• Home
  • Articles
  • Online Questions - Valid Practice To your 1Z0-1067-21 Exam (Updated 56 Questions) [Q18-Q41]

Online Questions - Valid Practice To your 1Z0-1067-21 Exam (Updated 56 Questions) [Q18-Q41]

Share

Online Questions - Valid Practice To your 1Z0-1067-21 Exam (Updated 56 Questions)

Practice To 1Z0-1067-21 - Remarkable Practice On your Oracle Cloud Infrastructure 2021 Cloud Operations Associate Exam


Oracle 1Z0-1067-21 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Create secure access control policies
  • Implement automated notifications
  • Understand Metric Query Language (MQL)
Topic 2
  • Manage infrastructure as code
  • Utilize configuration management tools to control infrastructure
  • Automating Cloud Tasks
Topic 3
  • Explain user resource manager processes to implement infrastructure as code
  • Use the OCI CLI to simplify repetetive tasks
Topic 4
  • Manage automated block storage and database backups
  • Use Object Storage Lifecycle policies for tiered data storage
Topic 5
  • Utilize CASB to remediate security vulnerabilities
  • Leverage compartments for resource isolation
Topic 6
  • Explain Troubleshooting resource availability and accessability
  • Validate OCI performance
  • Performance Tuning and Troubleshooting
Topic 7
  • Implement hybrid network environments
  • Designing for cloud-scale agility
  • Data Retention and Archival
Topic 8
  • Utilize edge services for automated failover
  • recovery
  • Implement cross-region data copy strategies
Topic 9
  • Leverage automation to control cost
  • Utilize billing tags to track cost
  • Explain how to Implement billing alerts

 

NEW QUESTION 18
You have recently been asked to take over management of your company's infrastructure provisioning efforts, utilizing Terraform v0.12 to provision and manage infrastructure resources in Oracle Cloud Infrastructure (OCI). For the past few days the development environments have been failing to provision. Terraform returns the following error:

You locate the related code block in the Terraform config and find the following:

Which correction should you make to solve this issue? (Choose the best answer.)

  • A. Modify line 15 to be the following:
    tcp_options = {min = "22", max = "22")
  • B. Replace the curly braces '{ }' in lines 11 and 16 with square braces '[ ]'
  • C. Place a command at the end of line 16
  • D. Modify line 15 to be the following:
    tcp_options { min = "22"
    max = "22"
    }

Answer: A

 

NEW QUESTION 19
You are asked to implement the disaster recovery (DR) and business continuity requirements for Oracle Cloud Infrastructure (OCI) Block Volumes. Two OCI regions being used: a primary/source region and a DR/ destination region. The requirements are:
* There should be a copy of data in the destination region to use if a region-wide disaster occurs in the source region
* Minimize costs
Which design will help you meet these requirements? (Choose the best answer.)

  • A. Clone block volumes. Copy block volume clones from source region to destination region at regular intervals.
  • B. Back up block volumes. Copy block volume backups from source region to destination region at regular intervals.
  • C. Back up block volumes. Use Object Storage lifecycle management to automatically move backup objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.
  • D. Clone block volumes. Use Object Storage lifecycle management to automatically move clone objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.

Answer: C

 

NEW QUESTION 20
Your company recently adopted a hybrid cloud architecture which requires them to migrate some of their on- premises web applications to Oracle Cloud Infrastructure (OCI). You created a Terraform template which automatically provisions OCI resources such as compute instances, load balancer, and a database instance. After running the stack using the terraform apply command, it successfully launched the compute instances and the load balancer, but it failed to create a new database instance with the following error:
Service error: NotAuthorizedOrNotFound. shape VM.Standard2.4 not found. http status code: 404 You discovered that the resource quotas assigned to your compartment prevent you from using VM.Standard2.4 instance shapes available in your tenancy. You edit the Terraform script and replace the shape with VM.Standard2.2 Which option would you recommend to re-run the terraform command to have required OCI resources provisioned with the least effort? (Choose the best answer.)

