Winter 50% Special Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 28285018

1z0-1072-20 Oracle Cloud Infrastructure 2020 Architect Associate Questions and Answers

Questions 4

You are designing a high bandwidth, redundant connection between your data center and Oracle Cloud Infrastructure (OCI). While researching for OCI FastConnect locations, you notice that you are co-located with Oracle at one of the Oracle FastConnect locations in the Ashburn region.

What is the recommended design in this scenario?

Options:

A.

Create a cross-connect group and have two or more cross-connects in that group. Create an IPsec VPN connection on this group.

B.

Setup two IPsec connections between your data center and OCI Ashburn region. Create a OCI load balancer to distribute the traffic across the two connections.

C.

Create a cross-connect group and have at least two or more cross-connects in that group. Create at least two or more virtual circuits in the group.

D.

Create a cross-connect group and have at least one cross-connect in that group. Create at least one virtual circuit in the group.

Buy Now
Questions 5

You deployed a web server in Oracle Cloud Infrastructure using an ephemeral public IP. After a few changes in your web server configuration, you rebooted the server and a new public IP was associated to your instance.

What should you do to prevent this from happening again?

Options:

A.

Create a reserved public IP and associate it with the security list that your complete instance is using

B.

Create a reserved public IP and associate it with the subnet of your compute instance

C.

Create a reserved public IP and associate it with the VNIC of your compute instance

D.

Create a reserved public IP and associate it with the hosts file of your web server

Buy Now
Questions 6

You have been tasked with creating one virtual cloud network (VCN) each for two line of business (LOB) applications. LOB A and LOB B will need to communicate with each other. To ensure that you can utilize VCN peering, which network CIDR ranges should be used?

Options:

A.

VCN A (10.0.0.0/16) and VCN B (10.1.0.0/16)

B.

VCN A (10.0.2.0/16) and VCN B (10.0.2.0/25)

C.

VCN A (10.0.0.0/16) and VCN B (10.0.16.0/24)

D.

VCN A (172.16.0.0/24) and VCN B (172.16.0.0/28)

Buy Now
Questions 7

Which two statements are true about restoring a block volume from a manual or policy-based block volume backup? (Choose two.)

Options:

A.

It can be restored as new volumes with different sizes from the backups

B.

It can be restored as a new volume to any AD across different regions

C.

It must be restored as a new volume to the same availability domain (AD) on which the original block volume backup resides

D.

It can be restored as a new volume to any AD in the same region

Buy Now
Questions 8

You are a network architect of an application running on Oracle Cloud Infrastructure (OCI). Your security team has informed you about a security patch that needs to be applied immediately to one of the backend web servers. What should you do to ensure that the OCI load balancer does not forward traffic to this backend server during maintenance?

Options:

A.

Drain all existing connections to this backend server and mark the backend web server offline

B.

Create another OCI load balancer for the backend web servers, which are active and handling traffic

C.

Edit the security list associated with the subnet to avoid traffic connectivity to this backend serve

D.

Stop the load balancer for maintenance and restart the load balancer after the maintenance is finished

Buy Now
Questions 9

Which two statements are true about Oracle Cloud Infrastructure (OCI) DB Systems?

Options:

A.

Customers have no control over database patching.

B.

The database and backups are encrypted by default.

C.

Customers can consolidate multiple database homes on a single virtual machine database host.

D.

Customers can manage the TDE Wallet after DB Systems is provisioned.

Buy Now
Questions 10

Which two statements are true about data guard service on DB Systems in Oracle Cloud Infrastructure (OCI)?

Options:

A.

Data guard implementation requires two DB Systems, one running the primary database on a virtual machine and the standby database running on bare metal.

B.

Data guard implementation requires two DB Systems, one containing the primary database and one containing the standby database.

C.

Data guard configuration on the OCI is limited to a virtual machine only.

D.

Both DB Systems must use the same VCN, and port 1521 must be open.

Buy Now
Questions 11

You have provisioned an Autonomous Data Warehouse (ADW) database with 16 enabled OCPUs and need to configure the consumer group for your application.

Which two are true when deciding the number of sessions for each application? (Choose two.)

Options:

A.

The MEDIUM and LOW consumer group can run up to 16 concurrent SQL statements if HIGH consumer group has 0 SQL statements

B.

