Labour Day - Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dpm65

Hot Vendors
  1. Home
  2. Oracle
  3. Oracle Cloud Solutions Infrastructure
  4. 1z0-997-22
  5. Oracle Cloud Infrastructure 2022 Architect Professional Questions and Answers
Note! The 1z0-997-22 Exam is no longer available. Get in touch with our Live Chat or email us for more information about the 1z0-997-23 Exam.

1z0-997-22 Oracle Cloud Infrastructure 2022 Architect Professional Questions and Answers

Questions 4

A retail company has recently adopted a hybrid architecture. They have the following requirements for their end-to-end Connectivity model between their on-premises data center and Oracle Cloud Infrastructure (OC1) region

* Highly available connection with service level redundancy

* Dedicated network bandwidth with low latency

Which connectivity setup is the most cost effective solution for this scenario?

Options:

A.

Setup IPsec VPN as your primary connection, and a FastConnect virtual circuit as a backup connection. Use separate edge devices in your on-premises data canter for each connection from your edge devices, advertise more specific routes IPSec VPN, and specific routes through the backup FastConnect virtual circuit.

B.

Setup FastConnect virtual circuit as your primary connection, and a second FastConnect virtual circuit as a backup connection. Use separate edge devices in your FastConnect physical connectivity is redundant Use a single edge device in your on premises data center for each connection From yc device, advertise more specific routes via primary FastConnect virtual circuit, and less specific routes through t backup FastConnect circuit.

C.

Setup FastConnect virtual circuit as your primary connection, and an IPSec VPN as a backup connection. Use separate edge devices in your on-premises data center for each connection. From your edge devices, advertise more specific routes through FastConnect virtual circuit, and more specific routes through the backup IPSec VPN path.

D.

Setup IPSec VPN as your primary connection, and a second IPSec VPN as a backup connection. Use separate edge devices in your on p data center for each connection. From your edge devices, advertise more specific routes via primary IPSec VPN. and less specific rod the backup IPSec VPN.

Buy Now
Questions 5

You are the Solution Architect that designed this Oracle Cloud Infrastructure (OCI) compartment layout for your organization:

1z0-997-22 Question 5

The development team has deployed quite a few instances under 'Compute' Compartment and the operations team needs to list the Instances under the same compartment for their testing. Both teams, development and operations are part of a group called 'Eng-group'

You have been looking for an option to allow the operations team to list the instances without access any confidential information or metadata of resources.

Which IAM policy should you write based on these requirements?

Options:

A.

Allow group Eng-group to inspect instance-family in compartment Dev-Team:Compute and attach the policy to ‘Engineering’ Compartment

B.

Allow group Eng-group to inspect instance-family in compartment Dev-Team: Compute and attach the policy to 'SysTest Team' Compartment

C.

Allow group Eng-group to read instance-family in compartment Compute and attach the policy to 'Engineering' Compartment.

D.

Allow group Eng-group to read instance-family in compartment Dev-Team-.Compute and attach the policy to'Dev-Team'

Buy Now
Questions 6

You are responsible for migrating your on premises legacy databases on 11.2.0.4 version to Autonomous Transaction Processing Dedicated (ATP-D) In Oracle Cloud Infrastructure (OCI). As a solution architect, you need to plan your migration approach.

Which two options do you need to implement together to migrate your on premises databases to OCI?

Options:

A.

Use Oracle Data Guard to keep on premises database always active during migration

B.

Retain changes to Oracle shipped privileges, stored procedures or views In the on-premises databases.

C.

Use Oracle GoldenGate replication to keep on premises database online during migration.

D.

Convert on-premises databases to PDB, upgrade to 19c, and encrypt Migration.

E.

Retain all legacy structures and unsupported features (e.g. taw U>Bs) In the onuses databases for migration.

Buy Now
Questions 7

You are responsible for a web application deployed on a set of compute VM instances in Oracle Cloud Infrastructure (OCI). Your application stores data on block volumes.

In production, the business requirement is a Recovery Point Objective (RPO) of two hours and that data should be recoverable in case of a regional failure.

How would you meet the RPO requirement in the event of a failure?

Options:

A.

Create a user-defined storage backup policy and attach a schedule of type "Hourly" and automatically copy to another region. Apply this policy to a volume group containing the block volumes.

B.

Store hourly block volume backups to an NVMe device attached to a compute instance in a different Availability Domain (AD).

C.

Configure your application to use synchronous primary-secondary data replication between ADs.

D.

Set up cross-region volume replication to replicate the block volumes to a different OCI region.

Buy Now
Questions 8

Which of the following is NOT a good use case for the volume backup feature of the Oracle Cloud Infrastructure Block Volume service?

Options:

A.

Support business continuity requirements of reducing the risk of outages or data mutation over time.

B.

Meet compliance and regulatory requirements for data to remain unchanged over time, so that it can be retrieved for audit purposes.

C.

Rapidly duplicate an environment in seconds to test configuration changes without impacting your production environment.

D.

Retain a copy of data in a volume, so that you can duplicate an environment later or preserve the data for future use.

