Arch2022

1. Which Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) policy is invalid?. Allow group A-Developers to create volumes in compartment Project-A. Allow group A-Admins to manage all-resources in compartment Project-A. Allow dynamic-group FrontEnd to manage instance-family in compartment Project-A. Allow any-user to inspect users in tenancy.

You are responsible for deploying an application on Oracle Cloud Infrastructure (OCI). The application is memory intensive and performs poorly if enough memory is not available. You have created an instance pool of Linux compute instances in OCI to host the application and defined Autoscaling Configuration for the instance pool. What should you do to ensure that the instance pool autoscales to prevent poor application performance?. Configure the autoscaling policy to monitor CPU usage and scale up the number of instances when it meets the threshold. Install the monitoring agent on all compute instances, which triggers the autoscaling group. Configure the autoscaling policy to monitor memory usage and scale up the number of instances when it meets the threshold. Install OCI SDK on all compute Instances and create a script that triggers the autoscaling event if there is high memory usage.

Which are the TWO tools you would use for Logical migration?. Data Pump. RMAN. Data Guard. GoldenGate.

What security consideration should you be mindful of before performing a database migration?. Place the database in the restricted mode so that no one access it during migration. Encrypt all files that are used for migration. Migration can only be done in the web-based interface of Oracle. Backup and restore your TDE wallets from the source to the target database.

A customer's webserver runs a complicated application on three Baremetal instances that serve as backends on a backend set for an OCI public Load Balancer. If one of the Baremetal instances fails, what will the OCI Load Balancer do?. It will launch an API call. It will fix the failling Beremetal instance. It will send an SOS notification. It will no longer send traffic to it. It will delete the failing Baremetal instance.

You plan to upload a large file (3 TB) to Oracle Cloud Infrastructure (OCI) Object Storage. You would like to minimize the impact of network failures while uploading, and therefore you decide to use the multipart upload capability. Which TWO statements are true about performing a multipart upload using the Multipart Upload API?. While a mutipart upload is still active, you can keep adding parts as long as the total numbers is less than 10,000. You do not have to commit the upload after you have uploaded all the get parts. When you split the object into individual parts, each part can be as large as 50 GB. You do not need to split the object into parts. Object Storage splits the object into parts and uploads all of the parts automatically.

Which statement is NOT correct regarding the Oracle Cloud Infrastructure (OCI) File System snapshots?. Snapshots are a consistent, point-in-time view of your file systems. Even if nothing has changed within the file system since the last snapshot was taken, a new snapshot consumes more storage. Before you can done a file system, at least one snapshot must exist or the system. Snapshots are accessible under the root directory of the file system.

As your company's cloud architect, you have been invited by the CEO to join his staff meeting. They want your input on interconnecting Oracle Cloud Infrastructure (OCI) to another cloud provider in London, with some specific requirements: - They want resources in the other cloud provider to leverage OCI Autonomous Data Warehouse ML capabilities. - The connection between OCI and the other cloud provider should be provisioned as quickly as possible. - The connection should offer high bandwidth and predictable performance. Which other cloud provider should you recommend to interconnect with OCI and meet the above requirements?. Amazon Web Services. Alibaba Cloud. Microsoft Azure. OCI. Google Cloud. IBM Cloud. Digital Ocean.

Which is NOT a valid statement regarding the Oracle Cloud Infrastructure (OCI) Audit service?. Retention period for Audit logs is 365 days and it cannot be changed. Audit logs are displayed for Compartments. Audit service can record REST API calls executed by a custom client. Changes within the objects stored in an Object Storage bucket are collected as Audit logs.

You are part of a team that manages a set of workload instances running in an on-premises environment. The Architect team is tasked with designing and configuring Oracle Cloud Infrastructure (OCI) Logging service to collect logs from these instances. There is a requirement to archive Info-level logging data of these instances into the OCI Object Storage. Which TWO features of OCI can help you achieve this?. Service Connectors. ObjectCollection Rule. Agent Configuration. Grouping Function. Cloud Agent Plugin.