  • A. terraform apply -auto-approve
  • B. terraform refresh -target=oci_database_db_system.db_system
  • C. terraform apply -target=oci_database_db_system.db_system
  • D. terraform plan -target=oci_database_db_system.db_system

Answer: C

 

NEW QUESTION 21
An insurance company has contracted you to help automate their application business continuity plan. They have the application running in eu-frankfurt-1 as the primary site and uk-london-1 as a disaster recovery site. Normally they have a DNS A record associated with the IP address of the primary endpoint in eu-frankfurt-1. In the event of a disaster, they use OCI DNS Zone Management to update the A record and replace it with the IP address of the endpoint in uk-londond-1.
How can you automate the failover process? (Choose the best answer.)

  • A. Create a Health Check that evaluates both regional endpoints. Create a Traffic Management Steering policy with Failover type and associate it with the Health Check.
  • B. Provision a Load Balancer in Frankfurt and associate it with the A record in DNS. Create a backend set with backend servers from both eu-frankfurt-1 and uk-london-1 regions.
  • C. Create a Traffic Management Steering policy and attach it to a backend servers from both eu-frankfurt-1 and uk-london-1 regions.
  • D. Create a Traffic Management Steering policy with Load Balancer type and add both eu-frankfurt-1 and uk- london-1 endpoints. Attach the Traffic Management Steering policy to the A record.

Answer: D

 

NEW QUESTION 22
You are using Oracle Cloud Infrastructure (OCI) services across several regions: us-phoenix-1, us-ashburn-1, uk-london-1 and ap-tokyo-1. You have creates a separate administrator group for each region: PHX-Admins, ASH-Admins, LHR-Admins and NRT-Admins, respectively.
You want to restrict admin access to a specific region. E.g., PHX-Admins should be able to manage all resources in the us-phoenix-1 region only and not any other OCI regions.
What IAM policy syntax is required to restrict PHX-Admins to manage OCI resources in the us-phoenix-1 region only? (Choose the best answer.)

  • A. Allow group PHX-Admins to manage all-resources in tenancy where request.permission= 'phx'
  • B. Allow group PHX-Admins to manage all-resources in tenancy where request.region= 'phx'
  • C. Allow group PHX-Admins to manage all-resources in tenancy where request.location= 'phx'
  • D. Allow group PHX-Admins to manage all-resources in tenancy where request.target= 'phx'

Answer: B

 

NEW QUESTION 23
Your company has restructured its HR departments. As part of this change, you also need to re-organize compartments within Oracle Cloud Infrastructure (OCI) to align them to the company's new organizational structure. The following change is required:

Compartment Team_x needs to be moved under a new parent compartment, Project_B The tenancy has the following policies defined for compartments Project_A and Project_B: Policy1: Allow group G1 to manage instance-family in compartment HR:Project_A Policy2: Allow group G2 to manage instance-family in compartment HR:Project_B Which two statements describe the impacts after the compartment Team_x is moved? (Choose two.)

  • A. Group G1 can now manage instance-families in compartment Project_A, compartment Project_B and compartment Team_X
  • B. Group G1 can now manage instance-families in compartment Project_A but not in compartment Team_x
  • C. Group G2 can now manage instance-families in compartment Project_B, compartment Project_A and compartment Team_X
  • D. Group G2 can now manage instance-families in compartment Project_B and compartment Team_X
  • E. Group G2 can now manage instance-families in compartment Project_A but not in compartment Team_x

Answer: B,D

 

NEW QUESTION 24
You launched a Linux compute instance to host the new version of your company website via Apache Httpd server on HTTPS (port 443). The instance is created in a public subnet along with other instances. The default security list associated to the subnet is:

You want to allow access to the company website from public internet without exposing websites eventually hosted on the other instances in the public subnet.
Which action would you take to accomplish the task? (Choose the best answer.)

  • A. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the instance that hosts the company website.
  • B. In default security list, add a stateful rule to allow ingress access on port 443.
  • C. Create a new security list with a stateful rule to allow ingress access on port 443 and associate it to the public subnet.
  • D. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the public subnet that hosts the company website.

Answer: A

 

NEW QUESTION 25
What is a key benefit of using Oracle Cloud Infrastructure's Resource Manager for your Terraform provisioning and management activities? (Choose the best answer.)

