Exam 1z0-1085-20: IT Certification Guaranteed, The Easy Way!
Exam 1z0-1085-20: IT Certification Guaranteed, The Easy Way!
Exam 1z0-1085-20: IT Certification Guaranteed, The Easy Way!
Exam : 1z0-1085-20
Vendor : Oracle
Version : V13.25
1
IT Certification Guaranteed, The Easy Way!
NO.1 Which Oracle Cloud Infrastructure (OCI) service can be used to protect sensitive and ragulated
data in OCI database services?
A. Oracle Data Guard
B. OCI Audit
C. Oracle Data Safe
D. OCI OS management
Answer: C
NO.2 Which feature is NOT a component of Oracle Cloud Infrastructure (OCI) Identity and Access
management service?
A. Federation
B. User Credentials
C. Policies
D. Network Security Group
Answer: A
NO.3 Which service level agreement type is NOT offered by Oracle Cloud Infrastructure Compute
service?
A. Data Plane
B. Performance
C. Application Plane
D. Control Plane
Answer: C
Explanation
Oracle offers several different service level agreements as defined in this section (Service Level
Agreements).Service level agreements range from least restrictive (data plane) to more restrictive
(control plane) to most restrictive (performance).
NO.5 Which feature is NOT a component of Oracle Cloud Infrastructure (OCI) Identity and Access
management service?
A. User Credentials
B. Network Security Group
2
IT Certification Guaranteed, The Easy Way!
C. Federation
D. Policies
Answer: C
NO.6 Which three components are part of Oracle Cloud Infrastructure Identity and Access
Management service?
A. Virtual Cloud Networks
B. Policies
C. Regional Subnets
D. Dynamic Groups
E. Roles
F. Compute Instances
G. Users
Answer: B D G
Explanation
IAM components are
RESOURCE
The cloud objects that your company's employees create and use when interacting with Oracle Cloud
Infrastructure. For example: compute instances, block storage volumes, virtual cloud networks
(VCNs), subnets, route tables, etc.
USER
An individual employee or system that needs to manage or use your company's Oracle Cloud
Infrastructure resources. Users might need to launch instances, manage remote disks, work with your
virtual cloud network, etc. End users of your application are not typically IAM users. Users have one
or more IAM credentials (see User Credentials).
POLICY
A document that specifies who can access which resources, and how. Access is granted at the group
and compartment level, which means you can write a policy that gives a group a specific type of
access within a specific compartment, or to the tenancy itself. If you give a group access to the
tenancy, the group automatically gets the same type of access to all the compartments inside the
tenancy. For more information, see Example Scenario and How Policies Work. The word "policy" is
used by people in different ways: to mean an individual statement written in the policy language; to
mean a collection of statements in a single, named "policy" document (which has an Oracle Cloud ID
(OCID) assigned to it); and to mean the overall body of policies your organization uses to control
access to resources.
GROUP
A collection of users who all need the same type of access to a particular set of resources or
compartment.
DYNAMIC GROUP
A special type of group that contains resources (such as compute instances) that match rules that you
define (thus the membership can change dynamically as matching resources are created or deleted).
These instances act as "principal" actors and can make API calls to services according to policies that
you write for the dynamic group.
NETWORK SOURCE
A group of IP addresses that are allowed to access resources in your tenancy. The IP addresses can be
3
IT Certification Guaranteed, The Easy Way!
public IP addresses or IP addresses from a VCN within your tenancy. After you create the network
source, you use policy to restrict access to only requests that originate from the IPs in the network
source.
COMPARTMENT
A collection of related resources. Compartments are a fundamental component of Oracle Cloud
Infrastructure for organizing and isolating your cloud resources. You use them to clearly separate
resources for the purposes of measuring usage and billing, access (through the use of policies), and
isolation (separating the resources for one project or business unit from another). A common
approach is to create a compartment for each major part of your organization. For more information,
see Setting Up Your Tenancy.
TENANCY
The root compartment that contains all of your organization's Oracle Cloud Infrastructure resources.
Oracle automatically creates your company's tenancy for you. Directly within the tenancy are your
IAM entities (users, groups, compartments, and some policies; you can also put policies into
compartments inside the tenancy). You place the other types of cloud resources (e.g., instances,
virtual networks, block storage volumes, etc.) inside the compartments that you create.
HOME REGION
The region where your IAM resources reside. All IAM resources are global and available across all
regions, but the master set of definitions reside in a single region, the home region. You must make
changes to your IAM resources in your home region. The changes will be automatically propagated to
all regions. For more information, see Managing Regions.
FEDERATION
A relationship that an administrator configures between an identity provider and a service provider.
When you federate Oracle Cloud Infrastructure with an identity provider, you manage users and
groups in the identity provider. You manage authorization in Oracle Cloud Infrastructure's IAM
service. Oracle Cloud Infrastructure tenancies are federated with Oracle Identity Cloud Service by
default.
NO.7 A company has developed an eCommerce web application In Oracle Cloud Infrastructure.
What should they do to ensure that the application has the highest level of resilience?
A. Deploy the application across multiple Regions and Availability Domains.
B. Deploy the application across multiple Availability Domains and subnet.
C. Deploy the application across multiple Virtual Cloud Networks.
D. Deploy the application across multiple Availability Domains and Fault Domains.
Answer: A
Explanation
For highest level of resilience you can deploy the application between regions and distribute on
availability domain and fault domains.
NO.8 Which three components are part of Oracle Cloud Infrastructure (OCI) identity and access
management service?
A. Regional Subnets
B. Policies
C. Users
D. Compute Instances
4
IT Certification Guaranteed, The Easy Way!
E. Dynamic Groups
F. Roles
G. Virtual Cloud Networks
Answer: B C G
NO.10 A customer is looking to migrate their old database backups from their on-premises data
center to Oracle Cloud Infrastructure (OCI). Which OCI service is the most cost-effective?
A. Block Volume
B. Archive Storage
C. File Storage
D. Object Storage (standard)
Answer: B
Explanation
Archive storage is the most cost effective for archive data
NO.11 Which is NOT covered by Oracle Cloud Infrastructure Service Level Agreement (SLA)?
A. Manageability
B. Performance
C. Reliability
D. Availability
Answer: C
Explanation
https://www.oracle.com/assets/paas-iaas-pub-cld-srvs-pillar-4021422.pdf
5
IT Certification Guaranteed, The Easy Way!
NO.13 Which capability can be used to protect against unexpected hardware or power supply
failures within an availability domain?