The HIGH consumer group can run up to 16 concurrent SQL statements as long as MEDIUM and LOW consumer groups have 0 SQL statements

C.

The MEDIUM consumer group can run 20 concurrent SQL statements when HIGH consumer group has 0 SQL statements

D.

The HIGH consumer group can run up to 16 concurrent SQL statements in addition to 32 concurrent SQL statements in MEDIUM and LOW consumer group each

E.

The HIGH consumer group can run 3 concurrent SQL statements when MEDIUM consumer group has 0 SQL statements

Questions 12

Your application consists of three Oracle Cloud Infrastructure compute instances running behind a public load balancer. You have configured the load balancer to perform health checks on these instances, but one of the three instances fails to pass the configured health check. Which of the following action will the load balancer perform?

Options:

A.

Stop sending traffic to the instance that failed health check

B.

Terminate the instance that failed health check

C.

Stop the instances that failed health check

D.

Remove the instance that failed the health check from the backend set

Buy Now
Questions 13

With regard to Oracle Cloud Infrastructure Load Balancing service, which two actions will occur when a backend server that is registered with a backend set is marked to drain connections?

Options:

A.

All existing connections to this backend sever will be immediately closed.

B.

Requests to this backend server are redirected to a user-defined error page.

C.

All new connections to this backend server are disallowed.

D.

Connections to this backend server will remain open until all in-flight requests are completed.

E.

All connections to this backend server are forcibly closed after a timeout period.

Buy Now
Questions 14

You are running a mission-critical database application in Oracle Cloud Infrastructure (OCI). You take regular backups of your DB system to OCI object storage. Recently, you notice a failed database backup status in the console.

What step can you take to determine the cause of the backup failure?

Options:

A.

Ensure that your database host can connect to OCI object storage.

B.

Ensure the database archiving mode is set to NOARCHIVELOG.

C.

Make sure that the database is not active and running while the backup is in progress.

D.

Don't restart the dcsagent program even if it has a status of stop/waiting.

Buy Now
Questions 15

A financial firm is designing an application architecture for its online trading platform that must have high availability and fault tolerance.

Their solutions architect configured the application to use an Oracle Cloud Infrastructure Object Storage bucket located in the US West (us-phoenix-1) region to store large amounts of financial data. The stored financial data in the bucket must not be affected even if there is an outage in one of the Availability Domains or a complete region.

What should the architect do to avoid any costly service disruptions and ensure data durability?

Options:

A.

Create a new Object Storage bucket in another region and configure lifecycle policy to move data every 5 days.

B.

Create a lifecycle policy to regularly send data from Standard to Archive storage.

C.

Copy the Object Storage bucket to a block volume.

D.

Create a replication policy to send data to a different bucket in another OCI region.

Buy Now
Questions 16

Which two statements are true about Oracle Cloud Infrastructure storage services?

Options:

A.

You can move Object Storage buckets, Block Volumes and File Storage mount targets between compartments.

B.

File storage mount target does not provide a private IP address, while the Object Storage bucket provides one.

C.

File Storage uses the network file system (NFS) protocol, whereas Block Volume uses ISCSI.

D.

Block Volume service scales to Exabytes per Instance, while File Storage service offers unlimited scalability.

E.

You can take Incremental snapshots of Block Volumes, File Storage file systems and Object Storage buckets.

Buy Now
Questions 17

You are deploying a highly available web application In Oracle Cloud Infrastructure and have decided to use a public load balancer. The back-end web servers will be distributed across all three availability domains (ADs).

How many subnets should you create to deliver a secure, highly available application?

Options:

A.

two subnets in total; one regional private subnet to host your back-end web servers and one regional public subnet to host your public load load balancer.

B.

two subnets in total; one regional public subnet to host your back-end web servers and one regional private subnet to host your public load load balancer.

C.

three subnets in total; one regional public subnet to host your back-end web servers and two AD specific private subnets to host your private load load balancer.

D.

one subnet in total; one regional private subnet to host your back-end web servers and your public load balancer.

Buy Now
Questions 18

You deployed a database on a Standard Compute instance in Oracle Cloud Infrastructure (OCI) due to cost concerns. The database requires additional storage with high I/O and you decided to use OCI Block Volume service for it.

With this requirement in mind, which elastic performance option should you choose for the Block Volume?