  • A. Resource Manager has administrative privileges by design. Even if your IAM user does not have access, you can leverage Resource Manager to provision new resources to any compartment in the Tenancy.
  • B. Resource Manager manages to Terraform state file for your infrastructure and locks the file so that only one job at a time can run on a given stack.
  • C. You can use Resource Manager to apply patches to all existing Oracle Linux interfaces in a specified compartment.
  • D. You can use Resource Manager to identify and maintain an inventory of all Compute and Database instances across your tenancy.

Answer: B

 

NEW QUESTION 26
You have created the following JSON file to specify a lifecycle policy for one of your object storage buckets:

How will this policy affect the objects that are stored in the bucket? (Choose the best answer.)

  • A. Objects with the prefix "LOGS" will be retained for 120 days and then deleted permanently.
  • B. Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be migrated back to standard Storage 120 days after creation.
  • C. The objects with prefix "LOGS" will be deleted 30 days after creation date.
  • D. Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be deleted 120 days after creation.

Answer: D

 

NEW QUESTION 27
You have the following compartment structure within your company's Oracle Cloud Infrastructure (OCI) tenancy:

You want to create a policy in the root compartment to allow SystemAdmins to manage VCNs only in CompartmentC.
Which policy is correct? (Choose the best answer.)

  • A. Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentC
  • B. Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentB:CompartmentC
  • C. Allow group SystemAdmins to manage virtual-network-family in compartment Root
  • D. Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentA:CompartmentB:CompartmentC

Answer: A

 

NEW QUESTION 28
You have been asked to review a network design for Oracle Cloud Infrastructure (OCI) by a major client. The client's IT team needs to provision two Virtual Cloud Networks (VCNs) for a major application. The application uses a large number of virtual machine instances. Additionally, in the future, a VCN peering will be required to allow connectivity between the VCNs.
Which of the following are valid IP ranges to consider? (Choose the best answer.)

  • A. 10.0.0.0/30 and 192.168.0.0/30
  • B. 10.0.0.0/16 and 10.0.64.0/24
  • C. 10.0.0.0/8 and 11.0.0.0/8
  • D. 10.0.8.0/21 and 10.0.16.0/22

Answer: B

 

NEW QUESTION 29
You have recently been asked to take over management of your company's infrastructure provisioning efforts, utilizing Terraform v0.12 to provision and manage infrastructure resources in Oracle Cloud Infrastructure (OCI).
For the past few days the development environments have been failing to provision. Terraform returns the following error:

You locate the related code block in the Terraform config and find the following:

Which correction should you make to solve this issue? (Choose the best answer.)

  • A. Modify line 15 to be the following:
    tcp_options = {min = "22", max = "22")
  • B. Replace the curly braces '{ }' in lines 11 and 16 with square braces '[ ]'
  • C. Place a command at the end of line 16
  • D. Modify line 15 to be the following:
    tcp_options {
    min = "22"
    max = "22"
    }

Answer: A

 

NEW QUESTION 30
What is a key benefit of using Oracle Cloud Infrastructure's Resource Manager for your Terraform provisioning and management activities? (Choose the best answer.)

  • A. Resource Manager has administrative privileges by design. Even if your IAM user does not have access, you can leverage Resource Manager to provision new resources to any compartment in the Tenancy.
  • B. Resource Manager manages to Terraform state file for your infrastructure and locks the file so that only one job at a time can run on a given stack.
  • C. You can use Resource Manager to apply patches to all existing Oracle Linux interfaces in a specified compartment.
  • D. You can use Resource Manager to identify and maintain an inventory of all Compute and Database instances across your tenancy.

Answer: B

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/ResourceManager/Concepts/ samplecomputeinstance.htm

 

NEW QUESTION 31
You have set an alarm to be generated when the CPU usage of a specified instance is greater than 10%. In the alarm behavior view below you notice that the critical condition happened around 23:30. You were expecting a notification after 1 minute, however, the alarm firing state did not begin until 23:33.

What should you change to fix it? (Choose the best answer.)

  • A. Change the alarm's trigger delay minutes value to 1.
  • B. Change the notification topic that you previously associated with the alarm.
  • C. Change the alarm condition to be grater than 3%.
  • D. Change the alarm's metric interval to 1.

