Question 1: Correct

What is true about data guard set up with fast-start failover (FSFO) in Oracle Cloud
Infrastructure (OCI)?

A. The best practice for high availability and durability is to run the primary, standby, and observer
in separate availability domains (ADs).

(Correct)

B. When you configure data guard using OCI console, the default mode is set to maxprotection.

C. You cannot create the standby DB system in a different AD from the primary DB system.

D. You cannot use database command line interface (CLI) to set up data guard with FSFO.

Question 2: Correct
Which two statements about fault domains are true? (Choose two.)

A. A fault domain is a grouping of hardware and infrastructure within an availability domain

(Correct)

B. Each availability domain contains three fault domains

(Correct)

C. A failed instance in a fault domain is automatically relaunched

D. A fault domain is selected automatically based on usage data

 Question 3: Incorrect
You have an application running on Oracle Cloud Infrastructure. You identified that the
read and write operations are slowing your application down enough to impair user access.
The application is currently using a [Link] 1.2 compute without any block storage
attached to it. - Which two options allow you to increase disk performance? (Choose two.)

A. Terminate the compute instance preserving the boot volume. Create a new compute instance a
VM Dense IO shape using the boot volume preserved.

(Correct)

B. Terminate the compute instance preserving the boot volume. Create a new compute instance using
a VM Standard shape and attach a new block volume to host your application.

(Correct)

C. Create a backup of the boot volume. Create a new compute instance a VM Dense IO shape and
restore the backup.

(Incorrect)

D. Terminate the compute instance and create a backup of the boot volume. Create a new compute
instance using a VM Dense IO shape and restore the backup.

(Incorrect)

Question 4: Incorrect
You are about to upload log file (5 TiB size) to Oracle Cloud Infrastructure object storage
and have decided to use multipart upload capability for a more efficient and resilient
upload. - Which two statements are true about multipart upload? (Choose two.)

A. Individual object parts can be as small as 10 MiB or as large as 50 GiB

(Correct)


 B. While a multipart upload is still active, you cannot add parts even if the total number of parts is
less than 10,000

C. The maximum size for an uploaded object is 10 TiB

(Correct)

D. You do not have to commit the upload after you have uploaded all the object parts

(Incorrect)

Question 5: Incorrect
You must implement a backup solution for your Autonomous Data Warehouse (ADW) that
will enable you to restore data as old as one year with a recovery point objective (RPO) of
10 days. - Which database backup strategy would you select?

A. Take weekly manual backups to supplement the automated backups and preserve them for 12
months.

(Incorrect)

B. Use the automated backups.

(Correct)

C. Take monthly manual backups to supplement the automated backups and preserve them for 12
months.

D. Take quarterly manual backups to supplement the automated backups and preserve them for 12
months

Question 6: Incorrect
You have an Oracle Cloud Infrastructure (OCI) load balancer distributing traffic via an
evenly-weighted round robin policy to your backend web servers. You notice that one of
 your web servers is receiving more traffic than other web servers. - How can you resolve
this imbalance?

A. Check security lists and route tables of your virtual cloud network (VCN) and fix any issues
associated with the rules

B. Create separate listeners for each backend web server

(Incorrect)

C. Delete and re-create your OCI load balancer

D. Disable session persistence on your backend set

(Correct)

Question 7: Incorrect
Your organization has deployed a large, complex application across multiple compute
instances in Oracle Cloud Infrastructure (OCI). These compute instances also have block
volume storage attached to them. You want to create a time consistent backup of these
block volume storage. - Which implementation strategy should be used?

A. Create a manual backup of each volume

B. Use scripts available in OCI to backup block volume storage

(Incorrect)

C. Group volumes in a volume group first and then use available scripts in OCI


 D. Group volumes in a volume group and create a manual backup of the volume group

(Correct)

Question 8: Incorrect
You are running several Linux based operating system in your on-premises environment
that you want to import to OCI as custom images. You can launch your imported images as
OCI compute Virtual machines. Which two modes below can be used to launch these
imported Linux Vms ?

[Link]

[Link]

(Incorrect)

[Link]

(Correct)

[Link]

(Correct)

Question 9: Incorrect
You have an application deployed in Oracle Cloud Infrastructure running in the US East
Region. You have been asked to create a disaster recovery plan that will protect against the
loss of critical data. The DR site must be at least a few hundred miles from your primary
site and data transfer between the two sites must not traverse the public internet. Which is
the lowest latency and lowest cost recommended disaster recovery plan?

A. Create a DR environment in US West Region and provision a FastConnect virtual critical using
Dynamic Routing Gateway between the Regions


 B. Create a DR environment in US West Region. Associate a Dynamic Routing Gateway (DRG)
with the VCN in each region and configure an IPsec VPN connection between the two region

(Incorrect)

C. Create a DR environment in US West Region. Associate a Dynamic Routing Gateway (DRG)

with the VCN in each region and create a remote peering connection between the two VCNs

(Correct)

D. Create a DR environment in US West Region. Associate a Local peering Gateway with the VCN
in each region and create a local peering connection between the two VCNs

Question 10: Incorrect

Which two statement are true about Oracle Cloud Infrastructure IPSec VPN Connect ?

