別格で売上ナンバーワン1z0-1067-22試験にはは2023年最新のOracle練習問試験合格させます [Q14-Q39]

Share

別格で売上ナンバーワン1z0-1067-22試験にはは2023年最新のOracle練習問試験合格させます

Oracle Cloud Solutions Infrastructure問題集で1z0-1067-22試験完全版問題で試験学習ガイド

質問 14
You have created the following JSON file to specify a lifecycle policy for one of your object storage buckets:

How will this policy affect the objects that are stored in the bucket? (Choose the best answer.)

  • A. The objects with prefix "LOGS" will be deleted 30 days after creation date.
  • B. Objects with the prefix "LOGS" will be retained for 120 days and then deleted permanently.
  • C. Objectscontaining the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be deleted 120 days after creation.
  • D. Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be migrated back to standard Storage
    120 days after creation.

正解: C

 

質問 15
Security Testing Policy describes when and how you may conduct certain types of security testing of Oracle Cloud Services, including vulnerability and penetration tests, as well as tests involving data scraping tools.
What does Oracle allow as part of this testing? (Choose the best answer.)

  • A. Customers are allowed to test Oracle Cloud Infrastructure (OCI) hardware related to resources in their tenancy.
  • B. Customers can simulate DoS attack scenarios as long as it's restricted to the customer's own environment.
  • C. Customers can validate that their network resources are isolated from other customer resources.
  • D. Customers are allowed to use their own testing and monitoring tools.

正解: D

解説:
Explanation
Using your own monitoring and testing tools, you may conduct penetration and vulnerability tests of your acquired single-tenant Oracle Infrastructure as a Service (IaaS) offerings

 

質問 16
Your company hasrestructured its HR departments. As part of this change, you also need to re-organize compartments within Oracle Cloud Infrastructure (OCI) to align them to the company's new organizational structure. The following change is required:

Compartment Team_xneeds to be moved under a new parent compartment, Project_B The tenancy has the following policies defined for compartments Project_A and Project_B: Policy1: Allow group G1 to manage instance-family in compartment HR:Project_A Policy2: Allow group G2 tomanage instance-family in compartment HR:Project_B Which two statements describe the impacts after the compartment Team_x is moved? (Choose two.)

  • A. Group G1 can now manage instance-families in compartment Project_A, compartment Project_B and compartment Team_X
  • B. Group G2 can now manage instance-families in compartment Project_B, compartment Project_A and compartment Team_X
  • C. Group G2 can now manage instance-families in compartment Project_A but not in compartment Team_x
  • D. Group G1 can now manage instance-families in compartment Project_A but not in compartment Team_x
  • E. Group G2 can now manage instance-families in compartment Project_B and compartment Team_X

正解: D,E

 

質問 17
You have been asked to review a network design for Oracle Cloud Infrastructure (OCI) by a major client. The client's IT team needs to provision two Virtual Cloud Networks (VCNs) for a major application. The application uses a large number of virtual machine instances. Additionally, in the future, a VCN peering will be required to allow connectivity between the VCNs.
Which of the following are valid IP ranges to consider? (Choose the best answer.)

  • A. 10.0.8.0/21 and 10.0.16.0/22
  • B. 10.0.0.0/8 and 11.0.0.0/8
  • C. 10.0.0.0/16 and 10.0.64.0/24
  • D. 10.0.0.0/30 and 192.168.0.0/30

正解: C

 

質問 18
Which technique does NOT help you get the optimal performance out of the Oracle Cloud Infrastructure (OCI) File Storage service? (Choose the best answer.)

  • A. Right size compute instances from where file system is accessed based on their network capacity.
  • B. Increase concurrency by using multiple threads, multiple clients, and multiple mount targets.
  • C. Limit access to the same Availability Domain (AD) as the File Storageservice where possible.
  • D. Serialize operations to the file system to access consecutive blocks as much as possible.

正解: B

解説:
Explanation
"File Storage performance increases with parallelism. Increase concurrency by using multiple threads, multiple clients, and multiple mount targets."

