[Q130-Q146] 1Z0-1072-20 Certification - The Ultimate Guide [Updated 2021]

1Z0-1072-20 Certification - The Ultimate Guide [Updated 2021]

1Z0-1072-20 Practice Exam and Study Guides - Verified By Fast2test

Oracle 1Z0-1072-20 Exam Syllabus Topics:

Topic	Details
Topic 1	Troubleshoot options using console connections and boot volume Discuss Load Balancer terminology and concepts
Topic 2	Describe the components of Compute service, including shapes, images, and custom images Set up a Load Balancer
Topic 3	Create and manage a Compute Virtual Machine (VM) instance Design federation with various identity providers
Topic 4	Use advanced database features, such as Dataguard, BYOL, Data encryption, RAC, and EXADATA
Topic 5	Describe image options Architect HA and DR solutions Apply IAM, governance, and security best practices
Topic 6	Describe OCI Database options Explain OCI Database Operations Managing Autonomous Database
Topic 7	Architect High Availability and Disaster Recovery solutions Apply core Identity and Access Management components

 

NEW QUESTION 130
Which two choices are true for Autonomous Data Warehouse (ADW)? (Choose two.)

• A. Billing stops for both CPU usage and storage usage when ADW is stopped
• B. Billing for compute stops when ADW is stopped
• C. Billing stops only when the ADW is terminated
• D. Billing for storage continues when ADW is stopped

Answer: B,D

Explanation:
Explanation
When Autonomous Databas instance is stopped,
CPU billing is halted based on full-hour cycles of usage
Billing for storage continues as long as the service instance exists.
and When Autonomous Database instance is started, the CPU billing is initiated

 

NEW QUESTION 131
You are in the process of setting up a highly available student registration website on Oracle Cloud Infrastructure (OCI). You use a load balancer and a database service on OCI. You launch two compute instances each in a different subnet and add them to the back end set of a public load balancer. The load balancer is configured correctly and working. You then deploy the student registration application on these two compute instances. The application can communicate with the database service. However, when you type the URL of this student registration application in your browser, no web page appears.
What could be the cause?

• A. The Dynamic Routing Gateway is preventing the client traffic from your data center network from reaching the public IP of the load balancer.
• B. The security lists of the subnets on which the two instances are located do not have "allow" rules for port 80 and 443.
• C. The load balancer performed a health check on the application and found that compute instances were not in a healthy state and terminated the instances.
• D. The client requested https access to the application and the load balancer service does not support end-to-end SSL from the client to the listener to the back-end set.

Answer: B

 

NEW QUESTION 132
Which statement is true about DB Systems?

• A. You have full control over the automatic backup schedule and retention periods.
• B. Data Guard as a Service is offered between regions.
• C. You cannot manage the database as sys/sysdba.
• D. You can manage Oracle database initialization parameters at a global level.

Answer: A,C

 

NEW QUESTION 133
You have an instance running in a development compartment that needs to make API calls against other OCI services, but you do not want to configure user credentials or a store a configuration file on the instance. How can you meet this requirement?

• A. Instances can automatically make calls to other OCI services
• B. Instances are secure and cannot make calls to other OCI services
• C. Create a dynamic group with matching rules to include your instance and write a policy for this dynamic group
• D. Create a dynamic group with matching rules to include your instance

Answer: C

Explanation:
Explanation
Dynamic groups allow you to group Oracle Cloud Infrastructure computer instances as "principal" actors (similar to user groups).
When you create a dynamic group, rather than adding members explicitly to the group, you instead define a set of matching rules to define the group members. For example, a rule could specify that all instances in a particular compartment are members of the dynamic group. The members can change dynamically as instances are launched and terminated in that compartment.
A dynamic group has no permissions until you write at least one policy that gives that dynamic group permission to either the tenancy or a compartment. When writing the policy, you can specify the dynamic group by using either the unique name or the dynamic group's OCID. Per the preceding note, even if you specify the dynamic group name in the policy, IAM internally uses the OCID to determine the dynamic group.

 

NEW QUESTION 134
Why are two subnets required to create a public load balancer when additional subnets are often used for back-end servers? (Choose two.)

• A. Routing is simpler when the load balancer is not in the same subnet as the back-end server.
• B. Additional subnets for back-end servers allow for separate route tables for these servers.
• C. Additional subnets for back-end servers allow for separate security lists for these servers.
• D. Performance is higher when more subnets are used.

Answer: C,D

Explanation:
Explanation
References:
http://www.oracle.com/webfolder/technetwork/tutorials/obe/cloud/ocis/load-balancer/load-balancer.html

 

NEW QUESTION 135
The Oracle Cloud Infrastructure Block Volume service lets you expand the size of block and boot volumes.
Which three options below can you use to increase the size of your block volumes?