A. Fault Domains
B. Compartments
C. Top of Rack Switches
D. Power Distribution Units
Answer: A
Explanation
A fault domain is a grouping of hardware and infrastructure within an availability domain. Each
availability domain contains three fault domains. Fault domains provide anti-affinity: they let you
distribute your instances so that the instances are not on the same physical hardware within a single
availability domain. A hardware failure or Compute hardware maintenance event that affects one
fault domain does not affect instances in other fault domains. In addition, the physical hardware in a
fault domain has independent and redundant power supplies, which prevents a failure in the power
supply hardware within one fault domain from affecting other fault domains.
NO.14 Which service is the most effective for moving large amounts of data from your on-premises
to OCI?
A. Data Transfer appliance
B. Data Safe
C. Internal Gateway
D. Dynamic Routing Gateway
Answer: A
NO.15 According to Shared security model, which two are a customer's responsibilities in Oracle
Cloud Infrastructure (OCI)?
A. Physical security of OCI data center facilities
B. Virtual Machine hypervisor
C. Local NVMe data persistence
D. Customer data
E. Object Storage data durability
Answer: D E
Explanation
Customer and Oracle's responsibilities can be divided into the following areas:
Physical Security: Oracle is responsible for protecting the global infrastructure that runs all of the
services offered in Oracle Cloud Infrastructure. This infrastructure consists of the hardware, software,
networking, and facilities that run Oracle Cloud Infrastructure services.
Identity and Access Management (IAM): As with all Oracle cloud services, you should protect your
cloud access credentials and set up individual user accounts. You are responsible for managing and
reviewing access for your own employee accounts and for all activities that occur under your
tenancy. Oracle is responsible for providing effective IAM services such as identity management,
6
IT Certification Guaranteed, The Easy Way!
NO.16 Which service is the most effective for moving large amounts of data from your on-premises
to Oracle Cloud Infrastructure (OCI)?
A. Data Safe
B. Dynamic Routing Gateway
C. Data Transfer appliance
D. Internet Gateway
Answer: C
Explanation
APPLIANCE-BASED DATA TRANSFER
You send your data as files on secure, high-capacity, Oracle-supplied storage appliances to an Oracle
transfer site. Operators at the Oracle transfer site upload the data into your designated Object
Storage bucket in your tenancy.
This solution supports data transfer when you are migrating a large volume of data and when using
disks is not a practical alternative. You do not need to write any code or purchase any hardware.
Oracle supplies the transfer appliance and software required to manage the transfer.
https://docs.cloud.oracle.com/en-us/iaas/Content/DataTransfer/Concepts/overview.htm
NO.17 After Signing up for a new Oracle cloud Infrastructure tenancy, what would you subscribe to
in order to deploy infrastructure and services in different parts of the world?
A. Availability Domain
B. Fault Domains
C. Pay as you go pricing
7
IT Certification Guaranteed, The Easy Way!
D. Region
Answer: D
Explanation
Oracle Cloud Infrastructure is hosted in regions and availability domains. A region is a localized
geographic area, and an availability domain is one or more data centers located within a region. A
region is composed of one or more availability domains. Most Oracle Cloud Infrastructure resources
are either region-specific, such as a virtual cloud network, or availability domain-specific, such as a
compute instance. Traffic between availability domains and between regions is encrypted.
NO.18 Which feature is not component of Oracle cloud Infrastructure identity and Access
management service?
A. federation
B. User Credential
C. Network Security Group
D. Policies
Answer: C
Explanation
Components of IAM
RESOURCE
The cloud objects that your company's employees create and use when interacting with Oracle Cloud
Infrastructure. For example: compute instances, block storage volumes, virtual cloud networks
(VCNs), subnets, route tables, etc.
USER
An individual employee or system that needs to manage or use your company's Oracle Cloud
Infrastructure resources. Users might need to launch instances, manage remote disks, work with your
virtual cloud network, etc. End users of your application are not typically IAM users. Users have one
or more IAM credentials (see User Credentials).
GROUP
A collection of users who all need the same type of access to a particular set of resources or
compartment.
DYNAMIC GROUP
A special type of group that contains resources (such as compute instances) that match rules that you
define (thus the membership can change dynamically as matching resources are created or deleted).
These instances act as "principal" actors and can make API calls to services according to policies that
you write for the dynamic group.
NETWORK SOURCE
A group of IP addresses that are allowed to access resources in your tenancy. The IP addresses can be
public IP addresses or IP addresses from a VCN within your tenancy. After you create the network
source, you use policy to restrict access to only requests that originate from the IPs in the network
source.
COMPARTMENT
A collection of related resources. Compartments are a fundamental component of Oracle Cloud
Infrastructure for organizing and isolating your cloud resources. You use them to clearly separate
resources for the purposes of measuring usage and billing, access (through the use of policies), and
isolation (separating the resources for one project or business unit from another). A common
8
IT Certification Guaranteed, The Easy Way!
approach is to create a compartment for each major part of your organization. For more information,
see Setting Up Your Tenancy.
TENANCY
The root compartment that contains all of your organization's Oracle Cloud Infrastructure resources.
Oracle automatically creates your company's tenancy for you. Directly within the tenancy are your
IAM entities (users, groups, compartments, and some policies; you can also put policies into
compartments inside the tenancy). You place the other types of cloud resources (e.g., instances,
virtual networks, block storage volumes, etc.) inside the compartments that you create.
POLICY
A document that specifies who can access which resources, and how. Access is granted at the group
and compartment level, which means you can write a policy that gives a group a specific type of
access within a specific compartment, or to the tenancy itself. If you give a group access to the
tenancy, the group automatically gets the same type of access to all the compartments inside the
tenancy. For more information, see Example Scenario and How Policies Work. The word "policy" is
used by people in different ways: to mean an individual statement written in the policy language; to
mean a collection of statements in a single, named "policy" document (which has an Oracle Cloud ID
(OCID) assigned to it); and to mean the overall body of policies your organization uses to control
access to resources.
HOME REGION
The region where your IAM resources reside. All IAM resources are global and available across all
regions, but the master set of definitions reside in a single region, the home region. You must make
changes to your IAM resources in your home region. The changes will be automatically propagated to
all regions. For more information, see Managing Regions.
FEDERATION
A relationship that an administrator configures between an identity provider and a service provider.
When you federate Oracle Cloud Infrastructure with an identity provider, you manage users and
groups in the identity provider. You manage authorization in Oracle Cloud Infrastructure's IAM
service. Oracle Cloud Infrastructure tenancies are federated with Oracle Identity Cloud Service by
default.
NO.19 Which is NOT available to you whenever Oracle Cloud Infrastructure creates or resolves an
incident?
A. Twitter notifications
B. Text Message notifications
C. Email notifications
D. Webhook notifications
Answer: A
Explanation
The Oracle Cloud Infrastructure Notifications service broadcasts messages to distributed components
through a publish-subscribe pattern, delivering secure, highly reliable, low latency and durable
messages for applications hosted on Oracle Cloud Infrastructure and externally. Use Notifications to
get notified when event rules are triggered or alarms are breached, or to directly publish a message.