You are part of an organization with thousands of users accessing Oracle Cloud Infrastructure (OCI). An unknown user action was executed resulting in configuration errors. You are tasked to quickly identify the details of all users who were active in the last six hours along with any REST API calls that were executed. Which OCI service would you use?. Notifications. Service Connectors. Logging. Audit. Management Agent.

As a network architect you have deployed a public subnet on your Virtual Cloud Network (VCN) with this security list: <<< IMAGEM You have confirmed that routing is correct but when you SSH to the VM from your home over the Internet, you are unable to connect. What could be the problem?. Public subnet does not have a route rule to the Internet Gateway. SSH traffic is not allowed in the Security List or on the NSG from the Internet. Internet traffic should be allowed only on the NSG. User will be able to SSH to the VM from the Internet as SSH is open on the NSG.

You are in the process of migrating several legacy applications from on-premises to Oracle Cloud Infrastructure (OCI). The current servers are already virtualized. However, you notice that the version of CentOS currently running does not align with any of the Oracle-provided compute images. How would you migrate your existing virtual server images to OCI?. Export your current image in the QED format and copy to an Object Storage bucket. Import it as a custom image. Select emulated mode to ensure compatibility with legacy drivers. Export your current image in the QCOW2 format and copy to an Object Storage bucket. Import it as a custom image. Select emulated mode to ensure compatibility with legacy drivers. Export your current image in the VMDK format and copy to an Object Storage bucket. Import it as a custom image. Select native mode to ensure the best possible performance. Export your current image in the VDI format and copy to an Object Storage bucket. Import it as a custom image. Select native mode to ensure the best possible performance.

You just got a last minute request to create a set of instances in Oracle Cloud Infrastructure (OCI). The configuration and installed software are identical for every instance, and you already have a running instance in your OCI tenancy. Which image option allows you to achieve this task with the least amount of effort?. Select an image from the OCI Marketplace. Use Oracle-provided images and customize the Installation using a third-party tool. Bring your own Image and use it as a template for the new instances. Create a custom image and use it as a template for the new instances.

What should be created before provisioning an Oracle Cloud Infrastructure (OCI) DB System?. Bucket in Object Storage. Virtual Cloud Network. Compute Instance. Compartment.

Which THREE capabilities are available with the Oracle Cloud Infrastructure (OCI) DNS service?. Creating and managing zones. Creating and managing Web Application Firewall (WAF) rules. Creating and managing security lists. Creating and managing Identity Access Management (IAM) policies. Viewing all zones. Creating and managing records.

You want to create a policy to allow the NetworkAdmins group to manage Virtual Cloud Network (VCN) in compartment C. You want to attach this policy to the tenancy. The compartment hierarchy is shown below. <<< IMAGE Which policy statement can be used to accomplish this task?. Allow group NetworkAdmins to manage virtual-network-family in compartment B:C. Allow group NetworkAdmins to manage virtual-network-family in tenancy. Allow group NetworkAdmins to manage virtual-network-family in compartment A:B:C. Allow group NetworkAdmins to manage virtual-network-family in compartment C.

A financial firm is designing an application architecture for its online trading platform that should have high availability and fault tolerance. Their solutions architect configured the application to use an Oracle Cloud Infrastructure (OCI) Object Storage bucket located in the US West (us-phoenix-1) region to stare large amounts of financial data. The stored financial data in the bucket should not be impacted even if there is an outage in one of the Availability Domains or a complete region. What should the architect do to avoid any costly service disruptions and ensure data durability?. Create a new Object Storage bucket in another region and configure fecycle policy to move data every 5 days. Create a replication policy to send data to a different bucket in another OCI region. Create a lifecycle policy to regularly send data from the Standard to Archive storage. Copy the Object Storage bucket to a block volume.

Which statement is NOT true about the oracle Cloud Infrastructure (OCI) Object Storage service?. Object Storage resources can be shared across tenancies. Immutable option for data stored in Object Storage can be set via retention rules. Object Versioning enabled at the namespace level. Object lifecycle rules can be used to either archive or delete objects.

