• Home
  • Articles
  • Oracle 1Z0-1072-20 Deluxe Study Guide with Online Test Engine [Q92-Q114]

Oracle 1Z0-1072-20 Deluxe Study Guide with Online Test Engine [Q92-Q114]

Share

Oracle 1Z0-1072-20 Deluxe Study Guide with Online Test Engine

1Z0-1072-20 dumps review - Professional Quiz Study Materials


Oracle 1Z0-1072-20 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Use advanced database features, such as Dataguard, BYOL, Data encryption, RAC, and EXADATA
Topic 2
  • Architect High Availability and Disaster Recovery solutions
  • Apply core Identity and Access Management components
Topic 3
  • Create and manage a Compute Virtual Machine (VM) instance
  • Design federation with various identity providers
Topic 4
  • Describe image options
  • Architect HA and DR solutions
  • Apply IAM, governance, and security best practices
Topic 5
  • Describe the components of Compute service, including shapes, images, and custom images
  • Set up a Load Balancer
Topic 6
  • Describe OCI Database options
  • Explain OCI Database Operations
  • Managing Autonomous Database
Topic 7
  • Troubleshoot options using console connections and boot volume
  • Discuss Load Balancer terminology and concepts
Topic 8
  • Architect High Availability (HA) using Explain resource locations

 

NEW QUESTION 92
Which is a customer's responsibility on an Oracle Cloud Infrastructure database?

  • A. creating the first default database on the DBCS server
  • B. patching the database and OS
  • C. installing the operating system (OS), Grid Infrastructure, and database software
  • D. creating an ASM diskgroup for data file or temp file storage

Answer: B

Explanation:
Explanation
On autonomous there's no patching needed. But on the regular DB Cloud services you need to patch the DB and the OS. During the creation on the OCDB the first DB is created automatically Oracle automatically takes care of Operating system Installation/Configuration, Grid Infrastructure, ASM diskgroup Creation/Configuration , and database software Installation and first database on the DB System.
that's all when Creating DB Systems. and then the customer responsible to apply the patches to the database and OS

 

NEW QUESTION 93
Which two statements are true about Autonomous Data Warehouse (ADW) backup?

  • A. Oracle Cloud Infrastructure (OCI) recommends backing up ADW databases manually to on-premises storage devices
  • B. You can backup ADW database only to a standard bucket type in OCI object storage
  • C. You must backup ADW database to object storage bucket named ADW_backup
  • D. You can perform manual backups to OCI object storage in addition to automated backups available on ADW

Answer: B,D

Explanation:
Explanation
Autonomous Database automatically backs up your database for you.In addition to automatic backups Autonomous Database also allows you take manual backups to your Oracle Cloud Infrastructure Object Storage. for example if you want to take a backup before a major change to make restore and recovery faster.
Also, Manual backups are only supported with buckets created in the standard storage tier if you provision an Autonomous Data Warehouse instance named ADWC1, the bucket name should be backup_adwc1 (the bucket name is lowercase)

 

NEW QUESTION 94
What happens when you run terraform plan?

  • A. It shows a dependency graph.
  • B. It shows the operator the course of action that would be taken if a change is applied.
  • C. It deletes all existing resources and re-creates them.
  • D. It configures, reconfigures, and instantiates resources and their dependencies.

Answer: B

Explanation:
Explanation
References:
The terraform plan command is used to create an execution plan. Terraform performs a refresh, unless explicitly disabled, and then determines what actions are necessary to achieve the desired state specified in the configuration files.
This command is a convenient way to check whether the execution plan for a set of changes matches your expectations without making any changes to real resources or to the state. For example, terraform plan might be run before committing a change to version control, to create confidence that it will behave as expected.

 

NEW QUESTION 95
You have hired a new employee to run reports from the Autonomous Data Warehouse (ADW) and are not confident in their SQL writing ability.
Into which consumer group will you assign this individual to minimize the impact of their code?

  • A. Highest
  • B. Low
  • C. Medium
  • D. High
  • E. Lowest

Answer: B

Explanation:
in ADW, The tnsnames.ora file provided with the credentials zip file contains three database service names identifiable as high, medium, and low. The predefined service names provide different levels of performance and concurrency for Autonomous Data Warehouse.
high: The High database service provides the highest level of resources to each SQL statement resulting in the highest performance, but supports the fewest number of concurrent SQL statements. Any SQL statement in this service can use all the CPU and IO resources in your database. The number of concurrent SQL statements that can be run in this service is 3, this number is independent of the number of OCPUs in your database.
medium: The Medium database service provides a lower level of resources to each SQL statement potentially resulting a lower level of performance, but supports more concurrent SQL statements. Any SQL statement in this service can use multiple CPU and IO resources in your database. The number of concurrent SQL statements that can be run in this service depends on the number of OCPUs in your database.
low: The Low database service provides the least level of resources to each SQL statement, but supports the most number of concurrent SQL statements. Any SQL statement in this service can use a single CPU and multiple IO resources in your database. The number of concurrent SQL statements that can be run in this service can be up to 300 times the number of OCPUs.
The predefined service names provide different levels of performance and concurrency for Autonomous DB Choose whichever database service offers the best balance of performance and concurrency.
Use the low database service name. to minimize the impact of their SQLs to by low consumer group