Answer: A

 

NEW QUESTION 32
You are asked to deploy a new application that has been designed to scale horizontally. The business stakeholders have asked that the application be deployed in us-phoenix-1.
Normal usage requires 2 OCPUs. You expect to have few spikes during the week, that will require up to 4 OCPUs, and a major usage uptick at the end of each month that will require 8 OCPUs.
What is the most cost-effective approach to implement a highly available and scalable solution? (Choose the best answer.)

  • A. Create an instance pool with a VM.Standard2.1 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances and a maximum of 8 instances.
  • B. Create an instance with 1 OCPU shape. Use a CLI script to clone it when more resources are needed.
  • C. Create an instance with 1 OCPU shape. Use the Resize Instance action to scale up to a larger shape when more resources are needed.
  • D. Create an instance pool with a VM.Standard2.2 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances, to handle the weekly spikes, and a maximum of 4 instances.

Answer: D

 

NEW QUESTION 33
You have ordered two FastConnect connections that provide a high availability connection architecture between your on-premises data center and Oracle Cloud Infrastructure (OCI). You want to run these connections in an ACTIVE/PASSIVE architecture.
How can you accomplish this? (Choose the best answer.)

  • A. Decrease the prefix length of AS for the FastConnect you want to use as PASSIVE connection.
  • B. Use AS PATH prepending with your routes.
  • C. Enable BGP on the FastConnect that you want as the ACTIVE connection.
  • D. Adjust one of the connections to have a higher ASN.

Answer: B

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/Resources/Assets/whitepapers/connectivity- redundancy-guide.pdf (5)

 

NEW QUESTION 34
You have been asked to set up connectivity between a client's on-premises network and Oracle Cloud Infrastructure (OCI). The requirements are:
* Low latency: The applications are financial and require low latency connectivity into OCI.
* Consistency: The application isn't tolerant of performance variation.
* Performance: The communications link needs to support up to 1.25 Gbps.
* Encryption: The communications link needs to encrypt any data in transit between the on-premises network and OCI Virtual Cloud Network (VCN).
The client wants to implement the above with as low a cost as possible, while meeting all of the requirements.
What should you suggest? (Choose the best answer.)

  • A. Provision FastConnect with a single public virtual circuit, and run an IPsec VPN tunnel over the top of this virtual circuit.
  • B. Provision FastConnect with a single private virtual circuit, and run an IPsec VPN tunnel over the top of this virtual circuit.
  • C. Provision a site-to-site IPsec VPN between your on-premises network and your virtual cloud network (VCN) using VPN Connect.
  • D. Provision FastConnect with a single private virtual circuit.
  • E. Provision FastConnect with a single public virtual circuit.

Answer: D

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/Network/Concepts/fastconnectoverview.htm

 

NEW QUESTION 35
An insurance company has contracted you to help automate their application business continuity plan. They have the application running in eu-frankfurt-1 as the primary site and uk-london-1 as a disaster recovery site.
Normally they have a DNS A record associated with the IP address of the primary endpoint in eu-frankfurt-1. In the event of a disaster, they use OCI DNS Zone Management to update the A record and replace it with the IP address of the endpoint in uk-londond-1.
How can you automate the failover process? (Choose the best answer.)

  • A. Create a Health Check that evaluates both regional endpoints. Create a Traffic Management Steering policy with Failover type and associate it with the Health Check.
  • B. Provision a Load Balancer in Frankfurt and associate it with the A record in DNS. Create a backend set with backend servers from both eu-frankfurt-1 and uk-london-1 regions.
  • C. Create a Traffic Management Steering policy and attach it to a backend servers from both eu-frankfurt-1 and uk-london-1 regions.
  • D. Create a Traffic Management Steering policy with Load Balancer type and add both eu-frankfurt-1 and uk- london-1 endpoints. Attach the Traffic Management Steering policy to the A record.

Answer: D

Explanation:
Explanation/Reference:

 

NEW QUESTION 36
Your customer is running a set of compute instances inside a private subnet to manage their workloads on Oracle Cloud Infrastructure (OCI) tenancy. You have set up auto scaling feature to provide consistent performance to their end users during period of high demand.
Which step should be met for auto scaling to work? (Choose the best answer.)

