and store the results lo OCI Object Storage Store the data In OCI Autonomous Data warehouse (ADW) to handle analytics.

  ---

  Explanation/Reference:

  Real-time processing of high-volume streams of data

  - OCI Streaming service provides a fully managed, scalable, durable storage option for continuous, highvolume streams of data that you can consume and process in real-time

  -Use cases Log and Event data collection Web/Mobile activity data ingestion IoT Data streaming for processing and alerts Messaging: use streaming to decouple components of large systems

  - Oracle managed service with REST APIs (Create, Put, Get, Delete)

  -Integrated Monitoring

• Question 54:

  You are working as a security consultant with a global insurance organization which is using Microsoft Azure Active Directory as an identity provider to manage user login/passwords. When a user logs in to Oracle Cloud Infrastructure (OCI) console, it should get authenticated by Azure AD.

  Which set of steps are required to be configured in OCI to meet this requirement?

  A. Setup Azure AD as an Identity Provider, import users and groups from Azure AD to OCI, set up IAM policies to govern access to Azure AD groups.
  B. Setup Azure AD as an Enterprise Application, configure OCI for single sign-on, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups.
  C. Setup Azure AD as an Enterprise Application, map Azure AD users, groups and policies to OCI groups and users.
  D. Setup Azure AD as an Identity Provider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups.
  D. Setup Azure AD as an Identity Provider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups.

• Question 55:

  Your customer recently ordered for a 1-Gbps Fast Connect connection In ap-tokyo-1 region of Oracle Cloud Infrastructure (OCI). They will us this to one Virtual cloud Network (VCN) in their production (OC1) tenancy and VCN In their development OC1 tenancy

  As a Solution Architect, how should yon configure and architect the connectivity between on premises and VCNs In OCI?

  A. Create two private virtual circuits on the FastConnect link. Create two Dynamic Routing Gateways, one for each VCNs. Attach the virtual circuits to the dynamic routing gateways.
  B. You cannot achieve connectivity using single FastConnect link as the production and the development VCNs-are in separate tenancies. Request one more FastConnect connection.
  C. Create a single private virtual circuit over FastConnect and attach fastConnect to either of the VCN's Dynamic Routing Gateway. Use Remote Peering to peer production and development VCNs.
  D. Create a hub-VCN that uses Dynamic Routing Gateway (DRG) to communicate with on- premises network over FastConnect. Connect the hub-VCN to the production VCN spoke and with development VCN spoke, each peered via their respective local Peering Gateway (LPG)
  D. Create a hub-VCN that uses Dynamic Routing Gateway (DRG) to communicate with on- premises network over FastConnect. Connect the hub-VCN to the production VCN spoke and with development VCN spoke, each peered via their respective local Peering Gateway (LPG)

  ---

  Explanation/Reference:

  There's an advanced routing scenario called transit routing that enables communication between an onpremises network and multiple VCNs over a single Oracle Cloud Infrastructure FastConnect or IPSec VPN.

  The VCNs must be in the same region and locally peered in a hub-and-spoke layout. As part of the scenario, the VCN that is acting as the hub has a route table associated with each LPG (typically route tables are associated with a VCN's

  subnets).

  

• Question 56:

  Your company developed a function that needs to access the Oracle Database to inject some data to it at runtime. You are tasked to move this function to the

  Oracle Cloud Infrastructure (OCI) and use Oracle Functions and access Oracle Autonomous Database. You created a Dockerfile below to run this function, however, you are getting this error "cx_Oracle.DatabaseError: ORA""12560: TNS:protocol adapter error".

  

  What should you do to make sure that Oracle Functions can run this Dockerfile properly? (Choose the best answer.)

  A. Add these two lines to your Dockerfile: groupadd """"gid 1000 fn andand \ adduser """"uid 1000 """"gid fn fn
  B. Use """"privileged flag while running the Docker container to add runtime privilege
  C. Use """"cap""add=ALL flag while running the Docker container to add runtime capability
  D. You ned to run this Container as root, so add this line: USER root
  A. Add these two lines to your Dockerfile: groupadd """"gid 1000 fn andand \ adduser """"uid 1000 """"gid fn fn

  ---

  Explanation/Reference:

  https://docs.cloud.oracle.com/en-us/iaas/Content/Functions/Tasks/functionsrunningasunprivileged.htm

• Question 57:

  A new international hacktivist group, based in London, launched wide scale cyber attacks including SQL Injection and Cross-Site Scripting (XSS) across multiple websites which are hosted in Oracle Cloud Infrastructure (OCI). As an IT consultant, you must configure a Web Application Firewall (WAF) to protect these websites against the attacks.

