Updated Jan-2024 Pass 1z0-997-22 Exam - Real Practice Test Questions [Q65-Q80]

Updated Jan-2024 Pass 1z0-997-22 Exam - Real Practice Test Questions

Download Free Oracle 1z0-997-22 Real Exam Questions

Achieving the Oracle 1z0-997-22 certification demonstrates a professional's commitment to staying current with the latest cloud technology and their expertise in cloud infrastructure architecture. It also opens up new opportunities for IT professionals to advance their careers and take on more challenging roles. With this certification, professionals can showcase their ability to design, implement, and manage complex cloud solutions that meet the business needs of their organization.

Oracle 1z0-997-22 exam consists of 60 multiple-choice questions, which must be completed within 105 minutes. 1z0-997-22 exam is available in English and Japanese and can be taken at any Pearson VUE testing center or online. Candidates must achieve a passing score of 70% or higher to earn this certification.

 

NEW QUESTION # 65
You are responsible for migrating your on-premises legacy databases on 11.2.0.4 version to Autonomous Transaction Processing - Dedicated (ATP-D) in Oracle Cloud Infrastructure (OCI). As a solution architect, you need to plan your migration approach.
Which three options do you need to implement together to migrate your on-premises databases to OCI?

• A. Convert on-premises databases to PDB, upgrade to 19c, and encrypt.
• B. Use Oracle Data Guard to keep on-premises database always active during migration.
• C. Use Oracle GoldenGate replication to keep on-premises database online during migration.
• D. Retain changes to Oracle shipped privileges, stored procedures or views in the on-premises databases.
• E. Launch Autonomous Transaction Processing - Dedicated database in OCI.
• F. Retain all legacy structures and unsupported features (e.g. legacy LOBs) in the on-premises databases for migration.

Answer: A,C,E

NEW QUESTION # 66
A consulting company that employs Oracle Cloud Infrastructure (OCI) architects has successfully completed resource migration from Microsoft Azure to OCI, and no longer requires the OCI FastConnect circuit to Azure. The project manager has asked you to delete all resources involved in this inter-cloud connectivity. From the Azure side, you delete the Resource Group. After a while, you notice that all Azure resources have been deleted, except for the Azure ExpressRoute circuit.
What could be a potential reason for this issue?

• A. You need to remove the Azure ExpressRoute Partner Service Key from the OCI FastConnect circuit, and then you can delete the ExpressRoute virtual circuit.
• B. You need to remove all routes that point to the inter-cloud connection on both OCI and Azure before you can delete the circuit.
• C. Your bill from the OCI side needs to be paid in full before you can remove the Azure ExpressRoute circuit.
• D. You need to first delete the OCI FastConnect circuit for the ExpressRoute circuit to be decommissioned, and then you can delete the ExpressRoute virtual circuit.

Answer: D

NEW QUESTION # 67
The Finance department of your company has reached out to you. They have customer sensitive data on compute Instances In Oracle Cloud Infrastructure (OCI) which they want to store in OCI Storage for long term retention and archival.
To meet security requirements they want to ensure this data is NOT transferred over public internet, even if encrypted.
which they want to store In OCI Object Storage fin long term retention and archival To meet security requirements they want to ensure this data is NOT transferred over public Internet, even it encrypted.
Which option meets this requirements?

• A. Use Service gateway with appropriate route table.
• B. Use NAT gateway with appropriate route table when transferring data. Then use NAT gateways' toggle (on/off) once data transfer is complete.
• C. Configure a NAT instance and all traffic between compute In Private subnet should use this NAT instance with Private IP as the route target.
• D. Use Storage gateway with appropriate firewall rule.

Answer: A

Explanation:
Service Gateway is virtual router that you can add to your VCN. It provides a path for private network traffic between your VCN and supported services in the Oracle Services Network like Object Storage) so compute Instances in a private subnet in your VCN can back up data to Object Storage without needing public IP addresses or access to the intern

NEW QUESTION # 68
You work for a German company as the Lead Oracle Cloud Infrastructure architect. You have designed a highly scalable architecture for your company's business critical application which uses the Load Balancer service auto which uses the Load Balancer service, autoscaling configuration for the application servers and a 2 Node VM Oracle RAC database. During the peak utilization period of the- application yon notice that the application is running slow and customers are complaining. This is resulting in support tickets being created for API timeouts and negative sentiment from the customer base.
What are two possible reasons for this application slowness?