Options:

A.

Balanced Performance

B.

Higher performance

C.

Extreme performance

D.

Lower cost

Buy Now
Questions 19

You have been asked to create an Identity and Access Management (IAM) user that will authenticate to Oracle Cloud Infrastructure (OCI) API endpoints. This user must not be given credentials that would allow them to log into the OCI console.

Which two authentication options can you use? (Choose two.)

Options:

A.

SSL certificate

B.

API signing key

C.

SSH key pair

D.

PEM Certificate file

E.

Auth token

Buy Now
Questions 20

You need to set up instance principals so that an application running on an instance can call Oracle Cloud Infrastructure (OCI) public services, without the need to configure user credentials.

A developer in your team has already configured the application built using an OCI SDK to authenticate using the instance principals provider.

Which is NOT a necessary step to complete this set up?

Options:

A.

Create a dynamic group with matching rules to specify which instances you want to allow to make API calls against services.

B.

Generate Auth Tokens to enable instances in the dynamic group to authenticate with APIs.

C.

Create a policy granting permissions to the dynamic group to access services in your compartment or tenancy.

D.

Deploy the application and the SDK to all the instances that belong to the dynamic group.

Buy Now
Questions 21

Which two resources reside exclusively in a single Oracle Cloud Infrastructure Availability Domain? (Choose two.)

Options:

A.

Identity and Access Management Groups

B.

Object Storage

C.

Web Application Firewall policy

D.

Block volume

E.

Compute instance

Buy Now
Questions 22

Which two statements below are correct with respect to adding secondary Virtual Network Interface Cards

(VNICs) to an existing compute instance in Oracle Cloud Infrastructure? (Choose two.)

Options:

A.

The secondary VNIC is required to be in the same Virtual Cloud Network (VCN), but can be in different

subnet, as the primary VNIC.

B.

The primary and secondary VNIC association can be in different virtual cloud networks (VCNs).

C.

You cannot assign an Ephemeral Public IP to a secondary VNIC.

D.

The primary and secondary VNIC association must be in the same availability domain.

E.

You can remove the primary VNIC after the secondary VNIC's attachment is complete.

Buy Now
Questions 23

Which of the following statements is true about the Oracle Cloud Infrastructure (OCI) Object Storage serverside encryption?

Options:

A.

Encryption of data encryption keys with a master encryption key is optional.

B.

Customer-provided encryption keys are always stored in OCI Vault service.

C.

Encryption is enabled by default and cannot be turned off.

D.

Each object in a bucket is always encrypted with the same data encryption key.

Buy Now
Questions 24

Which two statements about Oracle Cloud Infrastructure File Storage Service are accurate? (Choose two.)

Options:

A.

Customer can encrypt the communication to a mount target via export options.

B.

Mount targets use Oracle-managed keys by default.

C.

File systems use Oracle-managed keys by default.

D.

Customer can encrypt data in their file system using their own Vault encryption key.

E.

Communication with file systems in a mount target is encrypted via HTTPS.

Buy Now
Questions 25

Given: When creating multiple subnets within a Virtual Cloud Network (VCN), security lists are often made to group common services, for example, SSH and RDP (remote access), 80 and 443 (HTTP), and so on.

By default, what is the maximum number of security lists that can be associated with a subnet upon creation?

Options:

A.

4

B.

2

C.

5

D.

3

Buy Now
Questions 26

Your company has decided to move a few applications to Oracle Cloud Infrastructure and you have been asked to design it for Disaster Recovery (DR). One of the items of your design is to deploy the DR at least 300 miles from the home site and minimize the network latency as much as possible.

Based on that, what will be the recommended deployment?

Options:

A.

Deploy applications in two separated VCNs in different Availability Domains and use VCN Remote Peering

B.

Deploy applications in different regions and have them connected using VCN Remote Peering

C.

Deploy applications in two separated VCNs in different regions and use VCN Local Peering

D.

Deploy applications on the same region splitting workloads across Availability Domains.

Buy Now
Questions 27

You had an outage in your application caused by the loss of a shared volume provisioned by File Storage Service (FSS). At this point, you need to restore the data from a snapshot you created of the FSS.

What are the steps to restore the data?

Options:

A.