As a solution architect, you are showcasing the Oracle Cloud Infrastructure (OCI) Object Storage feature about Object Versioning to a customer. Which statement is true regarding OCI Object Storage Versioning?. Object Versioning is disabled on a bucket by default. A bucket that is Versioring-enabled can and will always have the latest version of the object in the bucket. Objects are physically deleted from a bucket when versioning is enabled. Object Versioning does not provide data protection against accidental or malicious object update, overwrite, or deletion.

You have an instance running in Oracle Cloud Infrastructure (OCI) that cannot be live-migrated during an Infrastructure maintenance event. OCI schedules a maintenance due date within 14 to 15 days and sends you a notification. What would happen if you proactively reboot the instance before the scheduled maintenance due date?. You will receive another notification to reboot within the next 7 days. You will receive another notification to reboot within the next 14 days. The instance is either reboot-migrated or rebuilt in place for you. The instance will get terminated.

You can attach resources to a Dynamic Routing Gateway (DRG). Select THREE os these resources. VNIC. Local Peering Connection. Virtual Circuits. Remote Peering Connections. IPSec Tunnel. Subnet.

Which TWO statements about the Oracle Cloud Infrastructure (OCI) File Storage Service are accurate?. Customer can encrypt data in their file system using their own Vault encryption key. Mount targets use Oracle-managed keys by default. File systems use Oracle-managed keys by default. Customer can encrypt the communication to a mount target via export options. Communication with file systems in a mount target is encrypted via HTTPS.

Which statement is TRUE about patching an Oracle Cloud Infrastructure (OCI) DB System?. Once you pre-check the patches for your database, you can decide to apply the patches immediately or schedule a time to apply the patches. There is no automation with patching. You need to check for patches and manually schedule when to apply the patches. Once you pre-check the patches for your database, the system automatically applies the patches. Patching is automatically pre-checked and applied to the database.

You are a system administrator of your company and you are managing a complex environment consisting of compute instances running Oracle Unux on Oracle Cloud Infrastructure (OCI). Is your task to apply all the latest kernel security updates to all instances. Which OCI service will allow you to complete this task?. OCI Security Zones to achieve automatic security updates. OCI Streaming service. OCI Cloud Guard to monitor and install the security updates. OCI Registry. OCI Management service.

Which is NOT a valid option for an Oracle Cloud Infrastructure (OCI) compute shape?. Exadata Virtual Machine. Bare Metal. Dedicated Virtual Machine Host. Virtual Machine.

Which of the following statements is true about the Oracle Cloud Infrastructure (OCI) Object Storage server-side encryption?. Customer-provided encryption keys are always stored in the OCI Vaut service. Encryption is enabled by default and cannot be turned off. Encryption of data encryption keys with a master encryption key is optional. Each object in a bucket is always encrypted with the same date encryption key.

You have a high-demand web application running on Oracle Cloud Infrastructure (OCI). Your tenancy administrator has set up a schedule-based autoscaling policy on instance pool with an initial size of 5 instances for the application. Policy 1: Target pool size: 10 instances Execution time: 8:30 a.m. Monday through Friday, every month, every year Cron expression: 0 30 8 ? * MON-FRI * Which statement accurately explains the goal of this policy?. Goal: A recurring monthly schedule. On all days of the month, set the initial pool size to 5 instances. At 8.30 a.m. every day of the month, scale out to 10 Instances. Goal: A recurring weekly schedule. At 8.30 a.m. on all days of the week, scale out the pool to 10 instances from the initial size of 5. Goal: A recurring daily schedule. At 8.30 a.m. on weekday mornings, a scale out to 10 instances. Goal: A one-time schedule with only one scaling out event. At 8:30 a.m. on December 31, 2022, scale the instance pool to 10 instances from 5.

Which TWO components are optional while creating the Monitoring Query Language (MQL) expressions in the Oracle Cloud Infrastructure (OCI) Monitoring service?. Dimensions. Grouping Function. Interval. Statistic. Metric.