 

質問 19
You have a 750 MIB file in an Oracle Cloud Infrastructure (OCI)Object Storage bucket. You want to download the file in multiple parts to speed up the download using the OCI CLI. You also want to configure each part size to be 128 MIB.
Which is the correct OCI CLI command for this operation? (Choose the best answer.)

  • A. oci os object get -ns my-namespace -bn my-bucket --name my-large-object
    --multipart-download-threshold 500 --part-size 128
  • B. oci os object get -ns my-namespace -bn my-bucket --name my-large-object -- multipart-download-threshold 750 --parallel-download-count 128
  • C. oci os object download -ns my-namespace -bn my-bucket --name my-large-object -- multipart-download-threshold 750 --parallel-download-count 128
  • D. oci os object download -ns my-namespace -bn my-bucket --name my-large-object -- resume-put
    --multipart-download-threshold 500 --part-size 128

正解: A

解説:
Explanation
https://docs.public.oneportal.content.oci.oraclecloud.com/en-us/iaas/Content/API/SDKDocs/cliusing.htm
https://docs.oracle.com/en-us/iaas/tools/oci-cli/2.6.15/oci_cli_docs/cmdref/os/object/get.html

 

質問 20
You have been asked to update the lifecycle policy for object storage using the Oracle Cloud Infrastructure (OCI) Command Line Interface (CLI).
Which command can successfully update the policy? (Choose the bestanswer.)

  • A. oci os object-lifecycle-policy get -ns <object_storage_namespace> -bn <bucket_name>
  • B. oci os object-lifecycle-policy delete -ns <object_storage_namespace> -bn <bucket_name>
  • C. oci os object-lifecycle-policy put -ns <object_storage_namespace> -bn <bucket_name>
  • D. oci os object-lifecycle-policy put -ns <object_storage_namespace> -bn <bucket_name> - -items
    <json_formatted_lifecycle_policy>

正解: D

解説:
Explanation
https://docs.oracle.com/en-us/iaas/Content/Object/Tasks/usinglifecyclepolicies.htm#cli
https://docs.oracle.com/en-us/iaas/tools/oci-cli/2.17.0/oci_cli_docs/cmdref/os/object-lifecycle-policy/put.html

 

質問 21
Which two statements are TRUE about Object Storage data security and encryption in Oracle Cloud Infrastructure (OCI)? (Choose two.)

  • A. Data needs to be decrypted on the client side before retrieving it.
  • B. All traffic to and from Object Storage service is encrypted using TLS.
  • C. OCI Vault Management is used by default to provide data security.
  • D. Client-side encryption is managed by the customer.
  • E. A VPN connection to OCI is required to ensure secure data transfer to an object storage bucket.

正解: B,D

 

質問 22
You are using Oracle Cloud Infrastructure (OCI) services across several regions: us-phoenix-1, us-ashburn-1, uk-london-1 and ap-tokyo-1. You have creates a separateadministrator group for each region: PHX-Admins, ASH-Admins, LHR-Admins and NRT-Admins, respectively.
You want to restrict admin access to a specific region. E.g., PHX-Admins should be able to manage all resources in the us-phoenix-1 region only and not any other OCI regions.
What IAM policy syntax is required to restrict PHX-Admins to manage OCI resources in the us-phoenix-1 region only? (Choose the best answer.)

  • A. Allow group PHX-Admins to manage all-resources in tenancy where request.region= 'phx'
  • B. Allow group PHX-Admins to manage all-resources in tenancy where request.permission= 'phx'
  • C. Allow group PHX-Admins to manage all-resources in tenancy where request.target= 'phx'
  • D. Allow group PHX-Admins to manage all-resources in tenancy where request.location= 'phx'

正解: A

解説:
Explanation
Use conditions to limit access depending on region:
request.regionhttps://docs.oracle.com/en-us/iaas/Content/Identity/Reference/policyreference.htm#General

 

質問 23
You have created an Autonomous Data Warehouse (ADW) service in your company's Oracle Cloud Infrastructure (OCI) tenancy and you now have to load historical data into it. You have already extracted this historical data from multiple data marts and data warehouses. This data is stored in multiple CSV text files and these files are ranging in size from 25 MB to 20 GB.
Which is the most efficient and error tolerant method for loading data into ADW? (Choose the best answer.)