  • A. Audit logs for the instances should be enabled.
  • B. Monitoring for the instances should not be enabled.
  • C. OS Management Service agent (osms) must be installed on the instances.
  • D. Service gateway should be setup to allow instances to send metrics to monitoring service.

Answer: A

 

NEW QUESTION 37
You created an Oracle Linux compute instance through the Oracle Cloud Infrastructure (OCI) management console then immediately realize you forgot to add an SSH key file. You notice that OCI compute service provides instance console connections that supports adding SSH keys for a running instance. Hence, you created the console connection for your Linux server and activated it using the connection string provided. However, now you get prompted for a username and password to login.
What option should you recommend to add the SSH key to your running instance, while minimizing the administrative overhead? (Choose the best answer.)

  • A. You need to modify the serial console connection string to include the identity file flag, -i to specify the SSH key to use.
  • B. You need to terminate the running instance and recreate it by providing the SSH key file.
  • C. You need to configure the boot loader to use ttyS0 as a console terminal on the VM.
  • D. You need to reboot the instance from the console, boot into the bash shell in maintenance mode, and add SSH keys for the opc user.

Answer: A

 

NEW QUESTION 38
You have been contracted by a local e-commerce company to assist with enhancing their online shopping application. The application is currently deployed in a single Oracle Cloud Infrastructure (OCI) region. The application utilizes a public load balancer, application servers in a private subnet, and a database in a separate, private subnet.
The company would like to deploy another set of similar infrastructure in a different OCI region that will act as standby site. In the event of a failure at the primary site, all customers should be routed to the failover site automatically.
After deploying the additional infrastructure within the second region, how should you configure automated failover requirements? (Choose the best answer.)

  • A. Deploy a new load balancer in the primary region. Create one backend set for the primary application servers and a second backend set for the standby application servers. Create a listener for the primary backend set with a timeout of 3 minutes. Create a listener for the secondary backend set with a timeout of 10 minutes.
  • B. Create a load balancer policy in the Traffic Management service. Configure one answer for each site. Set the answer for the primary site with a weight of 10 and the answer for the secondary site with a weight of 100.
  • C. Create a failover policy in the Traffic Management service. Set the IP address of the public load balancer for the primary site in answer pool 1. Set the IP address of the public load balancer for the secondary site in answer pool 2. Define a health check to monitor both sites.
  • D. Create a new A record in DNS that points to the public load balancer at the secondary site. Create a CNAME for the sub-domain failover that will resolve to the new A record. Inform customers to prepend the website URL with failover if the primary site is unavailable.

Answer: A

 

NEW QUESTION 39
Which two statements about the Oracle Cloud Infrastructure (OCI) Command Line Interface (CLI) are TRUE? (Choose two.)

  • A. The CLI allows you to use the Python language to interact with OCI APIs.
  • B. You can run CLI commands from inside OCI Regions only.
  • C. The CLI provides an automatic way to connect with instances provisioned on OCI.
  • D. You can filter CLI output using the JMESPath query option for JSON.
  • E. The CLI provides the same core functionality as the Console, plus additional commands.

Answer: D,E

 

NEW QUESTION 40
You have been asked to investigate a potential security risk on your company's Oracle Cloud Infrastructure (OCI) tenancy. You decide to start by looking through the audit logs for suspicious activity.
How can you retrieve the audit logs using the OCI Command Line Interface (CLI)? (Choose the best answer.)

  • A. oci audit event list --start-time $start-time --end-time $end-time -- compartment-id $compartment-id
  • B. oci audit event list --start-time $start-time --compartment-id $compartment-id
  • C. oci audit event list --start-time $start-time --end-time $end-time --tenancy-id
  • D. oci audit event list --end-time $end-time --compartment-id $compartment-id

Answer: A

Explanation:
$tenancy-id

 

NEW QUESTION 41
......

True 1Z0-1067-21 Exam Extraordinary Practice For the Exam: https://www.actualcollection.com/1Z0-1067-21-exam-questions.html

Related Articles

more
Oracle 1Z0-1067-21 Certification Practice Exam

Copyright © 2026 ActualCollection NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy