• Home
  • Articles
  • [2022] Pass 1z0-1072-22 Exam - Real Questions & Answers [Q70-Q89]

[2022] Pass 1z0-1072-22 Exam - Real Questions & Answers [Q70-Q89]

Share

[2022] Pass 1z0-1072-22 Exam - Real Questions and Answers

1z0-1072-22 Exam Questions Get Updated [2022] with Correct Answers

NEW QUESTION 70
You are the Solutions Architect of a large company and are tasked with migrating all your services to Oracle Cloud Infrastructure. As part of this, you first design a Virtual Cloud Network (VCN) with a public subnet and a private subnet. Then in order to provide Internet connectivity to the instances in your private subnet, you create an Oracle Linux instance in your public subnet and configure NAT on it. However, even after adding all related security list rules and routes in the Route Table, your private subnet instances still cannot connect to the Internet.
Which action should you perform to enable Internet connectivity?

  • A. Restart the NAT instance.
  • B. Create a Dynamic Routing Gateway (DRG) and route your private IP traffic to the DRG.
  • C. There is no way that a private subnet can connect to the Internet.
  • D. Disable "Source and Destination Check" on the VNIC of your Linux instance.

Answer: D

Explanation:
Explanation
https://docs.cloud.oracle.com/iaas/Content/Network/Tasks/managingVNICs.htm#Source/D By default, every VNIC performs the source/destination check on its network traffic. The VNIC looks at the source and destination listed in the header of each network packet. If the VNIC is not the source or destination, then the packet is dropped.
If the VNIC needs to forward traffic (for example, if it needs to perform Network Address Translation (NAT)), you must disable the source/destination check on the VNIC. For instructions, see To update an existing VNIC.
For information about the general scenario, see Using a Private IP as a Route Target.

 

NEW QUESTION 71
When terminating a compute instance, you want to preserve theboot volume and its data.
Which step will you need to perform?

  • A. Disable the default optionto delete the boot volume when terminating an instance.
  • B. You cannot preserve the boot volume; it will always be deleted when you terminate the instance.
  • C. Before terminating the instance, you must detach the boot volume.
  • D. Reboot the instance first, and then terminate the instance.

Answer: A

Explanation:
Explanation
References: Thedialog will show you when you terminate the instance. If you want to preserve the boot volume associated with the instance, uncheck Permanently delete the attached Boot Volume.
https://docs.cloud.oracle.com/iaas/Content/Compute/Tasks/terminatinginstance.htm

 

NEW QUESTION 72
Which three are capabilities of the dbaascli utility? (Choose three.)

  • A. Clone a DB
  • B. Patching the primary database deployment
  • C. Open port 1521 in the VCN to allow for traffic to the listener
  • D. Start and open the database instance
  • E. Switchover and failover in an Oracle Guard configuration

Answer: B,D,E

Explanation:
Explanation
https://docs.oracle.com/en/cloud/paas/database-dbaas-cloud/csdbi/dbaascli.html Using the dbaascli utility, you can:
Change the password of a database user.
Start and stop a database.
Start and stop the Oracle Net listener
Check the status of the Oracle Data Guard configuration.
Perform switchover andfailover in an Oracle Data Guard configuration.
Patch the database deployment.
Perform database recovery.
Rotate the master encryption key.
https://docs.oracle.com/en/cloud/paas/database-dbaas-cloud/csdbi/dbaascli.html

 

NEW QUESTION 73
What is true about data guard set up with fast-start failover (FSFO) in Oracle Cloud Infrastructure (OCI)?

  • A. The best practice for high availability and durability is to run the primary, standby, and observer in separate availability domains (ADs).
  • B. When you configure data guard using OCI console, the default mode is set to maxprotection.
  • C. You cannot create the standby DB system in a different AD from the primary DB system.
  • D. You cannot use database command line interface (CLI) to set up data guardwith FSFO.