• A. The Load Balancer doesn't have a Network Security Group to allow traffic to the application servers.
• B. Autoscaling configuration for the application servers didn't happen due to service limit breach of the VM shapes used by the application servers
• C. Autoscaling configuration for the application servers didn't happen due to compartment quota breach of the VM shapes used by the application servers.
• D. Autoscaling configuration for the application servers didn't happen due to IAM policy that's blocking access to the application server compartment
• E. The Load Balancer configuration is not sending traffic to the listener of the application servers.

Answer: B,C

Explanation:
Autoscaling
Autoscaling enables you to automatically adjust the number of Compute instances in an instance pool based on performance metrics such as CPU utilization. This helps you provide consistent performance for your end users during periods of high demand, and helps you reduce your costs during periods of low demand.
Prerequisites
- You have an instance pool. Optionally, you can attach a load balancer to the instance pool. For steps to create an instance pool and attach a load balancer, see Creating an Instance Pool.
- Monitoring is enabled on the instances in the instance pool. For steps to enable monitoring, see Enabling Monitoring for Compute Instances.
- The instance pool supports the maximum number of instances that you want to scale to. This limit is determined by your tenancy's service limits.
About Service Limits and Usage
When you sign up for Oracle Cloud Infrastructure, a set of service limits are configured for your tenancy.
The service limit is the quota or allowance set on a resource. For example, your tenancy is allowed a maximum number of compute instances per availability domain. These limits are generally established with your Oracle sales representative when you purchase Oracle Cloud Infrastructure.
Compartment Quotas
Compartment quotas are similar to service limits; the biggest difference is that service limits are set by Oracle, and compartment quotas are set by administrators, using policies that allow them to allocate resources with a high level of flexibility.

NEW QUESTION # 69
You are trying to delete a compartment. The delete operation is falling and you need to troubleshoot the problem.
Which step should NOT be considered when troubleshooting this issue?

• A. Make sure you have at least one more compartment in your tenancy other than the root compartment.
• B. Verify that you have removed all resources from the compartment.
• C. Search for resources in the compartment for each region that your tenancy is subscribed to.
• D. Verify that there are no policies In the root compartment that reference the compartment you are trying to delete.

Answer: A

NEW QUESTION # 70
You have been asked to create a mobile application which will be used for submitting orders by users of a popular E-Commerce site. The application is built to work with Autonomous Transaction Processing - Serverless (ATP-S) database as the backend and HTML5 on Oracle Application Express as the front end. During the peak usage of the application you notice that the application response time is very slow. ATP-S database is deployed with 3 CPU cores and 1 TB of memory.
Which two options are expensive or impractical ways to improve the application response times?

• A. Identify the maximum CPU capacity needed for peak times and scale the CPU core count for the ATP-S database to that number. ATP-S will scale the CPU core count down when not needed.
• B. Scale up CPU core count and memory during peak times.
• C. Identify the maximum memory capacity needed for peak times and scale the memory for the ATP-S database to that number. ATP-S will scale the memory down when not needed.
• D. Use the Machine Learning (ML) feature of the ATP-S database iteratively to tune the SQL queries used by the application.
• E. Enable auto scaling for CPU cores on ATP-S database.

Answer: A,B

NEW QUESTION # 71
A global retailer has decided to re-design its e-commerce platform to have a micro-services architecture. They would like to decouple application architecture into smaller, independent services using Oracle Cloud Infrastructure (OCI). They have decided to use both containers and servers technologies to run these application instances.
Which option should you recommend to build this new platform?

• A. Use OCI functions, OCI object storage and OCI event service.
• B. Use Oracle Container Engine for kubernetes, OCI Registry and OCI Functions.
• C. Install a kubernetes cluster on OCI and use OCI event service.
• D. Use OCI Resource Manager to automate compute Instances provisioning and use OCI Streaming service.