 

NEW QUESTION 96
In which language are Terraform and Terraform providers written?

  • A. Python
  • B. Go
  • C. C
  • D. Ruby

Answer: B

Explanation:
Explanation
References: https://www.terraform.io/docs/extend/writing-custom-providers.html

 

NEW QUESTION 97
You are working for a financial institution that is currently running two web applications in Oracle Cloud Infrastructure (OCI). All resources were created in the root compartment.
Your manager asked you to deploy new resources to support a proof-of-concept (PoC) for Oracle FlexCube.
You must ensure that the FlexCube resources are secured and cannot be affected by the team that manages the two web applications.
Which two tasks should you complete to ensure the required security of your resources? (Choose two.)

  • A. Create a new policy in the root compartment for the FlexCube project team. Assign a policy statement that grants the FlexCube project team the ability to manage all resources in the tenancy, where a specific tag key and tag value are present.
  • B. Create a new compartment for the two web applications and move the existing resources into this compartment. Modify the existing policy for the team that manages these applications so that the scope of access is defined as this new compartment.
  • C. Create a new compartment for the two web applications and move the existing resources into the compartment. Deploy the FlexCube application into the root compartment. Create a new policy in the root compartment that gives the FlexCube project team the ability to manage all resources in the tenancy.
  • D. Create a Tag Default within the root compartment with a default value of ${iam.principle.name} so that each new resource created is tagged with the name of the person who created it. Create a new IAM policy that allows users to only modify resources they created.
  • E. Create a new compartment for the FlexCube application deployment. Create a policy in this compartment for the project team that gives them the ability to manage all resources within the scope of this compartment.

Answer: B,D

 

NEW QUESTION 98
Which two resources reside exclusively in a single Oracle Cloud Infrastructure Availability Domain? (Choose two.)

  • A. Block volume
  • B. Object Storage
  • C. Compute instance
  • D. Web Application Firewall policy
  • E. Identity and Access Management Groups

Answer: A,C

Explanation:
Availability Domain-Specific Resources
DB Systems
ephemeral public IPs
instances: They can be attached only to volumes in the same availability domain.
subnets: When you create a subnet, you choose whether it is regional or specific to an availability domain. Oracle recommends using regional subnets.
volumes: They can be attached only to an instance in the same availability domain.

 

NEW QUESTION 99
Your company is moving an Internet-facing, 2-tier web application into Oracle Cloud Infrastructure. The application must have a highly available architecture.
Which two design options would you consider? (Choose two.)

  • A. Configure a NAT instance in your Virtual Cloud Network (VCN). Create a route rule by using the private IP of the NAT instance as a route target for all the private subnets in your VCN.
  • B. Place all web servers behind a public load balancer.
  • C. Create an Internet Gateway and attach it to your VCN. Deploy public load balancer nodes into two Available Domains.
  • D. Configure a Dynamic Route Gateway in your VCN and make it highly available.

Answer: B,C

 

NEW QUESTION 100
You are designing a networking infrastructure in multiple Oracle Cloud Infrastructure regions and require connectivity between workloads in each region. You have created a dynamic routing gateway (DRG) and a remote peering connection. However, your workloads are unable to communicate with each other.
What are two reasons for this? (Choose two.)

  • A. Identity and Access Management (IAM) policies have not been defined to allow connectivity across the two VCNs in different regions
  • B. An Internet gateway needs to be created in each VCN with a default route rule added in the route table forwarding the traffic to the Internet Gateway
  • C. A local peering gateway needs to be created in each VCN with a default route rule added in the route table forwarding the traffic to the local peering gateway
  • D. The security lists associated with subnets in each virtual cloud network (VCN) do not have the appropriate ingress rules
  • E. The route table associated with subnets in each VCN do not have a route rule defined to forward the traffic to their respective DRGs

Answer: D,E

Explanation:
Explanation
Setting Up a Remote Peering
Create the RPCs: Each VCN administrator creates an RPC for their own VCN's DRG.
Share information: The administrators share the basic required information.
Set up the required IAM policies for the connection: The administrators set up IAM policies to enable the connection to be established.
Establish the connection: The requestor connects the two RPCs (see Important Remote Peering Concepts for the definition of the requestor and acceptor).
Update route tables: Each administrator updates their VCN's route tables to enable traffic between the peered VCNs as desired.
Update security rules: Each administrator updates their VCN's security rules to enable traffic between the peered VCNs as desired.