Answer: A

Explanation:
Explanation
References:
The best practice for high availability and durability is to run the primary, standby, and observer in separate availability domains. The observer determines whether or not to failover to a specific target standby database
https://docs.cloud.oracle.com/en-us/iaas/Content/Database/Tasks/usingDG.htm#ConfiguringObserverOptional

 

NEW QUESTION 74
Which two statements about the Oracle File Storage Service (FSS) Security are accurate? (Choose two.)

  • A. FSS leverages UNIX user group and permission checkingfor file access security.
  • B. Encryption of file storage in FSS is optional.
  • C. Oracle IAM controls which filesystems are mountable by which instances.
  • D. Data in transit to an FSS mount target is encrypted.
  • E. Security lists can be used asa virtual firewall to prevent an instance from mounting an FSS mount target within a subnet.

Answer: A,D

Explanation:
Explanation
All data is encrypted at rest. and In-transit encryption provides a way to secure your data between instances and mounted file systems using TLS v. 1.2 (Transport Layer Security) encryption.
File Storage service supports the AUTH_UNIX style of authentication and permission checking for remote NFS client requests.

 

NEW QUESTION 75
Your company has decided to move a few applications to Oracle Cloud and you have been asked to design it for both High Availability (HA) and Disaster Recovery (DR).
Which two should youconsider while designing your Oracle Cloud Infrastructure architecture? (Choose two.)

  • A. Compartments
  • B. Region
  • C. Availability Domain
  • D. Instance Shape

Answer: B,C

Explanation:
Explanation
References:https://blogs.oracle.com/cloud-infrastructure/migration-and-disaster-recovery-in-the-oracle-cloud-wi

 

NEW QUESTION 76
You need to set up instance principals so that an application running on an instance can call Oracle Cloud Infrastructure (OCI) public services, without the need to configure user credentials.
A developer in your team has already configured the application built using an OCI SDK to authenticate using the instance principals provider.
Which is NOT a necessary step to complete this set up?

  • A. Create apolicy granting permissions to the dynamic group to access services in your compartment or tenancy.
  • B. Generate Auth Tokens to enable instances in the dynamic group to authenticate with APIs.
  • C. Deploy the application and the SDK to all the instances that belong to the dynamic group.
  • D. Create a dynamic group with matching rules to specify which instances you want to allow to make API calls against services.

Answer: C

Explanation:
Reference:https://blogs.oracle.com/cloud-infrastructure/announcing-instance-principals-for-identity-andaccess-m

 

NEW QUESTION 77
Your company has decided to move a few applications to Oracle Cloud Infrastructure and you havebeen asked to design it for Disaster Recovery (DR). One of the items of your design is to deploy the DR at least 300 miles from the home site and minimize the network latency as much as possible.
Based on that, what will be the recommended deployment?

  • A. Deploy applications in two separated VCNs in different regions and use VCN Local Peering
  • B. Deploy applications in two separated VCNs in different Availability Domains and use VCN Remote Peering
  • C. Deploy applications on the same region splitting workloads across Availability Domains.
  • D. Deploy applications in different regions and have them connected using VCN Remote Peering

Answer: D

 

NEW QUESTION 78
What is a valid option when exporting a custom image?

  • A. object storage URL
  • B. archive storage URL
  • C. block volume
  • D. file storageservice

Answer: A

Explanation:
Explanation
You can use the Console or API to export images, and the exported images are stored in the Oracle Cloud Infrastructure Object Storage service. To perform an image export, you need write access to the Object Storage bucketfor the image.

 

NEW QUESTION 79
You are running your warehouse using Autonomous Data Warehouse (ADW) service and you noticed that a newly configured batch job is always running in serial even through nothing else is running in the database.All your jobs are configured to run with parallelism enabled.
What could be the reason for this batch job to run in serial?

  • A. The parallelism of batchjob depends on the number of ADW databases involved in the query.
  • B. The new batch job is connected to LOW consumer group.
  • C. Parallelism on the database iscontrolled by the application, not the database.
  • D. The new batch job runs on database tables that are not enable for parallel execution.
  • E. The batch job depends on only one table and parallelism cannot be enabled on single-table queries.

Answer: B

 

NEW QUESTION 80
You have an application running on Oracle Cloud Infrastructure. You Identified that the read and write operations are slowing your application downenough to impair user access. The application is currently using a VM.Standard2.1 compute without any block storage attached to it.
Which two options allow you to increase disk IOPS performance?