  • A. Create the tables in the ADW database and then execute SQL*Loader for each CSV file to load the contents into the corresponding ADW database table.
  • B. CreateAuth token, use it to create an object storage credential by executing DBMS_CLOUD.CREATE_CREDENTIAL, using the web console upload the CSV files to an OCI object storage bucket, create the tables in the ADW database and then execute DBMS_CLOUD.COPY_DATA foreach CSV file to copy the contents into the corresponding ADW database table.
  • C. Create Auth token, use it to create an object storage credential by executing DBMS_CLOUD.CREATE_CREDENTIAL, using OCI CLI upload the CSV files to an OCI object storage bucket, create the tables in the ADW database and then execute DBMS_CLOUD.COPY_DATA for each CSV file to copy the contents into the corresponding ADW database table.
  • D. Create Auth token, useit to create an object storage credential by executing DBMS_CLOUD.CREATE_CREDENTIAL, using OCI CLI upload the CSV files to an OCI object storage bucket, create the tables in the ADW database and then execute Data Pump Import for each CSV file to copy the contents into the corresponding ADW database table.

正解: C

解説:
Explanation
Using Object Storage and COPY_DATA is the standard recommended method for fetching data into ADW.
Furthermore using CLI over web has the benefit of multipart upload, that is chunk upload of large files, thus reducing the chance of a transfer failure

 

質問 24
Your team implemented a SaaS application that requires a whole system deployment for each new customer.
The infrastructure provisioning is already automated via Terraform, and now you have been asked to develop an Ansible playbook to centralize configuration file management and deployment.
What is the most effective way to ensure your playbooks are utilizing up-to-date and accurate inventory?
(Choose the best answer.)

  • A. Export an inventory list using Terraform apply command.
  • B. Export an inventory list from the Oracle Cloud Infrastructure Web console.
  • C. Implement a Command Line Interface script to list all the resources and run it within Ansible to generate a dynamic inventory list.
  • D. Download the dynamic inventory script provided by Oracle Cloud Infrastructure and include it in the playbook invocation command.

正解: D

解説:
Explanation
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/ansibleinventoryscript.htm

 

質問 25
Which statement about Oracle Cloud Infrastructure paravirtualized block volume attachments is TRUE?
(Choose the best answer.)

  • A. Paravirtualized volumes become immediately available on bare metal compute instances.
  • B. Paravirtualization utilizes the internal storage stack of compute instance OS and network hardware virtualization to access block volumes.
  • C. Paravirtualized volumes may reduce the maximum IOPS performance for larger block volumes.
  • D. Paravirtualized is required to manage iSCSI configuration for virtual machine instances.

正解: C

解説:
Explanation
https://docs.oracle.com/en-us/iaas/Content/Block/Concepts/overview.htm#Paravirtualized

 

質問 26
Recently, your e-commerce web application has been receiving significantly more traffic than usual. Users are reporting they often encounter a 503 Service Error when trying to access your site. Sometimes the site is very slow.
You check your instance pool configuration to confirm that the maximum number of instances is configured to allow 20 compute instances. Currently, 14 compute instances have been provisioned by the instance pool.
You also confirm that current CPU utilization across all hosts exceeds the scale-out threshold you set in your auto-scaling policy. However, the instance pool is not provisioning any newinstances.
What can you check to determine why the application is NOT functioning properly? (Choose the best answer.)

  • A. Verifythat the compute resource quota has not been exceeded.
  • B. Verify that the database is accessible.
  • C. Verify that the new offer feature code did not introduce any performance bugs.
  • D. Verify that the Quality Assurance team is not currently performing load-testing against production.

正解: A

 

質問 27
Your application is using an Object Storage bucket named app-data in the namespace vision, to store both persistent and temporary data. Every week all the temporary data should be deleted to limit the storage consumption.
Currently you need to navigate to the Object Storage page using the web console, select the appropriate bucket to view all the objects and delete the temporary ones.
To simplify the task you have configured the application to save all the temporary data with /temp prefix. You have also decided to use the Command Line Interface (CLI) to perform this operation.
What is the command you should use to speed up the data cleanup? (Choose the best answer.)

