100% Accurate Answers! Jun-2024 1z0-1067-23 Actual Real Exam Questions [Q51-Q69]

100% Accurate Answers! Jun-2024 1z0-1067-23 Actual Real Exam Questions

Best Value Available! 2024 Realistic Verified Free 1z0-1067-23 Exam Questions

NEW QUESTION # 51
In Oracle Cloud Infrastructure (OCI), how many listeners can have a Load Balancer?

• A. 12 listeners
• B. 16 listeners
• C. 7 listeners
• D. 5 listeners
• E. 10 listeners

Answer: B

NEW QUESTION # 52
You set up a bastion host in your VCN to only allow your IP address (140.19.2.140) to establish SSH connections to your Compute Instances that are deployed in a private subnet. The Compute Instances have an attached Network Security Group with a Source Type: Network Security Group (NSG), Source NSG:
NSG-050504. To secure the bastion host, you added the following ingress rules to its Network Security Group:
However, after checking the bastion host logs, you discovered that there are IP addresses other than your own that can access your bastion host. What is the root cause of this issue? (Choose the best answer.)

• A. The port 22 provides unrestricted access to 140.19.2.140 and to other IP address.
• B. All compute instances associated with NSG-050504 are also able to connect to the bastion host.
• C. A netmask of /32 allows all IP address in the 140.19.2.0 network, other than your IP 140.19.2.140
• D. The Security List allows access to all IP address which overrides the Network Security Group ingress rules.

Answer: B

NEW QUESTION # 53
You have a Linux compute instance located in a public subnet in a VCN which hosts a web application. The security list attached to subnet containing the compute instance has the following stateful ingress rule.

The Route table attached to the Public subnet is shown below.You can establish an SSH connection into the compute instance from the internet. However, you are not able to connect to the web server using your web browser.

Which step will resolve the issue? (Choose the best answer.)

• A. In the security list, add an ingress rule for port 80 (http).
• B. In the route table, add a rule for your default traffic to be routed to NAT gateway.
• C. In the security list, remove the ssh rule.
• D. In the route table, add a rule for your default traffic to be routed to service gateway.

Answer: A

NEW QUESTION # 54
A company is developing a highly available web application, which will be hosted on Oracle Cloud Infrastructure (OCI). For high reliability, the Load Balancer's health status is very important. Which of the following may lead to an unhealthy Load Balancer?

• A. Issue with 55 connections trying to access an instance
• B. Misconfigured security rule.
• C. VCN Network Security Groups (NSG) or Security Lists lock traffic.
• D. Storage size assigned to one of the Block Storage services.

Answer: B

NEW QUESTION # 55
Which of the following THREE statements are true about Versioning? (Choose three.)

• A. If Versioning is enabled and you delete the files stored in a bucket, then a delete marker is created so that you can restore the deleted file.
• B. If Versioning disabled, and you try uploading files with the same name, then a copy of the file in kept with a different name.
• C. You can enable the Versioning and Retention rule simultaneously on bucket.
• D. Versioning is applied at the bucket level.
• E. If versioning enabled, even if you delete the file inside the bucket, you will be charged for the data shared as the meta data still resides inside the bucket.

Answer: A,D,E

NEW QUESTION # 56
Which two statements are TRUE about Object Storage data security and encryption in Oracle Cloud Infrastructure (OCI)? (Choose two.)

• A. All traffic to and from Object Storage service is encrypted using TLS.
• B. Data needs to be decrypted on the client side before retrieving it.
• C. A VPN connection to OCI is required to ensure securedata transfer to an object storage bucket.
• D. Client-side encryption is managed by the customer.
• E. OCI Vault Management is used by default to provide data security.

Answer: A,D

NEW QUESTION # 57
You have been contracted by a local e-commerce company to assist with enhancing their online shopping application. The application is currently deployed in a single Oracle Cloud Infrastructure (OCI) region. The application utilizes a public load balancer, application servers in a private subnet, and a database in a separate, private subnet. The company would like to deploy another set of similar infrastructure in a different OCI region that will act as standby site. In the event of a failure at the primary site, all customers should be routed to the failover site automatically. After deploying the additional infrastructure within the second region, how should you configure automated failover requirements? (Choose the best answer.)