You have a block volume created in the US West (Phoenix) region. You enabled Cross Region Replication for the volume and selected US West (San Jose) as the destination region. Now, you would like to create a new volume from the volume replica in the US West (San Jose) region. What should you do?. Activate the replica. No action required. By default, the replica is available as a block volume. Initiate the replica. Trigger the replica.

You have multiple applications running on a compute instance that generate a large amount of log files. You are required to retain these log files for a total of 60 days; at least 15 days on the boot volume, and an additional 45 days in any location. Which is the most cost-effective way to meet the 15-day boot volume retention requirement and the 60-day total retention requirement?. Create an Object Storage bucket and use a script that runs dely to move log files older than 15 days from the boot volume to the bucket. Create a life cycle rule for the bucket to delete any logs over 60 days old. Attach a block volume and use a script that moves log files older then 15 days to the new volume and deletes them completely after 60 days. Terminate the Instance while preserving the boot volume. Create a new instance from the boot volume and select a DenselO shape to take advantage of the local NVMe storage. Do not delete any logs but resize the boot volume of the instance every time additional space is needed.

Company XYZ is spending $300,000.00 USD per month in egress fees for 7 Petabytes that they consume for Outbound Data Transfer in North America with their current cloud provider. The company is seeking to lower that expense considerably without reducing consumption. You propose migration to OCI because the Gigabyte Outbound Data Transfer in North America costs just $0.0085 USD per month. With OCI, how much will they spend per month for 7 Petabytes of Outbound Data Transfer? (1 Petabyte 1000 Terabytes). $59,500.00. $59,415.00. $0.00 (free with OCI). $150,000.00.

You are a security administrator for your company's Oracle Cloud Infrastructure (OCI) tenancy. Your storage administrator informs you that she cannot associate an encryption key from an existing Vaut to a new Object Storage bucket. What could be a possible reason for this behavior?. The secret for the key was not created beforehand. The storage administrator forgot to select "Encrypt using Oracle managed key while creating the bucket. There is no Identity and Access Management (IAM) policy that allows the Object Storage service to use the key. The Object Storage bucket policy lacks the necessary Access Control List (ACL).

Which TWO statements are TRUE about Public IP addresses in Oracle Cloud Infrastructure (OCI)?. You must use OCI provided public IP addresses. You cannot bring your own UP addresses to OCI. Public IP addresses can be ephemeral or reserved. You can assign a given instance multiple public IPs across one or more VNICs. By default, an instance in a public subnet has one primary public IP address.

Which TWO statements are TRUE about Private IP addresses in Oracle Cloud Infrastructure (OCI)?. Each VNIC can only have one private IP address. By default, the primary VNC of an instance in a subnet has one primary private IP address and one secondary private IP address. A private IP can have an optional public IP assigned to it if it resides in a public subnet. By default, the primary VNIC of an instance in a subnet has one primary private IP address.

You are launching a new project in the US West (Phoenix) region. You would like to reserve the compute capacity mentioned below so that the capacity is available for your workloads when you need it. 10 VM.Standard2.2 Instances 6 VM.Standard.E4.Flex Instances The project also requires you to be mindful about high availability and place the instances in at least two Availability Domains. At a bare minimum, how many capacity reservations would you create to meet this requirement?. One. Two. Three. Four.

Which TWO statements are NOT correct regarding the Oracle Cloud Infrastructure (OCI) burstable instances?. If the instance's average CPU utilization over the past 24 hours is below the baseline, the system allows it to burst above the baseline. Burstable instances are designed for scenerics where an instance is not typically idle and has high CPU utilization. Burstable Instances cost less than regular instances with the same total OCPU count. Burstable instances are charged according to the baseline OCPU. Baseline utilization is a fraction of each CPU core, either 25% or 75%.

You plan to launch a VM instance with the VM.Standard2.24 shape and Cradle Linux platform image. You want to protect your VM instance from low-level threats, such as rootkits and bootkits that can infect the firmware and operating system and are difficult to detect. What should you do?. Create a shielded instance. Use In-transit encryption. Create a burstable Instance. Use Vulnerability Scanning Service.