 

NEW QUESTION 101
A financial firm is designing an application architecture for its online trading platform that must have high availability and fault tolerance.
Their solutions architect configured the application to use an Oracle Cloud Infrastructure Object Storage bucket located in the US West (us-phoenix-1) region to store large amounts of financial dat a. The stored financial data in the bucket must not be affected even if there is an outage in one of the Availability Domains or a complete region.
What should the architect do to avoid any costly service disruptions and ensure data durability?

  • A. Create a replication policy to send data to a different bucket in another OCI region.
  • B. Create a lifecycle policy to regularly send data from Standard to Archive storage.
  • C. Create a new Object Storage bucket in another region and configure lifecycle policy to move data every 5 days.
  • D. Copy the Object Storage bucket to a block volume.

Answer: C

 

NEW QUESTION 102
You have an application deployed in Oracle Cloud Infrastructure running only in the Phoenix region. You were asked to create a disaster recovery (DR) plan that will protect against the loss of critical dat a. The DR site must be at least 500 miles from your primary site and data transfer between the two sites must not traverse the public Internet.
Which is the recommended disaster recovery plan?

  • A. Create a DR environment in Ashburn. Associate a DRG with the VCN in each region and create a remote peering connection between the two VCNs.
  • B. Create a DR environment in Ashburn and provision a FastConnect virtual circuit using DRG between the regions.
  • C. Create a new virtual cloud network (VCN) in the Phoenix region and create a subnet in one availability domain (AD) that is not currently being used by your production systems. Establish VCN peering between the production and DR sites.
  • D. Create a DR environment in Ashburn. Associate a dynamic routing gateway (DRG) with the VCN in each region and configure an IPsec VPN connection between the two regions.

Answer: A

Explanation:
Remote VCN peering is the process of connecting two VCNs in different regions (but the same tenancy ). The peering allows the VCNs' resources to communicate using private IP addresses without routing the traffic over the internet or through your on-premises network. Without peering, a given VCN would need an internet gateway and public IP addresses for the instances that need to communicate with another VCN in a different region.
At a high level, the Networking service components required for a remote peering include:
- Two VCNs with non-overlapping CIDRs, in different regions that support remote peering. The VCNs must be in the same tenancy.
- A dynamic routing gateway (DRG) attached to each VCN in the peering relationship. Your VCN already has a DRG if you're using an IPSec VPN or an Oracle Cloud Infrastructure FastConnect private virtual circuit.
A remote peering connection (RPC) on each DRG in the peering relationship.
A connection between those two RPCs.
Supporting route rules to enable traffic to flow over the connection, and only to and from select subnets in the respective VCNs (if desired).
Supporting security rules to control the types of traffic allowed to and from the instances in the subnets that need to communicate with the other VCN.

 

NEW QUESTION 103
You are the Solutions Architect of a large company and are tasked with migrating all your services to Oracle Cloud Infrastructure. As part of this, you first design a Virtual Cloud Network (VCN) with a public subnet and a private subnet. Then in order to provide Internet connectivity to the instances in your private subnet, you create an Oracle Linux instance in your public subnet and configure NAT on it. However, even after adding all related security list rules and routes in the Route Table, your private subnet instances still cannot connect to the Internet.
Which action should you perform to enable Internet connectivity?

  • A. Create a Dynamic Routing Gateway (DRG) and route your private IP traffic to the DRG.
  • B. Disable "Source and Destination Check" on the VNIC of your Linux instance.
  • C. Restart the NAT instance.
  • D. There is no way that a private subnet can connect to the Internet.

Answer: B

Explanation:
Explanation
https://docs.cloud.oracle.com/iaas/Content/Network/Tasks/managingVNICs.htm#Source/D By default, every VNIC performs the source/destination check on its network traffic. The VNIC looks at the source and destination listed in the header of each network packet. If the VNIC is not the source or destination, then the packet is dropped.
If the VNIC needs to forward traffic (for example, if it needs to perform Network Address Translation (NAT)), you must disable the source/destination check on the VNIC. For instructions, see To update an existing VNIC.
For information about the general scenario, see Using a Private IP as a Route Target.