Messages sent out as email by the Oracle Cloud Infrastructure Notifications service are processed
and delivered through Oracle resources
NO.20 You have a mission-critical application which requires to be globally available at all times.
9
IT Certification Guaranteed, The Easy Way!
NO.21 A banking platform has been re-designed to a microservices based architecture using Docker
containers for deployment.
Which service can you use to deploy containers on Oracle Cloud Infrastructure (OCI)?
A. Container Engine for Kubernetes (OKE)
B. Streaming Service
C. API Gateway
D. File Storage Service
Answer: A
Explanation
Oracle Cloud Infrastructure Container Engine for Kubernetes is a fully-managed, scalable, and highly
available service that you can use to deploy your containerized applications to the cloud.
Use Container Engine for Kubernetes (sometimes abbreviated to just OKE) when your development
team wants to reliably build, deploy, and manage cloud-native applications.
You specify the compute resources that your applications require, and Container Engine for
Kubernetes provisions them on Oracle Cloud Infrastructure in an existing OCI tenancy.
NO.22 What service is NOT available as part of Oracle Cloud Free Tier?
A. Oracle Cloud Infrastructure Monitoring
B. Oracle Cloud Infrastructure Exadata DB Systems
C. Oracle Cloud Infrastructure Autonomous Data Warehouse
10
IT Certification Guaranteed, The Easy Way!
NO.23 Which Oracle Cloud Infrastructure storage service can provide a shared file system across
multiple compute instances?
A. file Storage
B. Local NVMe
C. Object Storage
D. Archive storage
Answer: A
Explanation
Oracle Cloud Infrastructure File Storage service provides a durable, scalable, secure, enterprise-grade
network file system. You can connect to a File Storage service file system from any bare metal, virtual
machine, or container instance in your Virtual Cloud Network (VCN). You can also access a file system
from outside the VCN using Oracle Cloud Infrastructure FastConnect and Internet Protocol security
(IPSec) virtual private network (VPN).
Large Compute clusters of thousands of instances can use the File Storage service for high-
performance shared storage. Storage provisioning is fully managed and automatic as your use scales
from a single byte to exabytes without upfront provisioning.
NO.24 Which should you use to distribute Incoming traffic between a set of web servers?
A. Load Balances
B. Internet Gateway
C. Autoscallng
D. Dynamic Routing Gateway
Answer: A
Explanation
The Oracle Cloud Infrastructure Load Balancing service provides automated traffic distribution from
one entry point to multiple servers reachable from your virtual cloud network (VCN). The service
offers a load balancer with your choice of a public or private IP address, and provisioned bandwidth.
NO.25 Oracle Cloud Infrastructure is complement with which three industry standard?
A. USA E-WALLED
B. PRACE UK
C. HIPPA
D. PCI-DSS
E. IG Toolkit-UK
Answer: C D E
Explanation
https://www.oracle.com/cloud/cloud-infrastructure-compliance/
11
IT Certification Guaranteed, The Easy Way!
NO.26 Which describes a key benefit of using Oracle Cloud Infrastructure (OCI)?
A. With OCI, you can only run Java based workloads on bare metal.
B. With OCI, you can run only cloud-native workloads.
C. Only bare metal workloads are supported on OCI.
D. OCI offers consistent performance with a predictable pricing model.
Answer: D
Explanation
https://www.oracle.com/in/cloud/pricing.html
NO.27 Which kind of scaling is supported by virtual machines in Oracle Cloud Infrastructure
Compute service?
A. Only scaling up or down
B. Only scaling out
C. Scaling up or down, and scaling in or out
D. Only scaling in
Answer: C
Explanation
To change the shape of an OCI Instance
You can change the shape of a virtual machine (VM) instance without having to rebuild your
instances or redeploy your applications. This lets you scale up your Compute resources for increased
performance, or scale down to reduce cost.
Autoscaling lets you automatically adjust the number of Compute instances in an instance pool based
on performance metrics such as CPU utilization. This helps you provide consistent performance for
your end users during periods of high demand, and helps you reduce your costs during periods of low
demand.
As load increases, instances are automatically provisioned: the instance pool scales out. As load
decreases, instances are automatically removed: the instance pool scales in.
NO.28 Which three services Integrate with Oracle Cloud Infrastructure (OCI) Key Management?
A. Functions
B. Block Volume
C. Object Storage
D. Auto Scaling
E. Identity and Access Management
F. File Storage
Answer: B C F
Explanation
DATA ENCRYPTION
Protect customer data at-rest and in-transit in a way that allows customers to meet their security and
compliance requirements for cryptographic algorithms and key management The Oracle Cloud
Infrastructure Block Volume service always encrypts all block volumes, boot volumes, and volume
backups at rest by using the Advanced Encryption Standard (AES) algorithm with 256-bit encryption.
By default all volumes and their backups are encrypted using the Oracle-provided encryption keys.
Each time a volume is cloned or restored from a backup the volume is assigned a new unique
12
IT Certification Guaranteed, The Easy Way!
encryption key.
The File Storage service encrypts all file system and snapshot data at rest. By default all file systems
are encrypted using Oracle-managed encryption keys. You have the option to encrypt all of your file
systems using the keys that you own and manage using the Vault service.
Object Storage employs 256-bit Advanced Encryption Standard (AES-256) to encrypt object data on
the server. Each object is encrypted with its own data encryption key. Data encryption keys are
always encrypted with a master encryption key that is assigned to the bucket. Encryption is enabled
by default and cannot be turned off. By default, Oracle manages the master encryption key.
NO.29 Which feature allows you to logically group and isolate your Oracle Cloud Infrastructure
resources?
A. Tenancy
B. Identity and Access Management Groups
C. Compartments
D. Availability Domain
Answer: C
Explanation
COMPARTMENT A collection of related resources. Compartments are a fundamental component of
Oracle Cloud Infrastructure for organizing and isolating your cloud resources. You use them to clearly
separate resources for the purposes of measuring usage and billing, access (through the use of
policies), and isolation (separating the resources for one project or business unit from another). A
common approach is to create a compartment for each major part of your organization.
User Group can use some resources in the compartment like network resources also they can't create
it depend on the policy that assigned
Remember, a compartment is a logical grouping, not a physical one
NO.30 What purpose does an Oracle Cloud Infrastructure (OCI) Dynamic Routing Gateway Serve?