You want to run compute virtual machine (VM) instances in Oracle Cloud Infrastructure (OCI). Your business unit has the following requirements that need to be considered before you launch the VMs: Requirement 1: Shared infrastructure should not be used to deploy VMs. Requirement 2: Meet node-based licensing requirements that require you to license an entire server. Which compute capacity type would you select to meet these requirements?. Capacity reservation. On-demand capacity. Preemptible capacity. Dedicated host.

Which is NOT a valid action within the Oracle Cloud Infrastructure (OCI) Black Volume service?. Cloning en existing volume to a new, larger volume. Attaching a block volume to an instance in a different availabillity domain. Restoring from a volume backup to a larger volume. Expanding an existing volume in place with offline resizing.

Which of the following statements is true about cloning a volume in the Oracle Cloud Infrastructure (OCI) Block Volume service?. You can clone a volume to another region. You can change the block volume size when doing a volume. Creating a done takes longer then creating a backup of a volume. You need to detach a volume before cloning it.

You have three compartments: ProjectA, ProjectB, and ProjectC. For each compartment, there is an admin group set up: A-Admins, B-Admin, and C-Admins. Each admin group has full access over their respective compartments as shown in the graphic below. Your organization has set up a tag namespace, ExployeeGroup.Role and all your admin groups are tagged with a value of 'Admin'. <<< IMAGE You want to set up a Test compartment for members of the three projects to share. You also need to provide adain access to all three of your existing admin groups. Which policy would you write to accomplish this task?. Allow all-group to manage all-resources in compartment Test where request.principal.group.tag.EmployeeGroup.Role='Admin'. Allow group any-group to manage all-resources in compartment Test where request.principal.group.tag.EmployeeGroup.Role='Admin'. Allow any-user to manage all-resources in compartment Test where request.principal.group.tag.EmployeeGroup.Role='Admin'. Allow dynamic-group to manage all-resources in compartment Test where request.principal.group.tag.EmployeeGroup.Role="Admin".

Which is NOT a valid Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) approach?. Use OCI tags to tag VCN resources so that all resources follow organizational tagging/naming conventions. Ensure not all IP addresses are allocated at once within a VCN or subnet; instead reserve some IP addresses for future use. Ensure VCN CIDR prefix overlaps with other VCNs in your tenancy or with your organizations private IP network ranges. Private subnets should ideally have individual route tables to control the flow of traffic within and outside of VCN.

Which of the following is a valid RFC 1918 CIDR prefix that can be used for creating an Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN)?. 10.0.0.0/8. 172.16.0.0/12. 189.215.154.89/32. 192.268.0.0/24. 0.0.0.0/0. 192.168.0.0/16.

Which TWO are key benefits of setting up Site-to-Site VPN on Oracle Cloud Infrastructure (OCI)?. When setting up Site-to-Site VPN, OCI provisions redundant VPN tunnels. When setting up Site-to-Site VPN, it creates a private connection that provides consistent network experience. When setting up Site-to-Site VPN, customers can configure it to use static or dynamic routing (BGP). When setting up Site-to-Site VPN, customers can expect bandwidth above 2 Gbps.

In an Object Storage bucket you have two objects named ObjectA and ObjectB. ObjectA was last modified six months ago and ObjectB was modified 14 months ago. You create a retention rule and specify a duration of 1 year. What does the rule do?. It prevents the modification or deletion of ObjectA and Objects for the next 12 months. It prevents the modification or deletion of ObjectA for the next 6 months and prevents the modification or deletion of ObjectB for the next 2 months. It prevents the modification or deletion of ObjectA for the next 6 months and allows the modification or deletion of ObjectB. It prevents the modification or deletion of ObjectA for the next 12 months and prevents the modification or deletion of ObjectB for the next 14 months.

