Oracle 1Z0-1067-21 Dumps - The Sure Way To Pass Exam [Q16-Q40]

Oracle 1Z0-1067-21 Dumps - The Sure Way To Pass Exam

1Z0-1067-21 Exam Questions (Updated 2021) 100% Real Question Answers

NEW QUESTION 16
You have a web application running on Oracle Cloud Infrastructure (OCI) that lets users log in with a username and password. You notice that an attacker has tried to use SQL comment "--" to alter the database query, remove the password check and log in as a user. You decide to prevent any future attacks.
Which of the following OCI services or features would you choose to safeguard your application? (Choose the best answer.)

• A. Web Application Framework (WAF)
• B. Vault
• C. Data Safe
• D. Network Security Group

Answer: B

 

NEW QUESTION 17
You created an Oracle Linux compute instance through the Oracle Cloud Infrastructure (OCI) management console then immediately realize you forgot to add an SSH key file. You notice that OCI compute service provides instance console connections that supports adding SSH keys for a running instance. Hence, you created the console connection for your Linux server and activated it using the connection string provided.
However, now you get prompted for a username and password to login.
What option should you recommend to add the SSH key to your running instance, while minimizing the administrative overhead? (Choose the best answer.)

• A. You need to modify the serial console connection string to include the identity file flag, -i to specify the SSH key to use.
• B. You need to terminate the running instance and recreate it by providing the SSH key file.
• C. You need to configure the boot loader to use ttyS0 as a console terminal on the VM.
• D. You need to reboot the instance from the console, boot into the bash shell in maintenance mode, and add SSH keys for the opc user.

Answer: A

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/Compute/References/serialconsole.htm

 

NEW QUESTION 18
You have been asked to set up connectivity between a client's on-premises network and Oracle Cloud Infrastructure (OCI). The requirements are:
* Low latency: The applications are financial and require low latency connectivity into OCI.
* Consistency: The application isn't tolerant of performance variation.
* Performance: The communications link needs to support up to 1.25 Gbps.
* Encryption: The communications link needs to encrypt any data in transit between the on-premises network and OCI Virtual Cloud Network (VCN).
The client wants to implement the above with as low a cost as possible, while meeting all of the requirements.
What should you suggest? (Choose the best answer.)

• A. Provision FastConnect with a single public virtual circuit, and run an IPsec VPN tunnel over the top of this virtual circuit.
• B. Provision FastConnect with a single private virtual circuit, and run an IPsec VPN tunnel over the top of this virtual circuit.
• C. Provision a site-to-site IPsec VPN between your on-premises network and your virtual cloud network (VCN) using VPN Connect.
• D. Provision FastConnect with a single private virtual circuit.
• E. Provision FastConnect with a single public virtual circuit.

Answer: D

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/Network/Concepts/fastconnectoverview.htm

 

NEW QUESTION 19
You created an Oracle Linux compute instance through the Oracle Cloud Infrastructure (OCI) management console then immediately realize you forgot to add an SSH key file. You notice that OCI compute service provides instance console connections that supports adding SSH keys for a running instance. Hence, you created the console connection for your Linux server and activated it using the connection string provided. However, now you get prompted for a username and password to login.
What option should you recommend to add the SSH key to your running instance, while minimizing the administrative overhead? (Choose the best answer.)

• A. You need to modify the serial console connection string to include the identity file flag, -i to specify the SSH key to use.
• B. You need to terminate the running instance and recreate it by providing the SSH key file.
• C. You need to configure the boot loader to use ttyS0 as a console terminal on the VM.
• D. You need to reboot the instance from the console, boot into the bash shell in maintenance mode, and add SSH keys for the opc user.

Answer: A

 

NEW QUESTION 20
Which option contains the essential components of the Oracle Cloud Infrastructure Notifications service? (Choose the best answer.)

• A. An ALARM with a name unique across the tenancy, a SUBSCRIPTION, and a METRIC with the measurement of interest.
• B. An ALARM with a name unique across the compartment, a SUBSCRIPTION, and a METRIC with the measurement of interest.
• C. A TOPIC with a name unique across the compartment, a SUBSCRIPTION, and a MESSAGE where content is published.
• D. A TOPIC with a name unique across the tenancy, a SUBSCRIPTION, and a MESSAGE where content is published.

Answer: B

 

NEW QUESTION 21
You are asked to implement the disaster recovery (DR) and business continuity requirements for Oracle Cloud Infrastructure (OCI) Block Volumes. Two OCI regions being used: a primary/source region and a DR/ destination region. The requirements are:
There should be a copy of data in the destination region to use if a region-wide disaster occurs in the source region Minimize costs Which design will help you meet these requirements? (Choose the best answer.)

