You can attach resources to a Dynamic Routing Gateway (DRG). Select THREE of these resources. (Choose three.)
ALocal Peering Connection
BSubnet
CVirtual Circuits
DIPSec Tunnel
ERemote Perring Connections
FVNIC
Which Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) policy is invalid?
AAllow any-user to inspect users in tenancy
BAllow group ‘Default’/ ‘A-Admins’ to manage all-resources in compartment Project-A
CAllow dynamic-group ‘Default’/ ‘FrontEnd’ to manage instance-family in compartment Project-A
DAllow group ‘Default’/ ‘A-Developers’ to create volumes in compartment Project-A
In an Object Storage bucket you have two objects named ObjectA and ObjectB. ObjectA was last modified six months ago and ObjectB was modified 14 months ago. You create a retention rule and specify a duration of 1 year.
What does the rule do?
AIt prevents the modification or deletion of ObjectA for the next 6 months and prevents the modification or deletion of ObjectB for the next 2 months.
BIt prevents the modification or deletion of ObjectA and Object for the next 12 months.
CIt prevents the modification or deletion of ObjectA for the next 12 months and prevents the modification or deletion of ObjectB for the next 14 months.
DIt prevents the modification or deletion of ObjectA for the next 6 months and allows the modification or deletion of ObjectB.
You have three compartments: ProjectA, ProjectB, and ProjectC. For each compartment, there is an admin group set up: A-Admins, B-Admins, and C-Admins.
Each admin group has full access over their respective compartments as shown in the graphic below.
Your organization has set up a tag namespace, EmployeeGroup.Role and all your admin groups are tagged with a value of ‘Admin’.
You want to set up a Test compartment for members of the three projects to share. You also need to provide admin access to all three of your existing admin groups.
Which policy would you write to accomplish this task?
AAllow group any-group to manage all-resources in compartment Test where request.principal.group.tag.EmpoyeeGroup.Role= ‘Admin’
BAllow dynamic-group to manage all-resources in compartment Test where request.principal.group.tag.EmpoyeeGroup.Role= ‘Admin’
CAllow any-user to manage all-resources in compartment Test where request.principal.group.tag.EmployeeGroup.Role= ‘Admin’
DAllow all-group to manage all-resources in compartment Test where request.principal.group.tag.EmployeeGroup.Role= ‘Admin’
Question 6
Compute and Storage
0
Question 7
Compute and Storage
Question 8
Networking
Question 9
Identity and Access Management
Question 10
Identity and Access Management
Question 11
Networking
Question 12
Compute and Storage
Question 13
Observability and Management
Question 14
Networking
Question 15
Compute and Storage
Question 16
Identity and Access Management
Question 17
Networking
Question 18
Identity and Access Management
Question 19
Compute and Storage
Question 20
Compute and Storage
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ad
Want a break from the ads?
Become a Supporter and enjoy a completely ad-free experience, plus unlock Learn Mode, Exam Mode, AstroTutor AI, and more.
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
You have a block volume created in this US West (Phoenix) region. You enabled Cross Region Replication for the volume and selected US West (San Jose) as the designation region. Now, you would like to create a new volume from the volume replica in the US West (San Jose) region.
What should you do?
AActivate the replica.
BInitiate the replica.
CNo action required. By default, the replica is available as block volume.
DTrigger the replica.
Which of the following statements is true about cloning a volume in the Oracle Cloud Infrastructure (OCI) Block Volume service?
ACreating a clone takes longer than creating a backup of a volume.
BYou need to detach a volume before cloning it.
CYou can change the block volume size when cloning a volume.
DYou can clone a volume to another region.
What is the primary purpose of the Web Application Acceleration service offered by Oracle Cloud Infrastructure (OCI)?
AImproving the reliability of layer 7 HTTP load balancers by implementing redundancy measures
BEncrypting HTTP traffic to ensure secure communication between clients and servers
CSpeeding up traffic on layer 7 HTTP load balancers through caching and compression techniques
DMonitoring and analyzing HTTP traffic patterns to identify potential security vulnerabilities
You want to create a policy to allow the NetworkAdmins group to manage Virtual Cloud Network (VCN) in compartment C. You want to attach this policy to the tenancy. The compartment hierarchy is shown below.
Which policy statement can be used to accomplish this task?
AAllow group ‘Default’/ ‘NetworkAdmins’ to manage virtual-network-family in compartment B:C
BAllow group ‘Default’/ ‘NetworkAdmins’ to manage virtual-network-family in tenancy
CAllow group ‘Default’/ ‘NetworkAdmins’ to manage virtual-network-family in compartment C
DAllow group ‘Default’/ ‘NetworkAdmins’ to manage virtual-network-family in compartment A:B:C
You have objects stored in an OCI Object Storage bucket that you want to share with a partner company. You decide to use pre-authenticated requests to grant access to the objects.
Which statement is true about pre-authenticated requests?