 

NEW QUESTION 104
Which service is NOT supported by Oracle Cloud Infrastructure CLI?

  • A. load balancer
  • B. block volumes
  • C. compute
  • D. database

Answer: B

Explanation:
Explanation
References: https://docs.cloud.oracle.com/iaas/Content/API/Concepts/cliconcepts.htm#services

 

NEW QUESTION 105
Which statement is true about Oracle Cloud Infrastructure FastConnect?

  • A. For private peering, FastConnect extends your existing infrastructure to allow you to consume object storage from your on-premises data center
  • B. The FastConnect provider network offers only 1 Gbps port connection speed increments
  • C. For public peering, a dynamic routing gateway must be configured and attached to the virtual cloud network (VCN)
  • D. For private peering, FastConnect extends your existing infrastructure to a virtual cloud network

Answer: D

Explanation:
Explanation
With FastConnect, you can choose to use , or both.
Private peering: To extend your existing infrastructure into a virtual cloud network (VCN) in Oracle Cloud Infrastructure (for example, to implement a hybrid cloud, or a lift and shift scenario). Communication across the connection is with IPv4 private addresses (typically RFC 1918).
Public peering: To access public services in Oracle Cloud Infrastructure without using the internet. For example, Object Storage, the Oracle Cloud Infrastructure Console and APIs, or public load balancers in your VCN. Communication across the connection is with IPv4 public IP addresses. Without FastConnect, the traffic destined for public IP addresses would be routed over the internet.

 

NEW QUESTION 106
When creating a subnet, one or more placeholder security lists are often associated with the subnet. Why?

  • A. Each operator needs its own security list.
  • B. Each network endpoint or instance in the subnet needs its own security list.
  • C. Each protocol needs its own security list.
  • D. It is not possible to add or remove security lists after a subnet is created.

Answer: B

Explanation:
Explanation
References:
https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/securitylists.htm?tocpath=Services%7CNetworkin

 

NEW QUESTION 107
Which DNS resource record type is used to point a host name to an IPv4 address?

  • A. A
  • B. ALIAS
  • C. AAAA
  • D. CNAME

Answer: A

Explanation:
Explanation
References:
https://docs.cloud.oracle.com/iaas/Content/DNS/Reference/supporteddnsresource.htm?tocpath=Services%7CDN

 

NEW QUESTION 108
A customer has established an Oracle Cloud Infrastructure (OCI) FastConnect connection to OCI. The virtual circuit is up and routes are being advertised from the customer's end, however the customer is unable to ping from compute instances inside the virtual cloud network (VCN) to servers residing in its on-premises data center.
Which two options on OCI would remedy this situation? (Choose two.)

  • A. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful ingress rule to allow ICMP traffic from anywhere.
  • B. Modify the default VCN route table to add a route back to the customer's on-premises network via the DRG.
  • C. Modify the route table associated with the VCN subnet in which the instance resides. Add a route to the customer's on-premises network via the Dynamic Routing Gateway (DRG).
  • D. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful egress rule to allow ICMP traffic to the customer's on-premises network.

Answer: C,D

 

NEW QUESTION 109
You have five different company locations spread across the US. For a proof-of-concept (POC) you need to setup secure and encrypted connectivity to your workloads running in a single virtual cloud network (VCN) in the Oracle Cloud Infrastructure Ashburn region from all company locations.
What would meet this requirement?

  • A. Create five virtual circuits using FastConnect for each company location and terminate those connections on a single dynamic routing gateway (DRG). Attach that DRG to your VCN.
  • B. Create five IPsec VPN connections with each company location and terminate those connections on five separate DRGs. Attach those DRGs to your VCN.
  • C. Create five internet gateways in your VCN and have separate route table for each internet gateway.
  • D. Create five IPsec connections with each company location and terminate those connections on a single DRG. Attach that DRG to your VCN.

Answer: D

Explanation:
Explanation
Access to Your On-Premises Network
There are two ways to connect your on-premises network to Oracle Cloud Infrastructure:
VPN Connect: Offers multiple IPSec tunnels between your existing network's edge and your VCN, by way of a DRG that you create and attach to your VCN.
Oracle Cloud Infrastructure FastConnect: Offers a private connection between your existing network's edge and Oracle Cloud Infrastructure. Traffic does not traverse the internet. Both private peering and public peering are supported. That means your on-premises hosts can access private IPv4 addresses in your VCN as well as regional public IPv4 addresses in Oracle Cloud Infrastructure (for example, Object Storage or public load balancers in your VCN).
You can use one or both types of the preceding connections. If you use both, you can use them simultaneously, or in a redundant configuration. These connections come to your VCN by way of a single DRG that you create and attach to your VCN. Without that DRG attachment and a route rule for the DRG, traffic does not flow between your VCN and on-premises network. At any time, you can detach the DRG from your VCN but maintain all the remaining components that form the rest of the connection. You could then reattach the DRG again, or attach it to another VCN.