• A. Create a failover policy in the Traffic Management service. Set the IP address of the public load balancer for the primary site in answer pool 1. Set the IP address of the public load balancer for the secondary site in answer pool 2. Define a health check to monitor both sites.
• B. Deploy a new load balancer in the primary region. Create one backend set for the primary application servers and a second backend set for the standby application servers. Create a listener for the primary backend set with a timeout of 3 minutes. Create a listener for the secondary backend set with a timeout of 10 minutes.
• C. Create a load balancer policy in the Traffic Management service. Configure one answer for each site.
  Set the answer for the primary sitewith a weight of 10 and the answer for the secondary site with a weight of 100.
• D. Create a new A record in DNS that points to the public load balancer at the secondary site. Create a CNAME for the sub-domain failover that will resolve to the new A rec-ord. Inform customers to prepend the website URL with failover if the primary site is unavailable.

Answer: A

NEW QUESTION # 58
As a solutions architect of the Oracle Cloud Infrastructure (OCI) tenancy, you have been asked to provide members of the CloudOps group the ability to view and retrieve monitoring metrics, but only for all monitoring-enabled compute instances. Which policy statement would you define to grant this access?

• A. Allow group CloudOps to read metrics in tenancy where tar-get.metrics.namespace='oci_computeagent'
• B. Allow group CloudOps to read compute-metrics in tenancy
• C. Restricting monitoring access only to compute instances metrics is not possible.
• D. Allow group CloudOps to read metrics in tenancy where tar-get.metrics.monitoring='oci_computeagent'

Answer: A

NEW QUESTION # 59
Here is a partial code from a Terraform template written for Oracle Cloud Infrastructure (OCI):

What operation(s) does it perform? (Choose the best answer.)

• A. Creates a URL to provide access to an OCI Object Storage bucket for managing objects.
• B. Creates a lifecycle policy for an OCI Object Storage bucket for moving data to Archival storage at a specified time.
• C. Creates a pre-authenticated request for objects in an OCI Object Storage bucket.
• D. Provides object read and write access for an OCI Object Storage bucket.

Answer: C

NEW QUESTION # 60
You have a group of developers who launch multiple VM.Standard3.Flex compute in-stances every day into the compartment Dev. As a result, your Oracle Cloud Infrastructure (OCI) tenancy quickly hits the service limit for this shape, andother groups can no longer create new instances using the VM.Standard3.Flex shape.
Therefore, your company issues a new mandate that the Dev compartment must include a quota that allows the use of only 20 VM.Standard3.Flex OCPUs per availability domain, without affecting any other compartment in the tenancy. Which quota statement would you use to implement this new requirement?

• A. zero compute-core quotas in tenancy set compute-core quota standard3-core-count to 20 in compartment dev
• B. set compute-core quota standard3-core-count to 20 in compartment dev where re-quest.region = us-phoenix-1
• C. set compute-core quota standard3-core-count to 20 in compartment dev
• D. zero compute-core quotas in tenancy set compute-core quota standard3-core-count to 20 in tenancy dev

Answer: C

NEW QUESTION # 61
You have set an alarm to be generated when the CPU usage of a specified instance is greater than 10%. In the alarm behavior view below you notice that the critical condition happened around 23:30. You were expecting a notification after 1 minute, however, the alarm firing state did not begin until 23:33.

What should you change to fix it? (Choose the best answer.)

• A. Change the alarm condition to be grater than 3%.
• B. Change the alarm trigger delay minutes value to 1.
• C. Change the notification topic that you previously associated with the alarm.
• D. Change the alarm metric interval to 1.

Answer: B

NEW QUESTION # 62
Which two statements about the Oracle Cloud Infrastructure (OCI) Command Line Inter-face (CLI) are TRUE? (Choose two.)

• A. The CLI allows you to use the Python language to interact with OCI APIs.
• B. The CLI provides an automatic way to connect with instances provisioned on OCI.
• C. You can run CLI commands from inside OCI Regions only.
• D. You can filter CLI output using the JMESPath query option for JSON.
• E. The CLI provides the same core functionality as the Console, plus additional commands.