Answer: B

Explanation:
Oracle Functions is a fully managed, multi-tenant, highly scalable, on-demand, Functions-as-a-Service platform. It is built on enterprise-grade Oracle Cloud Infrastructure and powered by the Fn Project open source engine. Use Oracle Functions (sometimes abbreviated to just Functions) when you want to focus on writing code to meet business needs.

Oracle Cloud Infrastructure Container Engine for Kubernetes is a fully-managed, scalable, and highly available service that you can use to deploy your containerized applications to the cloud. Use Container Engine for Kubernetes (sometimes abbreviated to just OKE) when your development team wants to reliably build, deploy, and manage cloud-native applications. You specify the compute resources that your applications require, and Container Engine for Kubernetes provisions them on Oracle Cloud Infrastructure in an existing OCI tenancy.

NEW QUESTION # 72
A company has an urgent requirement to migrate 100 TB of data to Oracle Cloud Infrastructure (OCI) in two weeks. They have a 100 Mbps Internet line but the connection is intermittent due to problems with their internet provider. In this scenario, what is the most time-efficient mechanism to migrate data to OCI?

• A. Set up an OCI Storage Gateway to connect your data center to your Virtual Cloud Network and upload data.
• B. Upload data using OCI Object Storage multipart upload capability.
• C. Set up hybrid network by launching a 1 Gbps FastConnect virtual circuit between your data center and OCI. Use OCI Object Storage multipart upload capability to automate the migration of your data to OCI.
• D. Set up an IPSec VPN tunnel between your data center and OCI. Upload all data to OCI using OCI Storage Gateway.
• E. Use OCI File Storage Service to copy data from your data center to OCI.

Answer: C

NEW QUESTION # 73
You have multiple IAM users who launch different types of compute Instances and block volumes every day. As a result, your Oracle cloud Infrastructure (OCF) tenancy quickly hit the service limit and you can no longer create any new instances. As you are cleaning up environment, you notice that the majority of the Instances and block volumes are untagged. Therefore, It is difficult to pinpoint the owner of these resources verify if they are safe to terminate.
Because of this, your company has issued a new mandate, which requires adding compute instances.
Which option is the simplest way to implement this new requirement?

• A. Create a default tag for each compartment, which ensure that appropriate tags are applied at resource creation
• B. Create tag variables for each compartment to automatically tag a resource with the user name.
• C. Create tag variables to automatically tag a resource with the user name.
• D. Create a policy to automatically tag a resource with the user name.
• E. Create a policy using IAM requiring users to tag specific resources. This will allow a user to launch compute instances on\y if certain tags were defined.

Answer: C

Explanation:
Tag Variables
You can use a variable to set the value of a defined tag. When you add the tag to a resource, the variable resolves to the data it represents. You can use tag variables in defined tags and default tags.
Supported Tag Variables
The following tag variables are supported.
${iam.principal.name} The name of the principal that tagged the resource
${iam.principal.type} The type of principal that tagged the resource.
${oci.datetime} The date and time that the tag was created.
Consider the following example:
Operations.CostCenter=" ${iam.principal.name} at ${oci.datetime} "
Operations is the namespace, CostCenter is the tag key, and the tag value contains two tag variables ${iam.principal.name} and ${oci.datetime} . When you add this tag to a resource, the variable resolves to your user name (the name of the principal that applied the tag) and a time date stamp for when you added the tag.
user_name at 2019-06-18T18:00:57.604Z
The variable is replaced with data at the time you apply the tag. If you later edit the tag, the variable is gone and only the data remains. You can edit the tag value in all the ways you would edit any other tag value. To create a tag variable, you must use a specific format.
${<variable>} Type a dollar sign followed by open and close curly brackets. The tag variable goes between the curly brackets. You can use tag variables with other tag variables and with string values. Tag defaults let you specify tags to be applied automatically to all resources, at the time of creation, in a specific compartment. This feature allows you to ensure that appropriate tags are applied at resource creation without requiring the user who is creating the resource to have access to the tag namespaces.
https://docs.cloud.oracle.com/en-us/iaas/Content/Tagging/Tasks/managingtagdefaults.htm

NEW QUESTION # 74
You are working for a Travel company and your travel portal application is a collection of microservices that run on Oracle Cloud Infrastructure Container Engine for Kubernetes. As per the recent security overview, you have noticed that Oracle has published a newer image of the Operating System used by the worker nodes. You want to make sure that your application doesn't face any downtime but at the same time the worker nodes gets upgraded to the latest version of the Operating System.
What should you do to get this upgrade done without application downtime? (Choose the best answer.)