A. Enables OCI Compute Instance to privately connect to OCI Object Storage
B. Enables OCI Compute instance to connect to on-promises environments
C. Enable OCI Compute instances to connect to the internal
D. Enables OCI Compute instances to be reached from internet
Answer: B
Explanation
You use a DRG when connecting your existing on-premises network to your virtual cloud network
(VCN) with one (or both) of these:
IPSec VPN
Oracle Cloud Infrastructure FastConnect
NO.31 Which Oracle Cloud Infrastructure (OCI) database solution will be most economical for a
customer looking to have the elasticity of the cloud with minimal administration and maintenance
effort for their DBA team?
A. OCI Bare Metal DB Systems
B. OCI Virtual Machine DB Systems
C. OCI Exadata DB Systems.
D. OCI Autonomous Database
13
IT Certification Guaranteed, The Easy Way!
Answer: D
Explanation
Oracle Cloud Infrastructure's Autonomous Database is a fully managed, preconfigured database
environment with two workload types available, Autonomous Transaction Processing and
Autonomous Data Warehouse.
You do not need to configure or manage any hardware, or install any software. After provisioning,
you can scale the number of CPU cores or the storage capacity of the database at any time without
impacting availability or performance. Autonomous Database handles creating the database, as well
as the following maintenance tasks:
Backing up the database
Patching the database
Upgrading the database
Tuning the database
NO.32 Which two Oracle Cloud Infrastructure resources can be used to group/categorize expenses?
A. Policies
B. Tags
C. Users
D. Compartments
E. Groups
Answer: B D
Explanation
You can do Costs Analysis in OCI and you can group and filter the cost by Tags or compartments To
filter costs by dates To filter costs by tags To filter costs by compartments To remove a compartment
or tag filter
14
IT Certification Guaranteed, The Easy Way!
NO.35 A new customer has logged into Oracle Cloud Infrastructure (OCI) as an administrator for the
first time. The admin would like to deploy infrastructure. What is the first step they must take in
order to accomplish this task?
A. File a service request for access to each additional region.
B. Use API endpoints to create resources in the desired region.
C. Subscribe to the desired region.
D. Navigate to the desired region and begin creating resources.
Answer: D
NO.36 You were recently assigned to manage a project to deploy Oracle E-Business Suite on Oracle
Cloud Infrastructure (OCI). The application will require a database, several servers, and a shared file
system.
Which three OCI services are best suited for this project?
A. OCI virtual or Bare Metal DB Systems
B. OCI Streaming Service
C. Object Storage Service
D. Virtual Machine (VM) or Bare Metal (BM) compute Instances
E. File Storage Service
F. Oracle Container Engine for Kubernetes
Answer: A D E
Explanation
https://docs.oracle.com/en/solutions/deploy-ebusiness-suite-oci/index.html#GUID-0CA881FD-D96F-
4885-BC7
NO.37 You are required to host several files in a location that can be publicly accessible from
anywhere in the world.
Which Oracle Cloud Infrastructure (OCI) service should you use?
A. OCI Object Storage
B. Oracle Functions
C. OCI Block Volume
D. OCI File Storage
15
IT Certification Guaranteed, The Easy Way!
NO.38 Which is NOT a valid business benefit for a customer considering migrating their
infrastructure and apps to Oracle Cloud Infrastructure (OCI).
A. Faster go-to market
B. Capital Expenditure to Operational Expenditure conversion
C. Greater agility
D. Increased Total Cost of Ownership (TCO)
Answer: D
Explanation
Oracle Cloud Infrastructure is a set of complementary cloud services that enable you to build and run
a wide range of applications and services in a highly available hosted environment. Oracle Cloud
Infrastructure offers high-performance compute capabilities (as physical hardware instances) and
storage capacity in a flexible overlay virtual network that is securely accessible from your on-
premises network.
NO.39 Which two should be considered when designing a fault-tolerant solution in Oracle Cloud
lntrostiurture (OCI)?
A. ensuring your solution components are distributed across OCI Fault Domains
B. performing data integrity check when using OCI File Storage Service
C. writing custom scripts that will monitor your solution
D. using multiple OCI Availability Domains (AD), where available, to deploy your solution
E. creating a manual cluster of compute instances
Answer: A D
NO.40 You want to leverage a managed Real Application Cluster (RAC) offering in Oracle Cloud
Infrastructure.
which OCI Managed database service would you choose?
A. Autonomous Transaction Processing (shared)
B. VM DB System
C. Autonomous Data Warehousing (shared)
D. Bare Metal DB Systems
Answer: B
Explanation
There are 2 types of DB systems on virtual machines:
A 1-node VM DB system consists of one VM.
A 2-node VM DB system consists of two VMs clustered with RAC enabled.
NO.41 Which is NOT required to register and log support requests in My Oracle Support (MOS)?
A. Your Customer Support Identifier (CSl)
B. Your account password
C. Your tenancy OCID (Orade Cloud Identifier)
D. Your resource OCID (Oracle Cloud Identifier)
16
IT Certification Guaranteed, The Easy Way!
Answer: B
Explanation
You can open a support service request with Oracle Support
To create a service request:
Go to My Oracle Support and sign in.
If you are not signed in to Oracle Cloud Support, click Switch to Cloud Support at the top of the page.
Click Create Service Request.
Select the following from the displayed menus:
Service Type: Select Oracle Cloud Infrastructure from the list.
Service Name: Select the appropriate option for your organization.
Problem Type: Select your problem type from the list.
Enter your contact information.
Enter a Description, and then enter the required fields specific to your issue. For most Oracle Cloud
Infrastructure issues you need to include the OCID (Oracle Cloud Identifier) for each resource you
need help with. See Locating Oracle Cloud Infrastructure IDs for instructions on locating these.
NO.43 Which three methods can you use to create or modify Oracle Cloud Infrastructure (OCI)
resources?
A. REST APIs
B. OCI desktop client
C. Secure Shell (SSH)
D. OCI Console
E. Command-line Interface
F. Remote Desktop Protocol (RDP)
G. Serial console connection
Answer: A D E
Explanation
You can create and manage resources in the following ways:
Oracle Cloud Infrastructure ConsoleThe Console is an intuitive, graphical interface that lets you create
and manage your instances, cloud networks, and storage volumes, as well as your users and
permissions.
See Using the Console.
Oracle Cloud Infrastructure APIsThe Oracle Cloud Infrastructure APIs are typical REST APIs that use
HTTPS requests and responses. See API Requests.
SDKsSeveral Software Development Kits are available for easy integration with the Oracle Cloud
Infrastructure APIs, including SDKs for Java, Ruby, and Python. For more information, see Developer
Resources.
Command Line Interface (CLI)You can use a command line interface with some services. For more
17
IT Certification Guaranteed, The Easy Way!
NO.45 Which statement is true for an oracle cloud Infrastructure (OCI) compute instance?