APre-authenticated requests can be used to delete buckets or objects.
BYou need to provide your OCI credentials to the partner company.
CDeleting a pre-authenticated request does not revoke access to the associated bucket or object.
DYou cannot edit a pre-authenticated request.
A client has reported they cannot access a file system even through their IP address is allowed in the export options. Upon investigation, you realize that a security list rule is blocking access to the mount agent. Which layer needs adjustment?
ANetwork Security
BIAM Service1
CUNIX Security Layer
DInterface Export Options
In the context of Oracle Cloud Infrastructure (OCI) Compute service, which statement about instance configurations and instance pools is true?
AAn instance pool can have multiple instance configurations associated with it.
BYou can only delete an instance configuration if it is not associated with any instance pool.
CYou can delete an instance configuration if it is associated with an instance pool.
DYou can reuse the same instance configuration for multiple instance pools.
As a cloud infrastructure manager at a multinational company, you are tasked with optimizing data transfer and backup strategies across different regions on Oracle Cloud Infrastructure (OCI). You decide to utilize the Inter-Region Latency dashboard provided by OCI to gain insights into latency between regions.
Why is the OCI Inter-Region Latency dashboard useful for your task?
AIt’s designed for troubleshooting latency issues within your specific applications, providing targeted for optimizing performance.
BIt focuses solely on latency within your own tenancy ensuring accurate monitoring of data transfer.
CIt provides real-time data specific to your tenancy’s workloads.
DIt offers a current and historical view of latency shapshots, enabling you to analyze up to a 30-day history.
As a network engineer responsible for managing the virtual network infrastructure on Oracle Cloud Infrastructure (OCI) for your organization, you decide to utilize the Network Visualizer tool provided by OCI.
Why is the Network Visualizer too valuable for managing virtual network infrastructure on OCI?
AIt visualizes the topology of all VCNs in a selected region and tenancy, allowing for a concise understanding of the relationships and connections.
BIt provides detailed information about the physical network components.
CIt generates automated reports on network performance metrics, facilitating decision-making for optimizing network resources and bandwidth allocation.
DIt offers real-time monitoring of network traffic, enabling proactive identification of security threats and unauthorized access attempts.
You are backing up your on-premises data to the Oracle Cloud Infrastructure (OCI) Object Storage Service.
Your requirements are:
Backups need to be retained for at least full 31 days.
Data should be accessible immediately if and when needed after the backup.
Which OCI Object Storage tier is suitable for storing the backup to minimize cost?
AAuto-Tiering tier
BArchive tier
CInfrequent Access tier
DStandard tier
You need to set up instance principals so that an application running on an instance can call Oracle Cloud Infrastructure (OCI) public services, without the need to configure user credentials or a configuration file.
A developer in your team has already configured the application built using an OCI SDK to authenticate using the instance principals provider.
Which is NOT a necessary step to complete this set up?
ADeploy the application and the SDK to all the instances that belong to the dynamic group.
BGenerate Auth Tokens to enable instances in the dynamic group to authenticate with APIs.
CCreate a policy granting permissions to the dynamic group to access services in your compartment or tenancy.
DCreate a dynamic group with matching rules to specify which instances can make API calls against services.
Which Traffic Management Steering Policy facilitates the distribution of DNS traffic to specific endpoints based in the geographical location of end users?
AIP Prefix Steering
BGeolocation Steering
CProximity Steering
DASN Steering
By default, OCI IAM policies follow the principle of least privilege.
What does this principle mean in the context of policy creation?
APolicies should be written in a complex and technical manner to enhance security.
BPolicies should be identical for all users within a tenancy.
CPolicies should grant all possible permissions to simplify access control.
DPolicies should provide only the minimum set of permissions required for users to perform their tasks effectively.
Which is NOT a valid action within the Oracle Cloud Infrastructure (OCI) Block Volume service?
ACloning an existing volume to a new, larger volume.
BRestoring from a volume backup to a larger volume.
CExpanding an existing volume in place with offline resizing.
DAttaching a block volume to an instance in a different availability domain.
You are in the process of migrating several legacy applications from on-premises to Oracle Cloud Infrastructure (OCI). The current servers are already virtualized. However, you notice that the version of CentOS currently running does not align with any of the Oracle-provided compute images.
How would you migrate your existing virtual server images to OCI?
AExport your current image in the VDI format and copy to an Object Storage bucket. Import is as a custom image. Select native mode to ensure the best possible performance.
BExport your current image in the QeD format and copy to an Object Storage bucket. Import it as a custom image. Select emulated mode to ensure compatibility with legacy drivers.
CExport your current image in the VMDK format and copy to an Object Storage bucket. Import it as a custom image. Select native mode to ensure the best possible performance.
DExport your current image in the QCOW2 format and copy to an Object Storage bucket. Import it as a custom image. Select emulated mode to ensure compatibility with legacy drivers.