  • A. Terminate the compute instance preserving the boot volume. Create a new compute instance using the VM.Standard2.2 shape using the boot volume preserved and attach a new block volume to host your application.
  • B. Terminate the compute instance preserving the boot volume. Create a new compute instance using the VM.Standard2.2 shape using the boot volume preserved,but no block volume attached.
  • C. Terminate the compute instance preserving the boot volume. Create a new compute instance using the VM.DenseI02.8 shape using the boot volume preserved and use the NVMe devices to host your application.
  • D. Terminate the compute instance preserving the boot volume. Create a new compute instance using the BM.GPU2.2 shape using the boot volume preserved, but no block volume attached.

Answer: C,D

 

NEW QUESTION 81
You have been notified of an application failure indicating that one or more of the Oracle Cloud Infrastructure (OCI) resources have become unavailable. After scanning the Compute and Database consoles, you notice that one of the DB Systems is missing.
What would you do to identify the reason for this missing resource?

  • A. Navigate to the Audit console and search the previous 24 hours for all theGETrequest actions to get a list ofevery event that occurred in the past 24 hours.
  • B. Navigate to the Auditconsole and search the previous 24 hours for allDELETErequest actions to get a list of any resource that was deleted in the past 24 hours.
  • C. View the service limits associated with your account to ensure that you have not exceeded the allowable number of DB Systems in your tenancy.
  • D. Create a serial console connection to the DB System that does not appear in the management console.Connect to the serial console connection, and then review the system logs under/var/log/messages.

Answer: B

Explanation:
Explanation
You can filter results by request actions to zero in on only the events with operations that interest you. For example, say that you only want to know about instances that were deleted during a specific time frame. Select a delete request action filter to see only the events with delete operations Reference:https://docs.cloud.oracle.com/en-us/iaas/Content/GSG/Tasks/usingaudit.htm

 

NEW QUESTION 82
Which two identityproviders can your administrator federate with Oracle Cloud Infrastructure? (Choose two.)

  • A. AWS Directory Services
  • B. Oracle Identity Cloud Services
  • C. Google Directory Federation Services
  • D. Microsoft Active Directory

Answer: B,D

Explanation:
Explanation
References:
Oracle Cloud Infrastructure supports federation with Oracle Identity Cloud Service and Microsoft Active Directory (via Active Directory Federation Services (AD FS)), and any identity provider that supports the Security Assertion Markup Language (SAML) 2.0 protocol.

 

NEW QUESTION 83
Which tool can automatically install Oracle Cloud Infrastructure CLI?

  • A. PIP
  • B. RPM
  • C. APT
  • D. Python

Answer: A

Explanation:
Explanation
References:
https://docs.cloud.oracle.com/iaas/Content/API/SDKDocs/climanualinst.htm

 

NEW QUESTION 84
When you try to create an instance on Oracle Cloud Infrastructure (OCI), what are three valid sources to choose theimage from?

  • A. Bare Metal Instance
  • B. Custom Image
  • C. Platform Images
  • D. Object Storage
  • E. Partner Images
  • F. Dedicated VM Host
  • G. Instance Pools

Answer: B,C,E

Explanation:
Reference:https://docs.cloud.oracle.com/en-us/iaas/Content/Compute/Tasks/launchinginstance.htm

 

NEW QUESTION 85
Which two statements are true about Oracle Cloud Infrastructure (OCI) DB Systems?

  • A. Customers can consolidate multiple database homes on asingle virtual machine database host.
  • B. Customers have no control over database patching.
  • C. Customers can manage the TDE Wallet after DB Systems is provisioned.
  • D. The database and backups are encrypted by default.

Answer: C,D

Explanation:
All databases created in Oracle Cloud Infrastructure are encrypted using transparent data encryption (TDE).
Oracle Cloud Infrastructure encrypts all managed backups in the object store. Oracle uses the Database Transparent Encryption feature by default for encrypting the backups. and the customers can manage the TDE Wallet after DB Systems are provisioned.