• A. Expand an existing volume in place with offline resizing
• B. You can only expand block volumes and not boot volumes
• C. Take a backup of your existing volume and restore from the volume backup to a larger volume
• D. Expand an existing volume in place with online resizing
• E. Clone an existing volume to a new, larger volume

Answer: A,C,E

Explanation:
Explanation
The Oracle Cloud Infrastructure Block Volume service lets you expand the size of block volumes and boot volumes. You have three options to increase the size of your volumes:
Expand an existing volume in place with offline resizing. See Resizing a Volume Using the Console for the steps to do this.
Restore from a volume backup to a larger volume. See Restoring a Backup to a New Volume and Restoring a Boot Volume.
Clone an existing volume to a new, larger volume. See Cloning a Volume and Cloning a Boot Volume.

 

NEW QUESTION 136
Which two are a valid image source when launching a new compute instance? (Choose two.)

• A. boot volume
• B. bare metal instance
• C. custom image
• D. object storage

Answer: A,C

Explanation:
Explanation
https://docs.cloud.oracle.com/en-us/iaas/Content/Resources/Assets/whitepapers/deploying-custom-os-images.pdf A template of a virtual hard drive that determines the operating system and other software for an instance. For details about Oracle Cloud Infrastructure platform images, see Oracle-Provided Images. You can also launch instances from:
Trusted third-party images published by Oracle partners from the Partner Image catalog. For more information about partner images, see Overview of Marketplace and Working with Listings.
Pre-built Oracle enterprise images and solutions enabled for Oracle Cloud Infrastructure Custom images, including bring your own image scenarios.
Boot Volumes.
Bottom of Form

 

NEW QUESTION 137
A company currently uses Microsoft Active Directory as its identity provider. The company recently purchased Oracle Cloud Infrastructure (OCI) to leverage the cloud platform for its test and development operations. As the administrator, you are now tasked with giving access only to developers so that they can start creating resources in their OCI accounts.
Which step will you perform to achieve this requirement?

• A. Create a new user account for each user, and then create policies to provide access to developers.
• B. Create a group for developers on OCI, export all the developers from Microsoft Active Directory, and then import them into the Identity and Access Management (IAM) group.
• C. Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process.
• D. Federate all Microsoft Active Directory groups with OCI to allow users to use their existing credentials.

Answer: C

 

NEW QUESTION 138
Your company is developing a new database application in Oracle Cloud Infrastructure. You need to test application functionality including a hardware failure scenario. Since the application is still in the development phase, you want to minimize infrastructure costs.
Which database service deployment option meets this requirement?

• A. two node bare metal system with data guard enabled
• B. Autonomous Data Warehouse (ADW) system as it provides auto fail over functionality
• C. single node bare metal system
• D. two node real application cluster (RAC) system

Answer: D

 

NEW QUESTION 139
You are implementing Oracle Cloud Infrastructure (OCI) FastConnect to access OCI public access points (e.g.
- object storage). You want other Internet traffic from your on-premises environment to use your existing connection with your ISP.
What is the correct way to establish OCI FastConnect to access these OCI public endpoints?

• A. Configure private peering on your FastConnect link with a static route that points to OCI object storage service.
• B. Configure public peering on your FastConnect link with a static route that points to OCI object storage service.
• C. Configure public peering on your FastConnect link. Redistribute BGP routes learned into your existing routing table and advertise a specific route for your network infrastructure to OCI.
• D. Configure private peering on your FastConnect link. Redistribute BGP routes learned into your existing routing table and advertise a default from your network infrastructure to OCI.

Answer: C

Explanation:
Explanation
https://www.oracle.com/a/ocom/docs/connectivity-fast-connect-200.pdf

 

NEW QUESTION 140
Which of the following statement is true regarding Oracle Cloud Infrastructure Object Storage Pre-Authenticated Requests?

• A. Changing the bucket visibility does not change existing pre-authenticated requests
• B. Pre-authenticated requests don't have an expiration
• C. It is not possible to create pre-authenticated requests for the buckets, but only for the objects
• D. It Is not possible to create pre-authenticated requests for "archive" storage tier

Answer: A

Explanation:
Pre-authenticated requests provide a way to let users access a bucket or an object without having their own credentials, as long as the request creator has permissions to access those objects. For example, you can create a request that lets an operations support user upload backups to a bucket without owning API keys. Or, you can create a request that lets a business partner update shared data in a bucket without owning API keys.
When you create a pre-authenticated request, a unique URL is generated. Anyone you provide this URL to can access the Object Storage resources identified in the pre-authenticated request, using standard HTTP tools like curl and wget.
Understand the following scope and constraints regarding pre-authenticated requests:
Users can't list bucket contents.
You can create an unlimited number of pre-authenticated requests.
There is no time limit to the expiration date that you can set.
You can't edit a pre-authenticated request. If you want to change user access options in response to changing requirements, you must create a new pre-authenticated request.
The target and actions for a pre-authenticated request are based on the creator's permissions. The request is not, however, bound to the creator's account login credentials. If the creator's login credentials change, a pre-authenticated request is not affected.
You cannot delete a bucket that has a pre-authenticated request associated with that bucket or with an object in that bucket.
Understand the following scope and constraints regarding public access:
Changing the type of access is bi-directional. You can change a bucket's access from public to private or from private to public.
Changing the type of access doesn't affect existing pre-authenticated requests. Existing pre-authenticated requests still work.