Access the directory where the shared volume is mounted, then cd into .snapshot folder, find the snapshot folder you want to recover and use cp or rsync tool to copy the files to the original location.

B.

Open OCI Console, select File Storage Service, find the shared storage, then click on snapshot and restore.

C.

Open OCI Console, select File Storage Service, find the snapshot you created and click restore.

D.

Access the directory, where you mounted the shared volume, then cd into .snapshot folder and find the snapshot folder you want to recover and rename that folder to the original folder name.

Buy Now
Questions 28

For a compute instance that is launched in a private subnet in a Virtual Cloud Network (VCN), which action needs to be performed to connect to the Internet, assuming that the required security list is properly set up?

Options:

A.

Assign a Public IP address to the compute instance.

B.

Create and configure Network Address Translation (NAT) in a public subnet and route all traffic to it.

C.

There is no way for an instance in a private subnet to connect to the Internet.

D.

Create a default route entry in the route table to forward all traffic to the Internet gateway.

Buy Now
Questions 29

You are responsible for setting up access for all the cloud users of a large enterprise. You log in to the Phoenix region and start creating users and policies. You then realize that some users might be creating resources in the Ashburn region.

Which step should you perform to enable those users?

Options:

A.

You can assign a region to each of the users at the time of creation.

B.

IAM users are global and non-admin users can add resources to any region by default.

C.

You need to log in to each region separately to create users for that particular region.

D.

IAM users are global. As an administrator, make sure that you subscribe to the Ashburn region.

Buy Now
Questions 30

Which two are true for achieving High Availability on Oracle Cloud Infrastructure? (Choose two.)

Options:

A.

Store your database across multiple regions so that half of the data resides in one region and the other half resides in another region.

B.

Attach your block volume form Availability Domain 1 to a compute instance in Availability Domain 2 (and vice versa) so that they are highly available.

C.

Configure your database to have Data Guard in another Availability Domain in Sync mode within a region.

D.

Store your database files on Object Storage so that they are available in all Availability Domains in all regions.

E.

Distribute your application servers across all Availability Domains within a region.

Buy Now
Questions 31

Which two statements are true about Oracle Cloud Infrastructure Compute Service? (Choose two.)

Options:

A.

You can launch a virtual or bare metal instance by using the same LaunchInstance API.

B.

You cannot launch a bare metal server in Oracle Cloud Infrastructure Compute Service.

C.

You can attach a block volume in an Availability Domain other than your compute instance.

D.

You can share custom images across tenancies and regions.

Buy Now
Questions 32

Your company is moving an Internet-facing, 2-tier web application into Oracle Cloud Infrastructure. The application must have a highly available architecture.

Which two design options would you consider? (Choose two.)

Options:

A.

Configure a Dynamic Route Gateway in your VCN and make it highly available.

B.

Configure a NAT instance in your Virtual Cloud Network (VCN). Create a route rule by using the private IP of the NAT instance as a route target for all the private subnets in your VCN.

C.

Create an Internet Gateway and attach it to your VCN. Deploy public load balancer nodes into two Available Domains.

D.

Place all web servers behind a public load balancer.

Buy Now
Questions 33

Which two features are offered natively on Oracle Cloud Infrastructure Database Cloud Service (DBCS)? (Choose two.)

Options:

A.

Data Guard in Async mode within a region

B.

GoldenGate replication between two regions

C.

Data Guard in Maximum Protection mode

D.

backup to Object Storage

Buy Now
Questions 34

Which certificate format is used with the load balancer?

Options:

A.

PFX

B.

PEM

C.

PKCS12

D.

CRT

Questions 35

Which two statements are true about the Oracle Cloud Infrastructure Object Storage Service? (Choose two.)

Options:

A.

It provides higher IOPS than Block Storage.

B.

It can be directly attached or detached from a compute instance.

C.

Data is stored redundantly only in a single AD.

D.

Data is stored redundantly across multiple availability domains (ADs) in a multi-AD region.

E.

It provides strong consistency.

Buy Now
Exam Code: 1z0-1072-20
Exam Name: Oracle Cloud Infrastructure 2020 Architect Associate
Last Update: Apr 23, 2021
Questions: 238

PDF + Testing Engine

$70  $139.99

Testing Engine

$52.5  $104.99

PDF (Q&A)

$47.5  $94.99