 

NEW QUESTION 86
Acompany currently uses Microsoft Active Directory as its identity provider. The company recently subscribed to Oracle Cloud Infrastructure (OCI) to leverage the cloud platform for test and development. As the administrator, you configured the OCI tenancy to be federated with Microsoft Active Directory. Now you need to give access to developers so that they can start creating resources in their OCI accounts.
Which step will you perform to make sure you are not duplicating user creation inside of OCI tenancy?

  • A. Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process.
  • B. Create a single user account in OCI, and then create policies to provide access to developers to this single account.
  • C. Create a new user account in OCI for each user, and then create policies to provide access to developers.
  • D. Create a group for developers on OCI, export all the developers from Microsoft Active Directory, and then import them into the Identity and Access Management (IAM) group.

Answer: A

Explanation:
Explanation
When working with your IdP, your administrator defines groups and assigns each user to one or more groups according to the type of access the user needs. Oracle Cloud Infrastructure also uses the concept ofgroups (in conjunction with IAM policies) to define the type of access a user has. As part of setting up the relationship with the IdP, your administrator can map each IdP group to a similarly defined IAM group, so that your company can re-use the IdP group definitions when authorizing user access to Oracle Cloud Infrastructure resources.

 

NEW QUESTION 87
Which two statements are true about Database Cloud Service (DBCS)? (Choose two.)

  • A. You can manageOracle parameters at a global system level.
  • B. Data Guard as a Service is offered among regions.
  • C. You have full control over backup schedule and retention.
  • D. You cannot manage the database as sys/sysdba.

Answer: A,C

Explanation:
Explanation
References:https://cloud.oracle.com/database/faq#backup
Can I set up Data Guard across Availability Domains?Yes, you can set up Data Guard in the same or different Availability Domains in a region. However, Oracle recommends that you set up your Data Guard configuration across Availability Domains.Can I set up Data Guard across Oracle Cloud Infrastructure regions?Yes, you can set up Data Guard across regions,
"but the Database Cloud Service Data Guard feature currently does not support it. " You can manually set up Data Guard across regions by logging on to your host and using DGMGRL. You must enable an internet gateway on the primary and standby DB system VCN for Data Guard to transport logs across regions. Learn more about DGMGRL.
To configure a Data Guard system across regions or between on-premises and Oracle Cloud Infrastructure DB systems, you must access the database host directly and use the DGMGRL utility.
https://docs.cloud.oracle.com/iaas/Content/Database/Tasks/usingdataguard.htm

 

NEW QUESTION 88
You have created a virtual cloudnetwork (VCN) with three private subnets. Two of the subnets contain application servers and the third subnet contains a DB System. The application requires a shared file system so you have provisioned one using the file storage service (FSS). You also created the corresponding mount target in one of the application subnets. The VCN security lists are properly configured so that both application servers and the DB System can access the file system. The security team determines that the DB System should haveread-only access to the file system.
What change would you make to satisfy this requirement?

  • A. Connect via SSH to one of the application servers where the file system has been mounted. Use the Unix command chmod to change permissions on the file system directory, allowing the database user read only access.
  • B. Create an instance principal for the DB System. Write an Identity and Access Management (IAM) policy that allows the instance principal read-only access to the filestorage service.
  • C. Modify the security list associated with the subnet where the mount target resides. Change the ingress rules corresponding to the DB System subnet to be stateless.
  • D. Create an NFS export option that allows READ_ONLY access where the source is the CIDR range of the DB System subnet.

Answer: D

Explanation:
Explanation
NFS export options enable you to create more granular access control than is possible using just security list rules to limit VCN access. You can use NFS export options to specify access levels for IP addresses or CIDR blocks connecting to file systems through exports in a mount target.

 

NEW QUESTION 89
......

Practice 1z0-1072-22 Questions With Certification guide Q&A from Training Expert ActualCollection: https://quizguide.actualcollection.com/1z0-1072-22-exam-questions.html

Related Articles

more
Oracle 1z0-1072-22 Certification Practice Exam

Copyright © 2026 ActualCollection NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy