Real Oracle 1z0-1104-22 Exam Dumps with Correct 95 Questions and Answers
Valid 1z0-1104-22 Test Answers & Oracle 1z0-1104-22 Exam PDF
Oracle 1z0-1104-22 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
| Topic 7 |
|
| Topic 8 |
|
NEW QUESTION 28
A http web server hosted on an Oracle cloud infrastructure compute instance in a public subnet of the vcsl virtual cloud network has a stateless security ingress rule for port 80 access through internet gateway stateful network security group notification for port 80 how will the Oci vcn handle request response traffic to the compute instance for a web page from the http server with port 80?
- A. the union of both configuration would happen and allow both inbound and outbound traffic
- B. due to the conflict in security configuration inbound request traffic would not be allowed
- C. Because there is no Egress ruled defined in Security List, The Response would not pass through Internet Gateway.
- D. network security group would supersede the security utility list and allow both inbound and outbound traffic
Answer: C
NEW QUESTION 29
An e-commerce company needs to authenticate with third-party API that don't support OCI's signature-based authentication.
What can be the solution for the above scenario?
- A. Auth Token/Swift Password
- B. API Key Authentication
- C. Security Token
- D. Asymmetric keys
Answer: A
Explanation:
NEW QUESTION 30
How can you convert a fixed load balancer to a flexible load balancer?
- A. Using the Edit Listener option.
- B. Delete the fixed load balancer and create a new one.
- C. Use Update Shape workflows.
- D. There is no way to covert the load balancer.
Answer: C
NEW QUESTION 31
You want to include all instances in any of two or more compartments, which syntax should you use for dynamic policy you want to create for "Prod" compartment and "SIT" compartment?
Prod OCID : 'JON.Prod'
SIT OCID : 'JON.SIT'
- A. All { instance in compartment 'Prod' and Compartment 'SIT' }
- B. Any { instance in compartment 'Prod' and Compartment 'SIT' }
- C. Any { instance.compartment.id = 'JON.Prod', instance.compartment.id = 'JON.SIT'
- D. All { instance.compartment.id = 'JON.Prod', instance.compartment.id = 'JON.SIT'
Answer: C
Explanation:
NEW QUESTION 32
Which IAM policy should be created to give XYZ the ability to list contents of a resource excluding the f needs to authenticate in prod compartment ? Principle of least priviledge should be used.
- A. Allow group XYZ to read all resources in tenancy where target.compartment.name != prod
- B. Allow group XYZ to use all resources in compartment != prod
- C. Allow group XYZ to inspect all resources in tenancy where target.compartment.name != prod
- D. Allow group XYZ to manage all resources in compartment != prod
Answer: C
Explanation:
NEW QUESTION 33
Which is NOT a part of Observability and Management Services?
- A. Event Services
- B. Logging Analytics
- C. OCI Management Service
- D. Logging
Answer: C
Explanation:
https://www.oracle.com/in/manageability/
NEW QUESTION 34
Which type of firewalls are designed to protect against web application attacks, such as SQL injection and cross-site scripting?
- A. Web Application Firewall
- B. Incident firewall
- C. Stateful inspection firewall
- D. Packet filtering firewall
Answer: A
Explanation:
SQL injections. Cross-site scripting. Distributed denial of service (DDoS) attacks. Botnets. These are just some of the cyber-weapons increasingly being used by malicious actors to target web applications, cause data breaches, and expose sensitive business information.
Oracle WAF uses a multilayered approach to protect web applications from a host of cyberthreats including malicious bots, application layer (L7) DDoS attacks, cross-site scripting, SQL injection, and vulnerabilities defined by the Open Web Application Security Project (OWASP). When a threat is identified, Oracle WAF automatically blocks it and alerts security operations teams so they can investigate further.
https://www.oracle.com/a/ocom/docs/security/oci-web-application-firewall.pdf
NEW QUESTION 35
On which option do you set Oracle Cloud Infrastructure Budget?
- A. Free-form tags
- B. Compartments
- C. Instances
- D. Tenancy
Answer: B
Explanation:
How Budgets Work
Budgets are set on cost-tracking tags or on compartments (including the root compartment) to track all spending in that cost-tracking tag or for that compartment and its children.
https://docs.oracle.com/en-us/iaas/Content/Billing/Concepts/budgetsoverview.htm
NEW QUESTION 36
Which is NOT a compliance document?
- A. Certificate
- B. Attestation
- C. Penetration test report
- D. Bridge letter
Answer: C
Explanation:
Types of Compliance Documents
When viewing compliance documents, you can filter on the following types:
Attestation. A Payment Card Industry (PCI) Data Security Standard (DSS) Attestation of Compliance document.