• A. 1. Shutdown the worker nodes 2. Create a new node pool 3. Manually schedule the pods on the newly built node pool
• B. 1. Create a new node pool using the latest available Operating System image. 2. Run kubectl cordon <node name> against all the worker nodes in the old pool to stop any new application pods to get scheduled 3. Run kubectl drain <node name> """"delete""local""data """"force """"ignore""daemonsets to evict any Pods that are running 4. Delete the old node pool
• C. 1. Create a new node pool using the latest available Operating System image 2. Run kubectl taint nodes """"all node""role.kubernetes.io/master"" 3. Delete the old node pool
• D. 1. Run kubectl cordon <node name> against all the worker nodes in the old pool to stop any new application pods to get scheduled 2. Run kubectl drain <node name> """"delete""local""data """"force """"ignore""daemonsets to evict any Pods that are running 3. Download the patches for the new Operating System image 4. Patch the worker nodes to the latest Operating System image

Answer: B

Explanation:
https://docs.cloud.oracle.com/en-us/iaas/Content/ContEng/Tasks/contengupgradingk8sworkernode.htm

NEW QUESTION # 75
Your company will soon start moving critical systems Into Oracle Cloud Infrastructure (OCI) platform. These systems will reside in the us-phoenix-1and us-ashburn 1 regions. As part of the migration planning, you are reviewing the company's existing security policies and written guidelines for the OCI platform usage within the company. you have to work with the company managed key.
Which two options ensure compliance with this policy?

• A. When you create a new compute instance through OCI console, you use the default shape to speed up the process to create this compute instance.
• B. When you create a new OCI Object Storage bucket through OCI console, you need to choose "ENCRYPT USING CUSTOMER-MANAGED KEYS" option.
• C. You do not need to perform any additional actions because the OCI Block Volume service always encrypts all block volumes, boot volumes, and volume backups at rest by using the Advanced Encryption Standard (AES) algorithm with 256-bit encryption.
• D. When you create a new compute instance through OCI console, you use the default options for "configure boot volume" to speed up the process to create this compute instance.
• E. When you create a new block volume through OCI console, select Encrypt using Key Management checkbox and use encryption keys generated and stored in OCI Key Management Service.

Answer: B,E

Explanation:
Block Volume Encryption
By default all volumes and their backups are encrypted using the Oracle-provided encryption keys. Each time a volume is cloned or restored from a backup the volume is assigned a new unique encryption key.
You have the option to encrypt all of your volumes and their backups using the keys that you own and manage using the Vault service.If you do not configure a volume to use the Vault service or you later unassign a key from the volume, the Block Volume service uses the Oracle-provided encryption key instead.

This applies to both encryption at-rest and in-transit encryption.
Object Storage Encryption
Object Storage employs 256-bit Advanced Encryption Standard (AES-256) to encrypt object data on the server. Each object is encrypted with its own data encryption key. Data encryption keys are always encrypted with a master encryption key that is assigned to the bucket. Encryption is enabled by default and cannot be turned off. By default, Oracle manages the master encryption key. However, you can optionally configure a bucket so that it's assigned an Oracle Cloud Infrastructure Vault master encryption key that you control and rotate on your own schedule.
Encryption: Buckets are encrypted with keys managed by Oracle by default, but you can optionally encrypt the data in this bucket using your own Vault encryption key. To use Vault for your encryption needs, select Encrypt Using Customer-Managed Keys. Then, select the Vault Compartment and Vault that contain the master encryption key you want to use. Also select the Master Encryption Key Compartment and Master Encryption Key.

NEW QUESTION # 76
You developed a microservices-based application that runs on Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE). It has multiple endpoints that needs to be exposed to the public internet.
What is the most cost-effective way to expose multiple application endpoints without adding complexity to the application?

• A. Use NodePort service type in Kubernetes for each of your service endpoint and use node's public IP address to access the applications.
• B. Deploy an Ingress Controller and use it to expose each endpoint with its own routing endpoint.
• C. Use ClusterIP service type in Kubernetes for each of your service endpoint and use a load balancer to expose the endpoints.
• D. Use separate load balancer instance for each service, but use the 100 Mbps load balancer option.