Answer: D,E

NEW QUESTION # 63
(CHK) Your company recently adopted a hybrid cloud architecture which requires them to migrate some of their on-premises web applications to Oracle Cloud Infrastructure (OCI). You created a Terraform template which automatically provisions OCI resources such as compute instances, load balancer, and a database instance. After running the stack using the terraform apply command, it successfully launched the compute instances and the load balancer, but it failed to create a new database instance with the following error: Service error: NotAuthorizedOrNotFound. shape VM.Standard2.4 not found. http status code: 404 You dis-covered that the resource quotas assigned to your compartment prevent you from using VM.Standard2.4 instance shapes available in your tenancy. You edit the Terraform script and replace the shape with VM.Standard2.2 Which option would you recommend to re-run the terraform command to have required OCI resources provisioned with the least effort? (Choose the best answer.)

• A. terraform refresh target=oci_database_db_system.db_system
• B. terraform apply auto-approve
• C. terraform plan target=oci_database_db_system.db_system
• D. terraform apply target=oci_database_db_system.db_system

Answer: D

NEW QUESTION # 64
A developer has created a file system in the Oracle CloudInfrastructure (OCI) File Storage service. She then launches an Oracle Linux compute instance and mounts the file system successfully on this instance. The next day, she tries writing to the file system from the compute instance using the following command: touch
/mnt/yourmountpoint/helloworld.txt But receives an error message: touch: cannot touch
'/mnt/yourmountpoint/helloworld.txt': Permission denied What might be the reason for this error?

• A. User is connecting as the default Oracle Linux user opc instead of the root user.
• B. User is not part of any OCI Identity and Access Management (IAM) group with write permissions to the File Storage service.
• C. The touch command is not available in Oracle Linux, by default.
• D. Service limits or quota for file system writes have been breached.

Answer: A

NEW QUESTION # 65
The general syntax for an IAM policy is: Allow <identity_domain_name>/<subject> to <verb>
<resource-type> in <location> where <conditions> Which two are valid values for <lo-cation>?

• A. availability-domain aBCD:us-phoenix-1
• B. security-zone MyZone
• C. region us-phoenix-1
• D. tenancy
• E. compartment MyCompartment

Answer: D,E

NEW QUESTION # 66
The boot volume on your Oracle Linux instance has run out of space. Your application has crashed due to a lack of swap space, forcing you to increase the size of the boot volume. Which step should NOT be included in the process used to solve the issue? (Choose the best answer.)

• A. Reattach the boot volume and restart the instance.
• B. Resize the boot volume by specifying a larger value than the boot volume current size.
• C. Create a RAID 0 configuration to extend the boot volume file system onto another block volume.
• D. Stop the instance and detach the boot volume.
• E. Attach the resized boot volume to a second instance asa data volume; extend the partition and grow the file system in the resized boot volume.

Answer: C

NEW QUESTION # 67
Which option contains the essential components of the Oracle Cloud Infrastructure Notifications service?
(Choose the best answer.)

• A. An ALARM with a name unique across the tenancy, a SUBSCRIPTION, and a MET-RIC with the measurement of interest.
• B. A TOPIC with a name unique across the compartment, a SUBSCRIPTION, and a MESSAGE where content is published.
• C. A TOPIC with a name unique across the tenancy, a SUBSCRIPTION, and a MES-SAGE where content is published.
• D. An ALARM with a name unique across the compartment, a SUBSCRIPTION, and a METRIC with the measurement of interest.

Answer: C

NEW QUESTION # 68
To upload a file from a compute instance into Object Storage, you SSH into the compute instance and run the following OCI CLI command: oci os object put -ns mynamespace -bn mybucket --name myfile.txt --file
/Users/me/myfile.txt --authinstance_principal Which statement must be true for this command to succeed?

• A. The instance matches a matching rule for a dynamic group with the permission to up-load to the bucket.
• B. Your OCI user has the permission to upload to the bucket.
• C. The bucket has a pre-authenticated request (PAR) that specifies the compute instance that will upload to it.
• D. Your OCI API key has been placed on the compute instance.

Answer: A

NEW QUESTION # 69
......

Actual Questions Answers Pass With Real 1z0-1067-23 Exam Dumps: https://www.actualcollection.com/1z0-1067-23-exam-questions.html