• A. Clone block volumes. Copy block volume clones from source region to destination region at regular intervals.
• B. Back up block volumes. Copy block volume backups from source region to destination region at regular intervals.
• C. Back up block volumes. Use Object Storage lifecycle management to automatically move backup objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.
• D. Clone block volumes. Use Object Storage lifecycle management to automatically move clone objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.

Answer: C

 

NEW QUESTION 22
You have created the following JSON file to specify a lifecycle policy for one of your object storage buckets:

How will this policy affect the objects that are stored in the bucket? (Choose the best answer.)

• A. Objects with the prefix "LOGS" will be retained for 120 days and then deleted permanently.
• B. Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be migrated back to standard Storage 120 days after creation.
• C. The objects with prefix "LOGS" will be deleted 30 days after creation date.
• D. Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be deleted 120 days after creation.

Answer: D

 

NEW QUESTION 23
What is a key benefit of using Oracle Cloud Infrastructure's Resource Manager for your Terraform provisioning and management activities? (Choose the best answer.)

• A. Resource Manager has administrative privileges by design. Even if your IAM user does not have access, you can leverage Resource Manager to provision new resources to any compartment in the Tenancy.
• B. Resource Manager manages to Terraform state file for your infrastructure and locks the file so that only one job at a time can run on a given stack.
• C. You can use Resource Manager to apply patches to all existing Oracle Linux interfaces in a specified compartment.
• D. You can use Resource Manager to identify and maintain an inventory of all Compute and Database instances across your tenancy.

Answer: B

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/ResourceManager/Concepts/ samplecomputeinstance.htm

 

NEW QUESTION 24
Which technique does NOT help you get the optimal performance out of the Oracle Cloud Infrastructure (OCI) File Storage service? (Choose the best answer.)

• A. Increase concurrency by using multiple threads, multiple clients, and multiple mount targets.
• B. Limit access to the same Availability Domain (AD) as the File Storage service where possible.
• C. Serialize operations to the file system to access consecutive blocks as much as possible.
• D. Right size compute instances from where file system is accessed based on their network capacity.

Answer: A

Explanation:
Section: (none)
Explanation

 

NEW QUESTION 25
Recently, your e-commerce web application has been receiving significantly more traffic than usual. Users are reporting they often encounter a 503 Service Error when trying to access your site. Sometimes the site is very slow.
You check your instance pool configuration to confirm that the maximum number of instances is configured to allow 20 compute instances. Currently, 14 compute instances have been provisioned by the instance pool.
You also confirm that current CPU utilization across all hosts exceeds the scale-out threshold you set in your auto-scaling policy. However, the instance pool is not provisioning any new instances.
What can you check to determine why the application is NOT functioning properly? (Choose the best answer.)

• A. Verify that the Quality Assurance team is not currently performing load-testing against production.
• B. Verify that the compute resource quota has not been exceeded.
• C. Verify that the new offer feature code did not introduce any performance bugs.
• D. Verify that the database is accessible.

Answer: B

 

NEW QUESTION 26
You are asked to implement the disaster recovery (DR) and business continuity requirements for Oracle Cloud Infrastructure (OCI) Block Volumes. Two OCI regions being used: a primary/source region and a DR/ destination region. The requirements are:
* There should be a copy of data in the destination region to use if a region-wide disaster occurs in the source region
* Minimize costs
Which design will help you meet these requirements? (Choose the best answer.)

• A. Clone block volumes. Copy block volume clones from source region to destination region at regular intervals.
• B. Back up block volumes. Copy block volume backups from source region to destination region at regular intervals.
• C. Back up block volumes. Use Object Storage lifecycle management to automatically move backup objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.
• D. Clone block volumes. Use Object Storage lifecycle management to automatically move clone objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.

Answer: C

 

NEW QUESTION 27
You have recently been asked to take over management of your company's infrastructure provisioning efforts, utilizing Terraform v0.12 to provision and manage infrastructure resources in Oracle Cloud Infrastructure (OCI). For the past few days the development environments have been failing to provision. Terraform returns the following error:

You locate the related code block in the Terraform config and find the following:

Which correction should you make to solve this issue? (Choose the best answer.)

• A. Modify line 15 to be the following:
  tcp_options = {min = "22", max = "22")
• B. Replace the curly braces '{ }' in lines 11 and 16 with square braces '[ ]'
• C. Place a command at the end of line 16
• D. Modify line 15 to be the following:
  tcp_options { min = "22"
  max = "22"
  }

Answer: A

 

NEW QUESTION 28
One of the compute instances that you have deployed on Oracle Cloud Infrastructure (OCI) is malfunctioning. You have created a console connection to remotely troubleshoot it.
Which two statements about console connections are TRUE? (Choose two.)