 

NEW QUESTION 141
Where do you find the tnsnames.ora for your Autonomous Data Warehouse (ADW) database?

• A. You are automatically prompted to download the tnsnames.ora file upon creation of the ADW database
• B. You can download tnsnames.ora from Oracle Cloud Infrastructure web console under ADW details page
• C. The ADW database will place the tnsnames.ora file in an object storage bucket
• D. The tnsnames.ora file is included in credentials.zip file that you download from service console of ADW

Answer: D

Explanation:
Explanation
https://docs.oracle.com/en/cloud/paas/autonomous-data-warehouse-cloud/user/connect-intorduction.html#GUID To download client credentials from the Autonomous Transaction Processing Service Console:
- From the Service Console click the Administration link.
- Click Download Client Credentials (Wallet).
- On the Download Client Credentials (Wallet) page, enter a wallet password in the Password field and confirm the password in the Confirm Password field. The password must be at least 8 characters long and must include at least 1 letter and either 1 numeric character or 1 special character. This password protects the downloaded Client Credentials wallet.
- Click Download to save the client security credentials zip file. By default the filename is:
Wallet_databasename.zip. You can save this file as any filename you want. You must protect this file to prevent unauthorized database access.
The zip file includes the following:
tnsnames.ora and sqlnet.ora: Network configuration files storing connect descriptors and SQL*Net client side configuration.
cwallet.sso and ewallet.p12: Auto-open SSO wallet and PKCS12 file. PKCS12 file is protected by the wallet password provided in the UI.
keystore.jks and truststore.jks: Java keystore and truststore files. They are protected by the wallet password provided while downloading the wallet.
ojdbc.properties: Contains the wallet related connection property required for JDBC connection. This should be in the same path as tnsnames.ora.

 

NEW QUESTION 142
Which two parameters are required in a back end set's HTTP health check? (Choose two.)

• A. timeout
• B. status code
• C. port
• D. URL path
• E. response body

Answer: C,D

Explanation:
https://docs.cloud.oracle.com/iaas/Content/GSG/Tasks/loadbalancing.htm#Create Enter the Health Check details.
Load Balancing automatically checks the health of the instances for your load balancer. If it detects an unhealthy instance, it stops sending traffic to the instance and reroutes traffic to healthy instances. In this step, you provide the information required to check the health of servers in the backend set and ensure that they can receive data traffic.
Protocol: Select HTTP. Port: Enter 80 URL Path (URI): Enter / The rest of the fields are optional and can be left blank for this tutorial.
Click Create.

 

NEW QUESTION 143
Your application consists of three Oracle Cloud Infrastructure compute instances running behind a public load balancer. You have configured the load balancer to perform health checks on these instances, but one of the three instances fails to pass the configured health check. Which of the following action will the load balancer perform?

• A. Stop sending traffic to the instance that failed health check
• B. Remove the instance that failed the health check from the backend set
• C. Terminate the instance that failed health check
• D. Stop the instances that failed health check

Answer: A

Explanation:
Explanation
health check A test to confirm the availability of backend servers. A health check can be a request or a connection attempt. Based on a time interval you specify, the load balancer applies the health check policy to continuously monitor backend servers. If a server fails the health check, the load balancer takes the server temporarily out of rotation. If the server subsequently passes the health check, the load balancer returns it to the rotation.
You configure your health check policy when you create a backend set. You can configure TCP-level or HTTP-level health checks for your backend servers.
- TCP-level health checks attempt to make a TCP connection with the backend servers and validate the response based on the connection status.
- HTTP-level health checks send requests to the backend servers at a specific URI and validate the response based on the status code or entity data (body) returned.
The service provides application-specific health check capabilities to help you increase availability and reduce your application maintenance window.

 

NEW QUESTION 144
You have setup your environment as shown below with the Mount Target "MT" successfully mounted on both compute instances CLIENT-X and CLIENT-Y.
For security reasons you want to control the access to the File System A in such a way that CLIENT-X has READ/WRITE and CLIENT-Y has READ only permission.

What you should do?

• A. Update the mount target export options to restrict CLIENT-Y access to read-only.
• B. Update the OS firewall in CLIENT-X to allow READ/WRITE access.
• C. Update the security list ONE to restrict CLIENT-Y access to read only.
• D. Update the security list TWO to restrict CLIENT-Y access to read-only.

Answer: C

 

NEW QUESTION 145
Which two tagging related items are valid attributes that may be included in payload of an audit log event? (Choose two.)

• A. Cost-tracking tags
• B. Defined tags
• C. Free-form tags
• D. Default tags
• E. Predefined values
• F. Tag variables

Answer: B,C

Explanation:
Reference:
https://docs.cloud.oracle.com/en-us/iaas/Content/Audit/Reference/logeventreference.htm#payload

 

NEW QUESTION 146
......

Ultimate Guide to the 1Z0-1072-20 - Latest Edition Available Now: https://www.fast2test.com/1Z0-1072-20-premium-file.html