A. Compute instance always get a public IP address
B. Compute instance does not use a boot volume
C. Compute instance cannot leverage auto scaling feature
D. Compute instance always get a private IP address
Answer: D
Explanation
When you create an instance, the instance is automatically attached to a virtual network interface
card (VNIC) in the cloud network's subnet and given a private IP address from the subnet's CIDR. You
can let the IP address be automatically assigned, or you can specify a particular address of your
choice. The private IP address lets instances within the cloud network communicate with each other.
NO.46 You want to migrate mission-critical Oracle E- Business Suite application to Oracle Cloud
Infrastructure (OCI) with full control and access to the underlying infrastructure.
Which option meets this requirement?
A. Replace E-Business Suite with an Oracle SaaS application
B. OCI Exadata DB Systems and OCI compute instances
C. OCI Exadata DB Systems and Oracle Functions
D. Oracle Exadata Cloud at customer, Storage Gateway and API Gateway
Answer: A
NO.47 Which Oracle Cloud Infrastructure service can you use to assess user security of your Oracle
18
IT Certification Guaranteed, The Easy Way!
databases?
A. Oracle Data Safe
B. Oracle Data Guard
C. Audit Vault and Database Firewall option for Oracle Database Enterprise Edition
D. Audit Service
Answer: A
Explanation
Oracle Data Safe is a fully-integrated Cloud service focused on the security of your data. It provides a
complete and integrated set of features for protecting sensitive and regulated data in Oracle Cloud
databases.
Features include Security Assessment, User Assessment, Data Discovery, Data Masking, and Activity
Auditing.
NO.48 Which statement about Oracle Cloud Infrastructure (OCI) shared security model is true?
A. You are responsible for managing security controls within the physical OCI network.
B. You are not responsible for any aspect of security in OCI.
C. You are responsible for securing all data that you place in OCI
D. You are responsible for securing the hypervisor within OCI Compute service.
Answer: C
Explanation
Oracle Cloud Infrastructure offers best-in-class security technology and operational processes to
secure its enterprise cloud services. However, for you to securely run your workloads in Oracle Cloud
Infrastructure, you must be aware of your security and compliance responsibilities. By design, Oracle
provides security of cloud infrastructure and operations (cloud operator access controls,
infrastructure security patching, and so on), and you are responsible for securely configuring your
cloud resources. Security in the cloud is a shared responsibility between you and Oracle.
In a shared, multi-tenant compute environment, Oracle is responsible for the security of the
underlying cloud infrastructure (such as data-center facilities, and hardware and software systems)
and you are responsible for securing your workloads and configuring your services (such as compute,
network, storage, and database) securely.
In a fully isolated, single-tenant, bare metal server with no Oracle software on it, your responsibility
increases as you bring the entire software stack (operating systems and above) on which you deploy
your applications.
In this environment, you are responsible for securing your workloads, and configuring your services
(compute, network, storage, database) securely, and ensuring that the software components that
you run on the bare metal servers are configured, deployed, and managed securely.
More specifically, your and Oracle's responsibilities can be divided into the following areas:
Identity and Access Management (IAM): As with all Oracle cloud services, you should protect your
cloud access credentials and set up individual user accounts. You are responsible for managing and
reviewing access for your own employee accounts and for all activities that occur under your
tenancy. Oracle is responsible for providing effective IAM services such as identity management,
authentication, authorization, and auditing.
Workload Security: You are responsible for protecting and securing the operating system and
application layers of your compute instances from attacks and compromises. This protection includes
patching applications and operating systems, operating system configuration, and protection against
19
IT Certification Guaranteed, The Easy Way!
malware and network attacks. Oracle is responsible for providing secure images that are hardened
and have the latest patches. Also, Oracle makes it simple for you to bring the same third-party
security solutions that you use today.
Data Classification and Compliance: You are responsible for correctly classifying and labeling your
data and meeting any compliance obligations. Also, you are responsible for auditing your solutions to
ensure that they meet your compliance obligations.
Host Infrastructure Security: You are responsible for securely configuring and managing your
compute (virtual hosts, containers), storage (object, local storage, block volumes), and platform
(database configuration) services. Oracle has a shared responsibility with you to ensure that the
service is optimally configured and secured. This responsibility includes hypervisor security and the
configuration of the permissions and network access controls required to ensure that hosts can
communicate correctly and that devices are able to attach or mount the correct storage devices.
Network Security: You are responsible for securely configuring network elements such as virtual
networking, load balancing, DNS, and gateways. Oracle is responsible for providing a secure network
infrastructure.
Client and Endpoint Protection: Your enterprise uses various hardware and software systems, such as
mobile devices and browsers, to access your cloud resources. You are responsible for securing all
clients and endpoints that you allow to access Oracle Cloud Infrastructure services.
Physical Security: Oracle is responsible for protecting the global infrastructure that runs all of the
services offered in Oracle Cloud Infrastructure. This infrastructure consists of the hardware, software,
networking, and facilities that run Oracle Cloud Infrastructure services.
NO.49 A customer wants to deploy a customized e commerce Web application using multiple virtual
machines, block storage, databases, load balancer and web application firewall.
What cloud model can be used to host this application?
A. Software as a Service (SaaS)
B. Platform as a Service (PaaS)
C. Anything as a Service (XaaS)
D. Infrastructure as a Service (IaaS)
Answer: D
Explanation
https://www.oracle.com/cloud/what-is-iaas/
NO.50 What two statements regarding the Virtual Cloud Network (VCN) are true?
A. A single VCN can contain both private and public Subnets.
B. VCN is a regional resource that span across all the Availability Domains in a Region.
C. You can only create one VCN per region.
D. The VCN is the IPSec-based connection with a remote on premises location.
E. VCN is a global resource that span across all the Regions
Answer: A B
NO.51 Oracle cloud Infrastructure is compliant with which three industry standards?
A. SOC 1 Type 2 and SOC 2 Type 2 attestations
B. NERC Critical Infrastructure Protection Standards
C. Health Insurance Portability and Accountability Act (HIPAA)
20
IT Certification Guaranteed, The Easy Way!
NO.52 you are analyzing your Oracle Cloud Infrastructure (OCI) usage with Cost Analysis tool in OCI
Console.
Which is not a default feature of the tool?
A. Filter costs by applications
B. Filter costs by compartments
C. Filter costs by tags
D. Filter costs by date
Answer: A
Explanation
You can filter Costs Analysis Tools by following three ways
To filter costs by dates
To filter costs by tags
To filter costs by compartments
21
IT Certification Guaranteed, The Easy Way!
https://docs.cloud.oracle.com/en-us/iaas/Content/Compute/Tasks/resizinginstances.htm
NO.54 Which is NOT considered a security resource within Oracle Cloud Infrastructure?