• A. For security purpose, the console connection will not let you edit system configuration files.
• B. It is not possible to use VNC console connections to connect to Bare Metal Instances.
• C. VNC console connection uses SSH port forwarding to create a secure connection from your local system to the VNC server attached to your instance's console.
• D. If you do not disconnect from the session, your serial console connection will automatically be terminated after 24 hours.
• E. It is not possible to connect to the serial console to an instance running Microsoft Windows, however VNC console connection can be used.

Answer: C,D

 

NEW QUESTION 29
Your team implemented a SaaS application that requires a whole system deployment for each new customer. The infrastructure provisioning is already automated via Terraform, and now you have been asked to develop an Ansible playbook to centralize configuration file management and deployment.
What is the most effective way to ensure your playbooks are utilizing up-to-date and accurate inventory? (Choose the best answer.)

• A. Implement a Command Line Interface script to list all the resources and run it within Ansible to generate a dynamic inventory list.
• B. Download the dynamic inventory script provided by Oracle Cloud Infrastructure and include it in the playbook invocation command.
• C. Export an inventory list from the Oracle Cloud Infrastructure Web console.
• D. Export an inventory list using Terraform apply command.

Answer: B

 

NEW QUESTION 30
Here is a partial code from a Terraform template written for Oracle Cloud Infrastructure (OCI):

What operation(s) does it perform? (Choose the best answer.)

• A. Provides object read and write access for an OCI Object Storage bucket.
• B. Creates a URL to provide access to an OCI Object Storage bucket for managing objects.
• C. Creates a lifecycle policy for an OCI Object Storage bucket for moving data to Archival storage at a specified time.
• D. Creates a pre-authenticated request for objects in an OCI Object Storage bucket.

Answer: A

 

NEW QUESTION 31
An insurance company has contracted you to help automate their application business continuity plan. They have the application running in eu-frankfurt-1 as the primary site and uk-london-1 as a disaster recovery site. Normally they have a DNS A record associated with the IP address of the primary endpoint in eu-frankfurt-1. In the event of a disaster, they use OCI DNS Zone Management to update the A record and replace it with the IP address of the endpoint in uk-londond-1.
How can you automate the failover process? (Choose the best answer.)

• A. Create a Health Check that evaluates both regional endpoints. Create a Traffic Management Steering policy with Failover type and associate it with the Health Check.
• B. Provision a Load Balancer in Frankfurt and associate it with the A record in DNS. Create a backend set with backend servers from both eu-frankfurt-1 and uk-london-1 regions.
• C. Create a Traffic Management Steering policy and attach it to a backend servers from both eu-frankfurt-1 and uk-london-1 regions.
• D. Create a Traffic Management Steering policy with Load Balancer type and add both eu-frankfurt-1 and uk- london-1 endpoints. Attach the Traffic Management Steering policy to the A record.

Answer: D

 

NEW QUESTION 32
You have ordered two FastConnect connections that provide a high availability connection architecture between your on-premises data center and Oracle Cloud Infrastructure (OCI). You want to run these connections in an ACTIVE/PASSIVE architecture.
How can you accomplish this? (Choose the best answer.)

• A. Decrease the prefix length of AS for the FastConnect you want to use as PASSIVE connection.
• B. Use AS PATH prepending with your routes.
• C. Enable BGP on the FastConnect that you want as the ACTIVE connection.
• D. Adjust one of the connections to have a higher ASN.

Answer: B

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/Resources/Assets/whitepapers/connectivity- redundancy-guide.pdf (5)

 

NEW QUESTION 33
You have created a group for several auditors. You assign the following policies to the group:

What actions are the auditors allowed to perform within your tenancy? (Choose the best answer.)

• A. Auditors are able to create new instances in the tenancy.
• B. Auditors are able to view all resources in the compartment.
• C. The Auditors can view resources in the tenancy.
• D. The Auditors are able to delete resource in the tenancy.

Answer: B

 

NEW QUESTION 34
One of your development teams has asked for your help to standardize the creation of several compute instances that must be provisioned each day of the week. You initially write several Command Line Interface (CLI) commands with all appropriate configuration parameters to achieve this task later determining this method lacks flexibility.
Which command generates a JSON-based template that Oracle Cloud Infrastructure (OCI) CLI can use to provision these instances on a regular basis? (Choose the best answer.)