Which TWO predefined service names can you use when connecting to an Oracle Cloud Infrastructure (OCI) Autonomous Data Warehouse?. TPUrgent for a connection service when you do want to run with parallelism. Medium for a lower level of resources to process each SQL statement. High for the highest level of resources to process each SQL statement. TP for a connection service when you do not want to run with parallelism.

You want to have an exact copy of your database system to demonstrate the feasibility of a method you have in mind. You decide to clone your database system. Which of the following statement is true about cloning a database system?. Cloning creates a copy of the source DB system as it exists at the time of the cloning operation, including the storage configuration software and database volumes. Cloning creates a copy of the source DB system as it exists at the time of scheduling the cloning operation, including the storage configuration software and database volumes. Cloning creates a copy of the source DB system as 't exists at an earlier time, including the storage configuration software and database volumes. Cloning creates a copy of the source DB System as it exists at a later time, including the storage configuration software and database volumes.

The volume of transactions of your rental business is increasing. You anticipate a rise in workload during the upcoming holiday sales event. You want to ensure that the business is not impacted during the event due to an overloaded database system. Based on your database administrator's suggestion, you intend to scale up your Virtual Machine DB System during the event period to address the resource demand. Which of the following TWO statements are true about scaling the Virtual Machine DB System?. You can only scale up a database system, but cannot scale it down. You can perform scaling operations only after the database system is down. You can scale up storage in a Virtual Machine DS System without any downtime. You can only scale up OCPUs, but not storage. You can change the shape of a Virtual Machine DB System to change the number of OCPU cores.

Your IT team has asked you to provision an Autonomous Database in Oracle Cloud Infrastructure (OCI), but they want it to operate similar to what you have currently on-premises. What are the TWO prerequisites for successfully deploying an Autonomous Dedicated Database in OCI?. Exadata Infrastructure. Object Storage. Identity and Access Management (IAM) Policies. Autonomous Container Database.

You need to implement automatic backups for your database system. You can easily check 'Enable Automatic Backup' in the web console. Before you do that though, you need to have which of the following TWO prerequisites in place?. Private SSH key to the database. Connectivity to Swift endpoints. VNC configured with VPN for secure access to the Oracle Cloud Infrastructure (OCI) Object Storage service. Access to the OCI Object Storage service.

In which TWO ways does Cloud Guard help improve the overall security posture for your tenancy?. Monitors unauthorized or suspicious user activity. Prevents you from creating misconfigurations on your resources in Oracle Cloud Infrastructure (OCI). Masks sensitive data and monitors security controls on your Oracle Databases. Helps detect misconfigured resources, such as publicly accessible Object Storage buckets, Instances, and restricted ports on security lists. Allows you to centrally manage encryption keys.

Your customer would run month-end jobs on their on-premises databases that would take around 14 hours to complete and sometimes even fai due to overloaded database systems. After a detailed evaluation, they migrated their database to Autonomous Data Warehouse. They realized they could also move their analytics platform to Oracle Analytics Cloud (OAC) and have their best of breed technology platforms meet their critical business requirements. After migrating their analytics platform, they want to use one consumer group for running month-end jobs and another consumer group that can be used by the analytics team for performing data analytics tasks everyday. How can your customer implement this requirement?. Use consumer group high for data analytics and consumer group low for month-end jobs. Use consumer group medium for month-end jobs and consumer group low for data analytics. Use consumer group high for both month-end jobs and data analytics. Use consumer group high for month-end jobs and consumer group medium for data analytics.

You create a file system and then add a 2 GB file. You then take a snapshot of the file system. What would be the total metereBytes shown by the File Storage service after the hourly update cycle is complete?. 2GB. 3 GB. 2.5 GB. 4 GB.

You are backing up your on-premises data to the Oracle Cloud Infrastructure (OCI) Object Storage Service. Your requirements are: 1. Backups need to be retained for at least full 31 days. 2. Data should be accessible immediately if and when needed after the backup. Which OCI Object Storage tier is suitable for storing the backup to minimize cost?. Standard tier. Archive tier. Infrequent Access tier. Auto-Tiering tier.