A. Network Security Group
B. Web Application Firewall
C. File Storage Service
D. Security Lists
Answer: C
Explanation
22
IT Certification Guaranteed, The Easy Way!
Oracle Cloud Infrastructure File Storage service provides a durable, scalable, secure, enterprise-grade
network file system. You can connect to a File Storage service file system from any bare metal, virtual
machine, or container instance in your Virtual Cloud Network (VCN).
You can control the access of the file system from FSS by applying some security rules and others but
the services it self not related to security but it related to shared storage
NO.55 What does Oracle's Payment Card Industry Data Security Standard (PCI DSS) attestation of
compliance provide to customers?
A. Customers can use these services for workloads that provides validation of card holder transaction
but only as 3rd party
B. Customers can use these services for workloads that process, or transmit cardholder data but not
store it.
C. Customers can use these services for workloads to process applications for credit card approval
securely.
D. Customers can use these services for workloads that store, process, or transmit cardholder data.
Answer: D
Explanation
The Payment Card Industry Data Security Standard (PCI DSS) is a global set of security standard
designed to encourage and enhance cardholder data security and promote the adoption of
consistent data security measures around the technical and operational components related to
cardholder data.
Oracle has successfully completed a Payment Card Industry Data Security Standard (PCI DSS) audit
and received an Attestation of Compliance (AoC) covering several Oracle Cloud Infrastructure
services and the Oracle RightNow Service Cloud Service. As a PCI Level 1 Service Provider, customers
can now use these services for workloads that store, process or transmit cardholder data.
NO.56 How is total network throughput allocated to a Virtual Machine (VM) Instance?
A. Network bandwidth is variable
B. Network bandwidth is proportional to the number of OCPUs in the Instance shape
C. When launching a compute instance, customers may select the desired maximum network
bandwidth
D. Each VM is allocated 10 Gbps of network bandwidth regardless of the selected shape
Answer: B
Explanation
You select the number of OCPUs that you need for the workloads that you will run on the instance.
The amount of memory, network bandwidth, and number of VNICs scale proportionately with the
number of OCPUs.
NO.57 Which option provides the best performance for running OTLP workloads in Oracle Cloud
Infrastructure (OCI)?
A. OCI Autonomous Data Warehouse
B. OCI Virtual Machine Instance
C. OCI Dedicated Virtual Host
D. OCI Autonomous Transaction Processing
23
IT Certification Guaranteed, The Easy Way!
Answer: D
Explanation
https://docs.oracle.com/en/cloud/paas/atp-cloud/index.html
NO.59 Which Oracle Cloud Infrastructure (OCI) service can send you an alert when you might exceed
your spending threshold?
A. Budgets
B. Monitoring
C. Streaming
D. Events
Answer: A
Explanation
Budgets can be used to set thresholds for your Oracle Cloud Infrastructure spending. You can set
alerts on your budget to let you know when you might exceed your budget, and you can view all of
your budgets and spending from one single place in the Oracle Cloud Infrastructure console.
NO.60 Which two security capabilities are offered by Oracle Cloud Infrastructure?
A. Always on data encryption for data-at-rest.
B. Certificate Management service
C. Captcha
D. Key Management service
E. Managed Active Directory service
Answer: A D
Explanation
Oracle Cloud Infrastructure's security approach is based on seven core pillars. Each pillar has multiple
solutions designed to maximize the security and compliance of the platform and to help customers to
improve their security posture.
High Availability: Offer fault-independent data centers that enable high-availability scale-out
architectures and are resilient against network attacks, ensuring constant uptime in the face of
disaster and security attack.
Customer Isolation: Allow customers to deploy their application and data assets in an environment
that commits full isolation from other tenants and Oracle's staff.
Data Encryption: Protect customer data at-rest and in-transit in a way that allows customers to meet
their security and compliance requirements with respect to cryptographic algorithms and key
24
IT Certification Guaranteed, The Easy Way!
management.
Security Controls: Offer customers effective and easy-to-use application, platform, and network
security solutions that allow them to protect their workloads, have a secure application delivery using
a global edge network, constrain access to their services, and segregate operational responsibilities
to reduce the risk associated with malicious and accidental user actions.
Visibility: Offer customers comprehensive log data and security analytics that they can use to audit
and monitor actions on their resources, allowing them to meet their audit requirements and reduce
security and operational risk.
Secure Hybrid Cloud: Enable customers to use their existing security assets, such as user accounts
and policies, as well as third-party security solutions, when accessing their cloud resources and
securing their data and application assets in the cloud.
Verifiably Secure Infrastructure: Follow rigorous processes and use effective security controls in all
phases of cloud service development and operation. Demonstrate adherence to Oracle's strict
security standards through third-party audits, certifications, and attestations. Help customers
demonstrate compliance readiness to internal security and compliance teams, their customers,
auditors, and regulators.
NO.61 A customer wants a dedicated connection with minimal network latency from their on-
premises data center to Oracle Cloud Infrastructure (OCI).
Which service should they choose?
A. Public internet
B. Virtual Cloud Network Remote Peering
C. OCI FastConnact
D. IPSec Virtual Private Network (VPN)
Answer: C
Explanation
Oracle Cloud Infrastructure FastConnect provides an easy way to create a dedicated, private
connection between your data center and Oracle Cloud Infrastructure. FastConnect provides higher-
bandwidth options, and a more reliable and consistent networking experience compared to internet-
based connections.
NO.62 Which Oracle Cloud Infrastructure service leverages Terraform to configure infrastructure as
code?
A. Resource Manager
B. Events
C. Compartment Explorer
D. Oracle Functions
Answer: A
Explanation
Resource Manager is an Oracle Cloud Infrastructure service that allows you to automate the process
of provisioning your Oracle Cloud Infrastructure resources. Using Terraform, Resource Manager helps
you install, configure, and manage resources through the "infrastructure-as-code" model.
NO.63 In what two ways does Oracle Cloud Infrastructure (OCI) offer industry leading price-
performance?
25
IT Certification Guaranteed, The Easy Way!
NO.64 Which is a key benefit of using oracle cloud infrastructure autonomous data warehouse?
A. No username and password required
B. Scale both CPU and Storage without downtime
C. Apply database patches as they become available
D. Maintain root level acress to the underlying operating system
Answer: B
Explanation
Oracle Cloud Infrastructure's Autonomous Database is a fully managed, preconfigured database
environment with two workload types available, Autonomous Transaction Processing and
Autonomous Data Warehouse. You do not need to configure or manage any hardware, or install any
software. After provisioning, you can scale the number of CPU cores or the storage capacity of the
database at any time without impacting availability or performance. Autonomous Database handles
creating the database, as well as the following maintenance tasks:
Backing up the database
Patching the database
Upgrading the database
Tuning the database
NO.65 Which statement below is not true for Oracle Cloud infrastructure Compartments?