Audit. A general audit report.
Bridge Letter (BridgeLetter). A bridge letter. Bridge letters provide compliance information for the period of time between the end date of an SOC report and the date of the release of a new SOC report.
Certificate. A document indicating certification by a particular authority, with regard to certification requirements and examination results conforming to said requirements.
SOC3. A Service Organization Controls 3 audit report that provides information relating to a service organization's internal controls for security, availability, confidentiality, and privacy.
Other. A compliance document that doesn't fit into any of the preceding, more specific categories.
https://docs.oracle.com/en-us/iaas/Content/ComplianceDocuments/Concepts/compliancedocsoverview.htm
NEW QUESTION 37
Which VCN configuration is CORRECT with regard to VCN peering within a same region ?
- A. 12.0.0.0/16 and 194.168.0.0/16
- B. 194.168.0.0/24 and 194.168.0.0/16
- C. 12.0.0.0/16 and 12.0.0.0/16
C 194.168.0.0/24 and 194.168.0.0/24
Answer: A
NEW QUESTION 38
your company has hired a consulting firm to audit your oracle cloud infrastructure activity and configuration you have created a set of users who will be performing the audit, you assigned these user to the orgauditgrp group. the auditor required the ability to see the configuration of all resources within tenant and you have agreed to exempt the dev compartment from the audit.
which IAM policy should be created to grant the orgauditgrp the ability to look at configuration for all resources except for those resources inside the dev compartment?
- A. allow group orgauditgrp to inspect all-resources in tenancy where target compartment.name !=dev
- B. allow group orgauditgrp to read all-resources in tenancy where target.compartment.name !=dev
- C. allow group orgauditgrp to read all-resources in compartment !=dev
- D. allow group orgauditgrp to inspect all-resources in compartment !=dev
Answer: A
NEW QUESTION 39
Which volume type contains the image used to boot a compute instance?
- A. Block volume
- B. Startup volume
- C. Boot volume
- D. Init 6 volume
Answer: C
Explanation:
Boot Volumes
When you launch a virtual machine (VM) or bare metal instance based on a platform image or custom image, a new boot volume for the instance is created in the same compartment. That boot volume is associated with that instance until you terminate the instance. When you terminate the instance, you can preserve the boot volume and its data
https://docs.oracle.com/en-us/iaas/Content/Block/Concepts/bootvolumes.htm
NEW QUESTION 40
A member of operations team has set Pre-Authenticated Request (PAR) associated with a bucket to an incorrect date and now wants to edit the PAR request. How can this be achieved?
- A. Delete the bucket associated with PAR and recreate it
- B. Delete the PAR and recreate it with the required date
- C. Don't set an expiration time for PAR
- D. Delete both PAR as well as the bucket then recreate both
Answer: B
Explanation:
NEW QUESTION 41
Where are logs stored?
- A. OCI Block Storage
- B. OCI File Storage
- C. Cloud Agent
- D. OCI Object Storage
Answer: D
Explanation:
You can collect log data continuously from Oracle Cloud Infrastructure (OCI) Object Storage. To enable the log collection, create ObjectCollectionRule resource using REST API or CLI. After the successful creation of this resource and having the required IAM policies, the log collection will be initiated.
https://docs.oracle.com/en-us/iaas/logging-analytics/doc/collect-logs-your-oci-object-storage-bucket.html
NEW QUESTION 42
VCN Flow log record details about the traffic that has been denied or approved is based on which of the following statements?
- A. Security Lists or Network Security Group Rules
- B. Web Application Firewall (WAF)
- C. Configuration of route table
- D. Auth tokens
Answer: A
Explanation:
NEW QUESTION 43
As a security administrator, you found out that there are users outside your co network who are accessing OCI Object Storage Bucket. How can you prevent these users from accessing OCI resources in corporate network?
- A. Make OCI resources private instead of public
- B. Create an 1AM policy and create WAF rules
- C. Create an 1AM policy and add a network source
- D. Create PAR to restrict access the access
Answer: C
Explanation:
NEW QUESTION 44
Which challenge is generally the first level of bot mitigation, but not sufficient with more advanced bot tools?
- A. JavaScript challenge
- B. Device fingerprint challenge
- C. CAPTCHA challenge
- D. Human interaction challenge
Answer: A
NEW QUESTION 45
......
1z0-1104-22 Exam Questions and Valid PMP Dumps PDF: https://www.fast2test.com/1z0-1104-22-premium-file.html