A. Each OCI IpSec VPN consist of multiple redundant IPSec tunnels

(Correct)

B. OCI IPSec VPN tunnel supports only static routes to route traffic

(Incorrect)

C. OCI IPSec VPN can be configured in tunnel mode only

(Correct)

D. OCI IPSec VPN can be configured in trans port mode only

Question 11: Incorrect

Which two Oracle Cloud Infrastructure services use a Dynamic Routing Gateway ?


 A. OCI FastConnect Public Peering

B. Local Peering

C. OCI FastConnect Private Peering

(Correct)

D. Internet Gateway

(Incorrect)

E. OCI IPSec VPN Connect

(Correct)

Question 12: Incorrect

You have the following compartment structure in your tenancy. Root compartment -
>Training ->Training Sub1 -> Training Sub2. You create a policy in the root compartment
to allow the default admin for the account (Administrator) to manage block volume in
compartment Training-Sub2. What policy would you write to meet this requirement?

A. Allow group Administrator to manage volume family in root compartment.

B. Allow group Administrator to manage volume family in compartment Training-Sub1: Taining-

Sub2

(Incorrect)

C. Allow group Administrators to manage volume-family in compartment Training: Training-Sub1:

Training-Sub2
 (Correct)

D. Allow group Administrators to manage volume-family in compartment Training-Sub2

Question 13: Correct

You have created a new compartment called production to host some production apps. You
have also created users in your tenancy and added them to a group called ?Production
group?. Your users are still unable to access the production compartment. How can you
resolve this situation?

A. Every compartment you create comes with a predefined set of polices, so no further action is
needed

B. Your users get automatic access to all compartments, so no further action is needed

C. Write an IAM Policy for each user granting them access to the production compartment

D. Write an IAM Policy for ?Production Group ?granting it access to the production compartment

(Correct)

Question 14: Incorrect

A customer has launched a compute Instance in the Virtual Cloud Network (VCN), which
has an Internet gateway, a service gateway, a default security lists and a default route table.
Customer has opened up Port 22 in the security lists attached to the compute instance
subnet, however is still unable to connect to compute instances using ssh. - Which option
would remedy this situation?

A. Modify the route table associated with the VCN subnet in which the instance resides. Add a
following route to the route table. Destination CIDR: [Link]/0 Target: Internet Gateway (IGW)


 B. Modify the security list associated with the VCN subnet in which the instance resides. Add a
stateful egress rule to allow icmp traffic in addition to the port 22.

C. Modify the route table associated with the VCN subnet in which the instance resides. Add a
following route to the route table. (Destination CIDR: [Link]/0 , Target: Dynamic Routing Gateway
(DRG))

(Incorrect)

D. Modify the route table associated with the VCN subnet in which the instance resides. Add a
following route to the route table. ( Destination CIDR: [Link]/0 , Target: Service Gateway (SGW) )

(Correct)

Question 15: Incorrect

You are responsible for creating and maintaining an enterprise application that consists of
multiple storage volumes across multiple instances. The storage volumes include boot
volumes and block volumes for your data storage. You need to create backups of these
storage volumes in the most time-efficient manner. - How can you meet this requirement?

A. You can create clones of storage volumes one at a time

B. You can group together multiple storage volumes in a volume group and create volume group
backups

(Correct)

C. You can create on-demand one-off backups of boot volumes, but not block volumes

D. You can create on-demand one-off backups of block volumes, but not boot volumes

(Incorrect)

Question 16: Incorrect

 You are asked to create a user that will access programmatic endpoints in Oracle Cloud
Infrastructure. The user must not be allowed to authenticate by username and password. -
Which two authentication options can you use? (Choose two.)

A. PEM Certificate file

B. Auth tokens

(Correct)

C. API signing key

(Correct)

D. Windows password

(Incorrect)

E. SSH key pair

Question 17: Incorrect

You are running your warehouse using Autonomous Data Warehouse (ADW) service and
you noticed that a newly configured batch job is always running in serial even through
nothing else is running in the database. All your jobs are configured to run with
parallelism enabled. - What could be the reason for this batch job to run in serial?

A. The batch job depends on only one table and parallelism cannot be enabled on single-table
queries.

B. The parallelism of batch job depends on the number of ADW databases involved in the query.


C. The new batch job is connected to LOW consumer group.

(Correct)

D. The new batch job runs on database tables that are not enable for parallel execution.

E. Parallelism on the database is controlled by the application, not the database.

(Incorrect)

Question 18: Incorrect

You have five different company locations spread across the US. For a proof-of-concept
(POC) you need to setup secure and encrypted connectivity to your workloads running in a
single virtual cloud network (VCN) in the Oracle Cloud Infrastructure Ashburn region
from all company locations. - What would meet this requirement?

A. Create five internet gateways in your VCN and have separate route table for each internet
gateway.

B. Create five virtual circuits using FastConnect for each company location and terminate those
connections on a single dynamic routing gateway (DRG). Attach that DRG to your VCN.

C. Create five IPsec connections with each company location and terminate those connections on a
single DRG. Attach that DRG to your VCN.

(Correct)

D. Create five IPsec VPN connections with each company location and terminate those connections
on five separate DRGs. Attach those DRGs to your VCN.

(Incorrect)
ContinueRetake test