Answer: B

NEW QUESTION # 77
A data analytics company has been building Its now generation big data and analytics platform on Oracle Cloud Infrastructure (OCI). They need a storage service that provide the scale and performance that their big data applications require such as high throughput to compute nodes with low latency file operations in addition, their data needs to be stored redundantly across multiple nodes In a single availability domain and allows concurrent connections from multiple compute Instances hosted on multiple availability domains.
Which OCI storage service can you use to meet i his requirement?

• A. Archive storage
• B. File System Storage
• C. Block Volume
• D. Object Storage

Answer: B

Explanation:
Oracle Cloud Infrastructure File Storage service provides a durable, scalable, secure, enterprise-grade network file system. You can connect to a File Storage service file system from any bare metal, virtual machine, or container instance in your Virtual Cloud Network (VCN). You can also access a file system from outside the VCN using Oracle Cloud Infrastructure FastConnect and Internet Protocol security (IPSec) virtual private network (VPN).
Use the File Storage service when your application or workload includes big data and analytics, media processing, or content management, and you require Portable Operating System Interface (POSIX)- compliant file system access semantics and concurrently accessible storage. The File Storage service is designed to meet the needs of applications and users that need an enterprise file system across a wide range of use cases

NEW QUESTION # 78
Your customer has gone through a recent reorganization. As part of this change, they are organizing their Oracle Cloud Infrastructure (OCI) compartment structure to align with the company's new organizational structure. (Refer to the exhibit)

They have made the following change:
Compartment A is moved, and its new parent compartment is compartment Dev.
Policy defined in compartment A: Allow group G1 to manage instance-family in compartment A Policy defined in root compartment: Allow group admins to manage instance-family in compartment Ops: Test: A After the compartment move, which action will provide users of group G1 and admins with similar privileges as before the move?

• A. Define the following policy in compartment Dev:
  Allow group G1 to manage instance-family in compartment A
• B. Mo change in any policy statement is required as all the policies associated with a compartment being moved is automatically updated
• C. Define the following policies in compartment Dev:
  Allow group G1 to manage instance-family in compartment A
  Allow group admins to manage instance-family in compartment Ops: Dev: A
• D. Define the following policy in compartment: Dev:
  Allow group admins to manage instance-family in compartment Ops: Dev: A

Answer: A

NEW QUESTION # 79
You are tasked with building a highly available, fault tolerant web application for your current employer. The security team is concerned about an increase in malicious web-based attacks across the internet and asked what you can do to add a higher level of security to the website.
How should you architect the solution on Oracle Cloud Infrastructure (OCI) to meet all requirements defined by your organization? (Choose the best answer.)

• A. Deploy at least 3 web application servers, each in a different fault domain, using a regional public subnet. Use the OCI Traffic Management service to create a load balancing policy that will resolve DNS evenly between all web servers.
• B. Deploy at least 3 web application servers, each in a different fault domain, using a regional private subnet. Place a public load balancer in a regional public subnet and create a backend set for all of the web application servers. Deploy a Web Application Firewall (WAF) and configure the load balancer public IP address as the origin.
• C. Deploy at least 3 web application servers, each in a different fault domain, using a regional public subnet. Ensure that each web application server is assigned a public IP address. Deploy a Web Application Firewall (WAF) and configure one Origin for each public IP address.
• D. Deploy at least 3 web application servers, each in a different fault domain, using a regional private subnet. Place a public load balancer in a regional public subnet and create a backend set for all of the web application servers. Create a Geolocation steering policy in Traffic Management and add an answer pool that directs to the public IP address of the load balancer. Configure a global catch-all rule to use this answer pool.

Answer: B

NEW QUESTION # 80
......

1z0-997-22 Dumps 100 Pass Guarantee With Latest Demo: https://www.pass4training.com/1z0-997-22-pass-exam-training.html

Pass Your Exam With 100% Verified 1z0-997-22 Exam Questions: https://drive.google.com/open?id=1U9NOEP4FITCIn2O625ev9yVsyL8rqFbH