  How should you configure your WAF to protect the website against those attacks? (Choose the best answer.)

  A. Enable an Access Rule that contains XSS Filters Categories and SQL Filters Categories.
  B. Enable a Protection Rule to block the attacks based on HTTP Headers that contain XSS and SQL strings.
  C. Enable a Protection Rule that contains XSS Filters Categories and SQL Filters Categories.
  D. Enable an Access Rule to block the IP Address range from London.
  E. Enable a Protection Rule to block requests that came from London.
  C. Enable a Protection Rule that contains XSS Filters Categories and SQL Filters Categories.

  ---

  Explanation/Reference:

  https://www.ateam-oracle.com/using-oci-waf-web-application-firewall-with-oracle-e- businesssuite#:~:text=The%20protection%20rules%20can%20be,achieved%20by%20enabling%20 corresponding%20rules.

• Question 58:

  You are working as a solution architect with a global automotive provider who is looking to create a multi-cloud solution. They want to run their application tier in Microsoft Azure while utilizing the Oracle DB Systems in the Oracle Cloud Infrastructure (OCI).

  What is the most-fault tolerant and secure solution for this customer? (Choose the best answer.)

  A. Deploy the Oracle database system into a public subnet in your VCN and assign a public IP address. Connect your application tier running in Azure to the public IP address of the database system over the internet.
  B. Create a FastConnect virtual circuit with Microsoft Azure as the provider to establish a private interconnect between the application tier running in the Azure Virtual Network and the OCI VCN that contains the Oracle Databases.
  C. Create an encrypted, Virtual Private Network connection between the Microsoft Azure Virtual Network that contains the application tier and the OCI Virtual Cloud Network (VCN) that contains the Oracle Databases.
  D. Use an OCI Virtual Cloud Network remote peering connection to create a remote network connection between the application tier running in Microsoft Azure Virtual Network and Oracle Databases running in the OCI Virtual Cloud Network (VCN).
  B. Create a FastConnect virtual circuit with Microsoft Azure as the provider to establish a private interconnect between the application tier running in the Azure Virtual Network and the OCI VCN that contains the Oracle Databases.

  ---

  Explanation/Reference:

  https://docs.oracle.com/en/solutions/learn-azure-oci-interconnect/index.html#GUID- FBE38C70-A4CF-40C5-A37A-121241D21199

• Question 59:

  You work for a bank as the lead Oracle Cloud Infrastructure architect. You designed a highly scalable solution for your company's banking application. The architecture includes a load balancer, application servers with autoscaling

  configuration based on CPU utilization, and an Autonomous Database with Transaction Processing workload type running in a Virtual Cloud Network (VCN).

  During the peak utilization period, the application users complain that the application runs slow.

  What are two possible reasons for the application running slow at times? (Choose two.)

  A. The VCN does not have a Network Security Group configured to allow traffic from the load balancer to all the application servers in the backend set.
  B. Instance pool in autoscaling configuration for the application servers did not scale out due to compartment quota breach of the VM shapes used by the application servers.
  C. The load balancer is not configured correctly to send traffic to all the listeners of the application servers in the backend set.
  D. Instance pool in autoscaling configuration for the Autonomous Database did not scale out due to misconfigured scaling policy.
  E. Instance pool in autoscaling configuration for the application servers did not scale out due to service limit breach of the VM shapes used by the application servers.
  B. Instance pool in autoscaling configuration for the application servers did not scale out due to compartment quota breach of the VM shapes used by the application servers.
  E. Instance pool in autoscaling configuration for the application servers did not scale out due to service limit breach of the VM shapes used by the application servers.

  ---

  Explanation/Reference:

• Question 60:

  You have an application running in Microsoft Azure and want to use Oracle Autonomous Data warehouse (ADW) instance for running business analytics.

  How can you build a secure solution for such a use-case?

  A. Connect the Oracle ADW in your VCN to the Microsoft Azure VNet over the internet.
  B. Create a software VPN connection between Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) and Microsoft Azure Virtual Network (VNet) and connect the application with Oracle ADW instance.
  C. Setup an interconnect between OCI and Microsoft Azure using FastConnect and ExpressRoute. Use a Service Gateway in OCI Virtual Cloud Network to provide connectivity to the Oracle ADW instance for the application in Microsoft Azure VNet.
  D. Create a software Remote Peering Connection between Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) and Microsoft Azure Virtual Network (VNet) and connect the application with Oracle ADW instance.
  C. Setup an interconnect between OCI and Microsoft Azure using FastConnect and ExpressRoute. Use a Service Gateway in OCI Virtual Cloud Network to provide connectivity to the Oracle ADW instance for the application in Microsoft Azure VNet.