 

NEW QUESTION 110
Which two statements are true regarding cloning a block volume?

  • A. You can skip block volume encryption when creating a clone
  • B. You can change the block volume performance when creating a clone
  • C. You can clone block volumes across regions
  • D. You can change the block volume size when creating a clone

Answer: B,D

Explanation:
You can create a clone from a volume using the Block Volume service. Cloning enables you to make a copy of an existing block volume without needing to go through the backup and restore process.
A cloned volume is a point-in-time direct disk-to-disk deep copy of the source volume, so all the data that is in the source volume when the clone is created is copied to the clone volume.
You can only create a clone for a volume within the same region, availability domain and tenant. You can create a clone for a volume between compartments as long as you have the required access permissions for the operation.
during create a clone you can do the following
If you want to clone the block volume to a larger size volume, check Custom Block Volume Size (GB) and then specify the new size. You can only increase the size of the volume, you cannot decrease the size. If you clone the block volume to a larger size volume, you need to extend the volume's partition. See Extending the Partition for a Block Volume for more information.
If you want to change the elastic performance setting when cloning the volume, check Custom Block Volume Performance and select the elastic performance setting you want the volume clone to use. See Block Volume Elastic Performance for more information. You can also change the elastic performance setting after you have cloned the volume, see Block Volume Elastic Performance. If you leave Custom Block Volume Performance unchecked, the cloned volume will use the same elastic performance setting as the source volume.

 

NEW QUESTION 111
You need to set up instance principals so that an application running on an instance can call Oracle Cloud Infrastructure (OCI) public services, without the need to configure user credentials.
A developer in your team has already configured the application built using an OCI SDK to authenticate using the instance principals provider.
Which is NOT a necessary step to complete this set up?

  • A. Create a dynamic group with matching rules to specify which instances you want to allow to make API calls against services.
  • B. Create a policy granting permissions to the dynamic group to access services in your compartment or tenancy.
  • C. Generate Auth Tokens to enable instances in the dynamic group to authenticate with APIs.
  • D. Deploy the application and the SDK to all the instances that belong to the dynamic group.

Answer: D

Explanation:
Explanation/Reference: https://blogs.oracle.com/cloud-infrastructure/announcing-instance-principals-for-identity-and- access-management

 

NEW QUESTION 112
Which statement is true about Oracle Cloud Infrastructure FastConnect?

  • A. For private peering, FastConnect extends your existing infrastructure to allow you to consume object storage from your on-premises data center
  • B. The FastConnect provider network offers only 1 Gbps port connection speed increments
  • C. For public peering, a dynamic routing gateway must be configured and attached to the virtual cloud network (VCN)
  • D. For private peering, FastConnect extends your existing infrastructure to a virtual cloud network

Answer: D

Explanation:
With FastConnect, you can choose to use private peering, public peering, or both.
Private peering: To extend your existing infrastructure into a virtual cloud network (VCN) in Oracle Cloud Infrastructure (for example, to implement a hybrid cloud, or a lift and shift scenario). Communication across the connection is with IPv4 private addresses (typically RFC 1918).
Public peering: To access public services in Oracle Cloud Infrastructure without using the internet. For example, Object Storage, the Oracle Cloud Infrastructure Console and APIs, or public load balancers in your VCN. Communication across the connection is with IPv4 public IP addresses. Without FastConnect, the traffic destined for public IP addresses would be routed over the internet.

 

NEW QUESTION 113
Which two are true for achieving High Availability on Oracle Cloud Infrastructure? (Choose two.)

  • A. Store your database files on Object Storage so that they are available in all Availability Domains in all regions.
  • B. Configure your database to have Data Guard in another Availability Domain in Sync mode within a region.
  • C. Distribute your application servers across all Availability Domains within a region.
  • D. Attach your block volume form Availability Domain 1 to a compute instance in Availability Domain 2 (and vice versa) so that they are highly available.
  • E. Store your database across multiple regions so that half of the data resides in one region and the other half resides in another region.

Answer: B,C

 

NEW QUESTION 114
......

Exam Questions Answers Braindumps 1Z0-1072-20 Exam Dumps PDF Questions: https://www.itpassleader.com/Oracle/1Z0-1072-20-dumps-pass-exam.html

Related Articles

more
Oracle 1Z0-1072-20 Certification Practice Exam
0
0
0
0