  • A. oci os object delete -ns vision -bn app-data --prefix /temp
  • B. oci objectstorage bulk-delete -ns vision -bn app-data --prefix /temp --force
  • C. oci os object bulk-delete -ns vision -bn app-data --prefix /temp --force
  • D. oci os object delete app-data in vision where prefix = /temp

正解: C

解説:
Explanation
https://docs.oracle.com/en-us/iaas/tools/oci-cli/3.0.2/oci_cli_docs/cmdref/os/object/bulk-delete.html

 

質問 28
Which two statements about the OracleCloud Infrastructure (OCI) Command Line Interface (CLI) are TRUE?
(Choose two.)

  • A. You can filter CLI output using the JMESPath query option for JSON.
  • B. You can run CLI commands from inside OCI Regions only.
  • C. The CLI allows you to use the Python language to interact with OCI APIs.
  • D. The CLI provides the same core functionality as the Console, plus additional commands.
  • E. The CLI provides an automatic way to connect with instances provisioned on OCI.

正解: A,D

解説:
Explanation
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/cliusing.htm
https://blogs.oracle.com/cloud-infrastructure/post/exploring-the-search-and-query-features-of-oracle-cloud-infras

 

質問 29
You launched a Linux compute instance to host the new version of your company website via Apache Httpd server on HTTPS (port 443). The instance is created in a public subnet along with other instances. The default security list associated to the subnet is:

You want to allow access to the company website from public internet without exposing websites eventually hosted on the other instances in the public subnet.
Which actionwould you take to accomplish the task? (Choose the best answer.)

  • A. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the public subnet that hosts the company website.
  • B. Create a network security group, add a stateful rule to allow ingressaccess on port 443 and associate it to the instance that hosts the company website.
  • C. In default security list,add a stateful rule to allow ingress access on port 443.
  • D. Create a new security list with a stateful rule to allow ingress access on port 443 and associate it to the public subnet.

正解: B

解説:
Explanation
Since we want to avoid exposing other instances in the same public subnet to the internet, Network Security Groups (NSG) must be used instead of Security Lists. NSG are attached to the vnic of the instance and not to the subnet

 

質問 30
You have been asked to set up connectivity between a client's on-premises network and Oracle Cloud Infrastructure (OCI). The requirements are:
Low latency: The applications are financial and require low latency connectivity intoOCI. Consistency: The application isn't tolerant of performance variation.
Performance: The communications link needs to support up to 1.25 Gbps.
Encryption: The communications link needs to encrypt any data in transit between the on-premises network and OCI Virtual Cloud Network (VCN).
The client wants to implement the above with as low a cost as possible, while meeting all of the requirements.
What should you suggest? (Choose the best answer.)

  • A. Provision FastConnect with a single public virtual circuit, and run an IPsec VPN tunnel over the top of this virtual circuit.
  • B. Provision FastConnect with a single private virtual circuit.
  • C. Provision FastConnect with a single private virtualcircuit, and run an IPsec VPN tunnel over the top of this virtual circuit.
  • D. Provision a site-to-site IPsec VPN between your on-premises network and your virtual cloud network (VCN) using VPNConnect.
  • E. Provision FastConnect with a single public virtual circuit.

正解: A

解説:
Explanation
https://docs.oracle.com/en-us/iaas/Content/Resources/Assets/whitepapers/encrypted-fastconnect-public-peering.p

 

質問 31
You have been asked to investigate a potential security risk on your company's Oracle Cloud Infrastructure (OCI) tenancy. You decide to start by looking throughthe audit logs for suspicious activity.
How can you retrieve the audit logs using the OCI Command Line Interface (CLI)? (Choose the best answer.)

  • A. oci audit event list --end-time $end-time --compartment-id $compartment-id
  • B. oci audit event list --start-time $start-time --compartment-id $compartment-id
  • C. oci audit event list --start-time $start-time --end-time $end-time --tenancy-id
    $tenancy-id
  • D. oci audit event list --start-time $start-time --end-time $end-time -- compartment-id $compartment-id

正解: D

解説:
Explanation
https://docs.oracle.com/en-us/iaas/tools/oci-cli/2.9.7/oci_cli_docs/cmdref/audit/event/list.html

 

質問 32
You are launching a Windows server in your Oracle Cloud Infrastructure (OCI) tenancy.You provided a startup script during instance initialization, but it was not executed successfully.
What is a possible reason for this error? (Choose the best answer.)