A. Resources can be moved from one compartment to another
B. Compartments cannot be nested
C. Each OCI resource belongs to a single compartment
D. Resources and compartments can be added and deleted anytime
Answer: B
Explanation
When creating a compartment, you must provide a name for it (maximum 100 characters, including
letters, numbers, periods, hyphens, and underscores) that is unique within its parent compartment.
You must also provide a description, which is a non-unique, changeable description for the
compartment, from 1 through 400 characters. Oracle will also assign the compartment a unique ID
called an Oracle Cloud ID.
You can create subcompartments in compartments to create hierarchies that are six levels deep.
NO.66 Which Oracle cloud infrastructure capability can be used to protect against power failures
within an availability Domain?
A. Data Plane
26
IT Certification Guaranteed, The Easy Way!
B. Fault Domains
C. Services Cells
D. Top of Rack Switch
Answer: B
Explanation
A fault domain is a grouping of hardware and infrastructure within an availability domain. Each
availability domain contains three fault domains. Fault domains provide anti-affinity: they let you
distribute your instances so that the instances are not on the same physical hardware within a single
availability domain. A hardware failure or Compute hardware maintenance event that affects one
fault domain does not affect instances in other fault domains. In addition, the physical hardware in a
fault domain has independent and redundant power supplies, which prevents a failure in the power
supply hardware within one fault domain from affecting other fault domains.
To control the placement of your compute instances, bare metal DB system instances, or virtual
machine DB system instances, you can optionally specify the fault domain for a new instance or
instance pool at launch time. If you don't specify the fault domain, the system selects one for you.
Oracle Cloud Infrastructure makes a best-effort anti-affinity placement across different fault
domains, while optimizing for available capacity in the availability domain. To change the fault
domain for an instance, terminate it and launch a new instance in the preferred fault domain.
Use fault domains to do the following things:
Protect against unexpected hardware failures or power supply failures.
Protect against planned outages because of Compute hardware maintenance.
NO.68 Which Oracle Cloud Infrastructure service allows you to run code without provisioning any
underlying infrastructure resources?
A. Compute service
B. Storage Gateway
C. Oracle Container Engine for Kubernetes
D. Oracle Functions
Answer: D
Explanation
Oracle Functions is a fully managed, multi-tenant, highly scalable, on-demand, Functions-as-a-Service
platform. It is built on enterprise-grade Oracle Cloud Infrastructure and powered by the Fn Project
open source engine. Use Oracle Functions (sometimes abbreviated to just Functions) when you want
to focus on writing code to meet business needs.
The serverless and elastic architecture of Oracle Functions means there's no infrastructure
administration or software administration for you to perform. You don't provision or maintain
compute instances, and operating system software patches and upgrades are applied automatically.
27
IT Certification Guaranteed, The Easy Way!
NO.69 Which offers the lowest pricing for storage (per GB)?
A. Oracle Cloud Infrastructure Object Storage (standard tier)
B. Oracle Cloud Infrastructure Block Volume
C. Oracle Cloud Infrastructure Archive Storage
D. Oracle Cloud Infrastructure File Storage
Answer: C
Explanation
Oracle Cloud Infrastructure Archive Storage is the lowest pricing for storage (per GB)
NO.70 Oracle Cloud Infrastructure Budgets can be set on which two options?
A. Free-form tags
B. Compartments
C. Tenancy
D. Virtual Cloud Network
E. Cost-tracking tags
Answer: B E
Explanation
In OCI a budget can be used to set soft limits on your Oracle Cloud Infrastructure spending. You can
set alerts on your budget to let you know when you might exceed your budget, and you can view all
of your budgets and spending from one single place in the Oracle Cloud Infrastructure console.
Budgets are set on
Cost-tracking tags
Compartments (including the root compartment)
NO.71 A customer wants to use Oracle Cloud Infrastructure (OCI) storing application backups which
can be stored for months, but retrieved immediately based on business needs. Which OCI storage
service can be used to meet this requirement?
A. Archive Storage
B. Block Volume
C. Object Storage (standard)
D. File Storage
Answer: C
Explanation
Oracle Cloud Infrastructure offers two distinct storage class tiers to address the need for both
performant, frequently accessed "hot" storage, and less frequently accessed "cold" storage. Storage
tiers help you maximize performance where appropriate and minimize costs where possible.
Use Object Storage for data to which you need fast, immediate, and frequent access. Data
accessibility and performance justifies a higher price to store data in the Object Storage tier.
Use Archive Storage for data to which you seldom or rarely access, but that must be retained and
preserved for long periods of time. The cost efficiency of the Archive Storage tier offsets the long lead
time required to access the data.
Unlike Object Storage, Archive Storage data retrieval is not instantaneous.
NO.72 What is a key benefit of Oracle Cloud Infrastructure Virtual Machine DB Systems?
28
IT Certification Guaranteed, The Easy Way!
NO.73 You are setting up a proof of concept (POC) and need to quickly establish a secure between
an on-premises data center and Oracle Cloud Infrastructure (OCI).
Which OCI service should you implement?
A. VCN Peering
B. FastConnect
C. Internet Gateway
D. IPSec VPN
Answer: D
Explanation
You can set up a single IPSec VPN with a simple layout that you might use for a proof of concept
(POC).
NO.74 Which statement is correct regarding the oracle cloud infrastructure Compute services?
A. When you stop a compute instance, all data on the boot volume is lost
B. You can attach a maximum of one public to each compute instance
C. You can launch either virtual machines or bare metal instances
D. You cannot attach a block volume to a compute instance
Answer: C
Explanation
Oracle Cloud Infrastructure offers both bare metal and virtual machine instances:
Bare Metal: A bare metal compute instance gives you dedicated physical server access for highest
performance and strong isolation.
Virtual Machine: A virtual machine (VM) is an independent computing environment that runs on top
of physical bare metal hardware. The virtualization makes it possible to run multiple VMs that are
isolated from each other. VMs are ideal for running applications that do not require the performance
and resources (CPU, memory, network bandwidth, storage) of an entire physical machine.
An Oracle Cloud Infrastructure VM compute instance runs on the same hardware as a bare metal
instance, leveraging the same cloud-optimized hardware, firmware, software stack, and networking
infrastructure.
29
IT Certification Guaranteed, The Easy Way!
NO.75 Which two are enabled by Oracle Cloud Infrastructure Fault Domains?