• A. oci compute instance launch - -generate-full-command-json-input
• B. oci compute provision-instance - -generate-full-command-json-input
• C. oci compute instance launch - -generate-cli-skeleton
• D. oci compute instance create - -generate-cli-skeleton

Answer: A

 

NEW QUESTION 35
You are using Oracle Cloud Infrastructure (OCI) services across several regions: us-phoenix-1, us-ashburn-1, uk-london-1 and ap-tokyo-1. You have creates a separate administrator group for each region: PHX-Admins, ASH-Admins, LHR-Admins and NRT-Admins, respectively.
You want to restrict admin access to a specific region. E.g., PHX-Admins should be able to manage all resources in the us-phoenix-1 region only and not any other OCI regions.
What IAM policy syntax is required to restrict PHX-Admins to manage OCI resources in the us-phoenix-1 region only? (Choose the best answer.) Allow group PHX-Admins to manage all-resources in tenancy where

• A. request.target= 'phx'
  Allow group PHX-Admins to manage all-resources in tenancy where
• B. request.location= 'phx'
• C. request.permission= 'phx'
  Allow group PHX-Admins to manage all-resources in tenancy where
• D. request.region= 'phx'
  Allow group PHX-Admins to manage all-resources in tenancy where

Answer: D

 

NEW QUESTION 36
You have been asked to investigate a potential security risk on your company's Oracle Cloud Infrastructure (OCI) tenancy. You decide to start by looking through the audit logs for suspicious activity.
How can you retrieve the audit logs using the OCI Command Line Interface (CLI)? (Choose the best answer.)

• A. oci audit event list --start-time $start-time --end-time $end-time -- compartment-id $compartment-id
• B. oci audit event list --start-time $start-time --compartment-id $compartment-id
• C. oci audit event list --start-time $start-time --end-time $end-time --tenancy-id
• D. oci audit event list --end-time $end-time --compartment-id $compartment-id

Answer: A

Explanation:
$tenancy-id

 

NEW QUESTION 37
You are using Oracle Cloud Infrastructure (OCI) console to set up an alarm on a budget to track your OCI spending.
Which two are valid targets for creating a budget in OCI? (Choose two.)

• A. Select user as the type of target for your budget.
• B. Select Tenancy as the type of target for your budget.
• C. Select group as the type of target for your budget.
• D. Select Compartment as the type of target for your budget.
• E. Select Cost-Tracking Tags as the type of target for your budget.

Answer: D,E

 

NEW QUESTION 38
Your company recently adopted a hybrid cloud architecture which requires them to migrate some of their on- premises web applications to Oracle Cloud Infrastructure (OCI). You created a Terraform template which automatically provisions OCI resources such as compute instances, load balancer, and a database instance. After running the stack using the terraform apply command, it successfully launched the compute instances and the load balancer, but it failed to create a new database instance with the following error:
Service error: NotAuthorizedOrNotFound. shape VM.Standard2.4 not found. http status code: 404 You discovered that the resource quotas assigned to your compartment prevent you from using VM.Standard2.4 instance shapes available in your tenancy. You edit the Terraform script and replace the shape with VM.Standard2.2 Which option would you recommend to re-run the terraform command to have required OCI resources provisioned with the least effort? (Choose the best answer.)

• A. terraform apply -auto-approve
• B. terraform refresh -target=oci_database_db_system.db_system
• C. terraform apply -target=oci_database_db_system.db_system
• D. terraform plan -target=oci_database_db_system.db_system

Answer: C

 

NEW QUESTION 39
Which statement about Oracle Cloud Infrastructure paravirtualized block volume attachments is TRUE?
(Choose the best answer.)

• A. Paravirtualized volumes become immediately available on bare metal compute instances.
• B. Paravirtualization utilizes the internal storage stack of compute instance OS and network hardware virtualization to access block volumes.
• C. Paravirtualized is required to manage iSCSI configuration for virtual machine instances.
• D. Paravirtualized volumes may reduce the maximum IOPS performance for larger block volumes.

Answer: D

Explanation:
Explanation/Reference: https://blogs.oracle.com/cloud-infrastructure/paravirtualized-block-volume-attachments-for-vms

 

NEW QUESTION 40
......

Oracle 1Z0-1067-21 Exam Syllabus Topics:

Topic	Details
Topic 1	Create and managing alarms Monitoring and Alerting Security and Compliance
Topic 2	Create secure access control policies Implement automated notifications Understand Metric Query Language (MQL)
Topic 3	Manage infrastructure as code Utilize configuration management tools to control infrastructure Automating Cloud Tasks
Topic 4	Leverage automation to control cost Utilize billing tags to track cost Explain how to Implement billing alerts
Topic 5	Explain user resource manager processes to implement infrastructure as code Use the OCI CLI to simplify repetetive tasks
Topic 6	Utilize CASB to remediate security vulnerabilities Leverage compartments for resource isolation

 

Pass Oracle 1Z0-1067-21 Exam Quickly With ActualCollection: https://exams4sure.actualcollection.com/1Z0-1067-21-exam-questions.html