  • A. Didn't include anything in user_data.
  • B. Specified a #directive on the first line of your script.
  • C. Ran a cloudbase-init script instead of cloud-init.
  • D. Wrote a custom script which tried to install GPU drivers.

正解: C

 

質問 33
You have a web application running on Oracle Cloud Infrastructure (OCI) that lets users log in with a username and password. You notice that an attacker has tried to use SQL comment "--" to alter the database query, remove the password check and log in as a user. You decide to prevent any future attacks.
Which of the following OCI services or features would you choose tosafeguard your application? (Choose the best answer.)

  • A. Data Safe
  • B. Vault
  • C. Web Application Framework (WAF)
  • D. Network Security Group

正解: C

解説:
Explanation
WAF provides you with the ability to create and manage rules for internet threats including Cross-SiteScripting (XSS), SQL Injection and other OWASP-defined vulnerabilities.

 

質問 34
You havecreated a geolocation steering policy in the Oracle Cloud Infrastructure (OCI) Traffic Management service, with this configuration:

What happens to requests that originate in Africa? (Choose the best answer.)

  • A. The traffic will be dropped.
  • B. The traffic will be forwarded at the same time to both Pool 1 and Pool 2.
  • C. The traffic will be forwarded to Pool 1. If Pool 1 is not available, then it will be forwarded toPool 2.
  • D. The traffic will be forwarded randomly to any of the pools mentioned in the rules.

正解: D

解説:
Explanation
This policy currently has no global catch-all. No global catch-all means that queries not matching any of the above rules will receive a random answer. Global Catche-all need to set up if the traffic does not meet any condition in the pool and you still want to serve the request. Default is serve randomly.
https://www.oracle.com/a/ocom/docs/cloud/traffic-management-100.pdf

 

質問 35
You have a Linux compute instance located in a public subnet in a VCN which hosts a web application. The security list attached to subnet containing the compute instance has the following stateful ingress rule.

The Route table attached to the Public subnet is shown below. You can establish an SSH connection into the computeinstance from the internet. However, you are not able to connect to the web server using your web browser.

Which step will resolve the issue? (Choose the best answer.)

  • A. In the route table, add a rule for your default traffic to be routed to NAT gateway.
  • B. In the security list, remove the ssh rule.
  • C. In the route table, add a rule for your default traffic to be routed to service gateway.
  • D. In the security list, add an ingress rule for port 80 (http).

正解: D

解説:
Explanation
You need to add a rule in thesecurity list table to allow access to web application. Web applications are usually exposed over port 80 (HTTP), therefore answer B makes sense here.

 

質問 36
......


Oracle 1z0-1067-22 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Configure Data Guard, Security Zone and Security Advisor (Missing in ILP)
  • Configuration management tools to control infrastructure
トピック 2
  • Implement hybrid network environments
  • Security and Compliance
トピック 3
  • Implement compartment quotas, budgets and billing alerts
  • Understand Metric Query Language (MQL) (Missing in ILP)
トピック 4
  • Use Object Storage Lifecycle policies for tiered data storage
  • Use the OCI CLI to simplify repetitive tasks
トピック 5
  • Utilize edge services for automated failover
  • recovery
  • Create secure access control policies
トピック 6
  • Implement cross-region data copy strategies
  • Utilize billing tools to track cost
トピック 7
  • Manage infrastructure as code
  • Data Retention and Archival
トピック 8
  • Implement automated notifications
  • Designing for cloud-scale agility
  • Describe and Configure OCI Vault

 

最適な道は練習テストOracle 1z0-1067-22問題集:https://jp.fast2test.com/1z0-1067-22-premium-file.html

1z0-1067-22問題集が待ってます試験問題解答:https://drive.google.com/open?id=1RnWS7NqnmKtED-XdIGZYBpyUiUk3mq5K


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어