A. Protect against unexpected hardware or power supply failures
B. To meet requirements for legal jurisdictions
C. To mitigate the risk of large scale events such as earthquakes
D. Build replicated systems for disaster recovery
E. Protect against planned hardware maintenance
Answer: A E
Explanation
A fault domain is a grouping of hardware and infrastructure within an availability domain. Each
availability domain contains three fault domains. Fault domains provide anti-affinity: they let you
distribute your instances so that the instances are not on the same physical hardware within a single
availability domain. A hardware failure or Compute hardware maintenance event that affects one
fault domain does not affect instances in other fault domains. In addition, the physical hardware in a
fault domain has independent and redundant power supplies, which prevents a failure in the power
supply hardware within one fault domain from affecting other fault domains.
To control the placement of your compute instances, bare metal DB system instances, or virtual
machine DB system instances, you can optionally specify the fault domain for a new instance or
instance pool at launch time. If you don't specify the fault domain, the system selects one for you.
Oracle Cloud Infrastructure makes a best-effort anti-affinity placement across different fault
domains, while optimizing for available capacity in the availability domain. To change the fault
domain for an instance, terminate it and launch a new instance in the preferred fault domain.
Use fault domains to do the following things:
Protect against unexpected hardware failures or power supply failures.
Protect against planned outages because of Compute hardware maintenance.
NO.76 A customer wants to use Oracle Cloud Infrastructure (OCI) for storing application backups
which can be stored based on business needs.
Which OCI storage service can be used to meet the requirement?
A. File Storage
B. Block Volume
C. Archive Storage
D. Object Storage (standard)
Answer: B
NO.77 Which OCI Identity and access management capability helps you to organize multiple users
into teams?
A. Policies
B. Groups
C. Dynamic Groups
D. Users
Answer: B
Explanation
IAM Group is A collection of users who all need the same type of access to a particular set of
30
IT Certification Guaranteed, The Easy Way!
resources or compartment.
IAM DYNAMIC GROUP is A special type of group that contains resources (such as compute instances)
that match rules that you define (thus the membership can change dynamically as matching
resources are created or deleted). These instances act as "principal" actors and can make API calls to
services according to policies that you write for the dynamic group.
NO.78 What two statements regarding the Virtual Cloud Network (VCN) are true?
A. VCN is a regional resource that span across all the Availability Domains in a Region.
B. VCN is a global resource that span across all the Regions
C. The VCN is the IPSec-based connection with a remote on premises location.
D. A single VCN can contain both private and public Subnets.
E. You can only create one VCN per region.
Answer: A,D
NO.79 Which capability enables you to search, purchase, and start using software in your Oracle
Cloud Infrastructure (OCI) tenancy?
A. OCI Marketplace
B. OCI OS Management
C. OCI Resource Manager
D. OCI Registry
Answer: A
Explanation
Oracle Cloud Infrastructure Marketplace is an online store that offers solutions specifically for
customers of Oracle Cloud Infrastructure. In the Oracle Cloud Infrastructure Marketplace catalog, you
can find listings for two types of solutions from Oracle and trusted partners: images and stacks. These
listing types include different categories of applications. Also, some listings are free and others
require payment.
Images are templates of virtual hard drives that determine the operating system and software to run
on an instance. You can deploy image listings on an Oracle Cloud Infrastructure Compute instance.
Marketplace also offers stack listings. Stacks represent definitions of groups of Oracle Cloud
Infrastructure resources that you can act on as a group. Each stack has a configuration consisting of
one or more declarative configuration files. With an image or a stack, you have a customized, more
streamlined way of getting started with a publisher's software.
31
IT Certification Guaranteed, The Easy Way!
NO.81 A new customer has logged into Oracle Cloud Infrastructure (OCI) as an administrator for the
first time. The admin would like to deploy Infrastructure into a region other then their home region.
What is the first Stop they must take in order to accomplish this task?
A. Use API endpoints to create resources in the desired region.
B. Navigate to the desired region and begin creating resources.
C. Subscribe to the desired region.
D. File a service request for access to each additional region.
Answer: C
Explanation
When you sign up for Oracle Cloud Infrastructure, Oracle creates a tenancy for you in one region. This
is your home region. Your home region is where your IAM resources are defined. When you subscribe
to another region, your IAM resources are available in the new region, however, the master
definitions reside in your home region and can only be changed there.
When you subscribe your tenancy to a new region, all the policies from your home region are
enforced in the new region. If you want to limit access for groups of users to specific regions, you can
write policies to grant access to specific regions only.
NO.82 Which Oracle Cloud Infrastructure (OCI) service is best suited for running serverless apps?
A. Oracle Functions
B. Virtual Cloud Network
C. Streaming
D. Audit
Answer: A
Explanation
Oracle Functions is a fully managed, multi-tenant, highly scalable, on-demand, Functions-as-a-Service
platform. It is built on enterprise-grade Oracle Cloud Infrastructure and powered by the Fn Project
open source engine. Use Oracle Functions (sometimes abbreviated to just Functions) when you want
to focus on writing code to meet business needs.
The serverless and elastic architecture of Oracle Functions means there's no infrastructure
administration or software administration for you to perform. You don't provision or maintain
compute instances, and operating system software patches and upgrades are applied automatically.
Oracle Functions simply ensures your app is highly-available, scalable, secure, and monitored. With
Oracle Functions, you can write code in Java, Python, Node, Go, and Ruby (and for advanced use
cases, bring your own Dockerfile, and Graal VM). You can then deploy your code, call it directly or
trigger it in response to events, and get billed only for the resources consumed during the execution.
NO.83 Which is NOT part of the Oracle Cloud Always Free eligible resources that you can provision in
your tenancy?
A. Fast Connect (1 Gbps public peering)
B. Autonomous Database (up to two database instances)
C. Block Volume (up to 100 GB total storage)
D. Load Balancing (one load balancer)
32
IT Certification Guaranteed, The Easy Way!
Answer: A
NO.84 What characteristics are defined by an Oracle Cloud Infrastructure Compute shape?
A. Number of vCPU, amount of RAM, bandwidth
B. Availability Domain and Fault Domain locations
C. Public or private visibility of the Compute instance
D. Number of OCPU, amount of RAM, bandwidth
Answer: D
Explanation
Oracle Compute Shape is coming with predefined or customize the number of OCPUs that are
allocated to an instance. The amount of memory, network bandwidth, and number of VNICs scale
proportionately with the number of OCPUs.
NO.85 Which gateway can be used to provide internet access to an Oracle Cloud Infrastructure
compute instance in a private subnet?
A. NAT Gateway
B. Service Gateway
C. Dynamic Routing Gateway
D. Internet Gateway
Answer: A
Explanation
A NAT gateway gives cloud resources without public IP addresses access to the internet without
exposing those resources to incoming internet connections.
NAT is a networking technique commonly used to give an entire private network access to the
internet without assigning each host a public IPv4 address. The hosts can initiate connections to the
internet and receive responses, but not receive inbound connections initiated from the internet.
33