Buy Now
Questions 9

A data analytics company has been building its next-generation big data and analytics platform on Oracle Cloud Infrastructure (OCI) in the US East (Ashburn) region. They need a storage service that provides the scale and performance that their big data applications require such as high throughput to compute nodes coupled with low latency file operations.

In addition, they need to allow concurrent connections from multiple compute instances hosted in multiple Availability Domains and want to be able to quickly restore a previous version of the data in case of a need to roll back any major update.

Which option can they use to meet these requirements in the most cost-effective way?

Options:

A.

Create a file system and mount target in the OCI File Storage service. Mount it into all the required compute instances. Take snapshots of the file system before each update.

B.

Create block volume, attach it with read/write, shareable access type to all the required compute instances. Take a backup of the volume before each update.

C.

Create an Object Storage bucket with object versioning enabled. Provision a compute instance to host the Storage Gateway and share the bucket via NFS, Mount the NFS into all the required compute instances.

D.

Create a connection with the on-premises data center via FastConnect. Mount the shared NFS hosted on-premises.

Buy Now
Questions 10

You want to automate the processing of new Image files to generate thumbnails. the expected rate is 10 new files every hour.

Which of the following is the most cost effective option to meet this requirement in Oracle Cloud Infrastructure (OCI)?

Options:

A.

Upload files to an OCI Object storage bucket. Every time a file is uploaded, an event is emitted. Write a rule to filter these events with an action to trigger a function in Oracle Functions. The function processes the image in the file and stores the thumbnails back in an Object storage bucket.

B.

Upload files to an OCI Object storage bucket. Every time a file is uploaded, trigger an event with an action to provision a compute instance with a cloud-init script to access the file, process it and store it back in an Object storage bucket. Terminate the instance using Autoscaling policy after the processing is finished.

C.

Build a web application to ingest the files and save them to a NoSQL Database. Configure OCI Events service to trigger a notification using Oracle Notification Service (ONS). ONS invokes a custom application to process the image files to generate thumbnails. Store thumbnails in a NoSQL Database table.

D.

Upload all files to an Oracle Streaming Service (OSS) stream. Set up a cron job to invoke a function in Oracle Functions to fetch data from the stream. Invoke another function to process the image files and generate thumbnails. Store thumbnails in another OSS stream.

Buy Now
Questions 11

Your customer has gone through a recent reorganization. As part of this change, they are organizing their Oracle Cloud Infrastructure (OCI) compartment structure to align with the company's new organizational structure. (Refer to the exhibit)

1z0-997-22 Question 11

They have made the following change:

Compartment A is moved, and its new parent compartment is compartment Dev.

Policy defined in compartment A: Allow group G1 to manage instance-family in compartment A

Policy defined in root compartment: Allow group admins to manage instance-family in compartment Ops: Test: A

After the compartment move, which action will provide users of group G1 and admins with similar privileges as before the move?

Options:

A.

Define the following policy in compartment Dev:

Allow group G1 to manage instance-family in compartment A

B.

Define the following policies in compartment Dev:

Allow group G1 to manage instance-family in compartment A

Allow group admins to manage instance-family in compartment Ops: Dev: A

C.

Define the following policy in compartment: Dev:

Allow group admins to manage instance-family in compartment Ops: Dev: A

D.

Mo change in any policy statement is required as all the policies associated with a compartment being moved is automatically updated

Buy Now
Questions 12

An online registration system Is currently hosted on one large Oracle Cloud Infrastructure (OCT) Bare metal compute Instance with attached block volume to store of the users' data. The registration system accepts the Information from the user, Including documents and photos then performs automated verification and processing to check it the user is eligible for registration.

The registration system becomes unavailable at tunes when there is a surge of users using the system the existing architecture needs improvement as it takes a long time for the system to complete the processing and the attached block volumes are not large enough to use data being uploaded by the users.

Which Is the most effective option to achieve a highly scalable solution?

Options:

A.

Attach more Block volumes as the data volume increase, use Oracle Notification Service (ONS) to distribute tasks to a pool of compute instances working In parallel, and Auto Scaling to dynamically size the pool of Instances depending on the number of notifications received from the Notification Service. Use Resource Manager stacks to replicate your architecture to another region.

B.

Change your architecture to use an OCI Object Storage standard tier bucket, replace the single bare metal instance with a Oracle Streaming Service (OSS) to ingest the Incoming requests and distribute the tasks to a group of compute Instances with Auto Scaling

C.

Upgrade your architecture to use a pool of Bare metal servers and configure them to use their local SSDs for faster data access Set up Oracle Streaming Service (OSS) to distribute the tasks to the pool of Bare metal Instances with Auto Scaling to dynamically increase or decrease the pool of compute instances depending on the length of the Streaming queue.

D.

Upgrade your architecture to use more Block volumes as the data volume Increases. Replace the single bare metal instance with a group of compute instances with Auto Scaling to dynamically increase or decrease the compute instance pools depending on the traffic.

Buy Now
Questions 13

A hospital in Austin has hosted its web based medical records portal entirely In Oracle cloud Infrastructure (OCI) using Compute Instances for its web-tier and DB system database for its data tier. To validate compliance with Health Insurance Portability and Accountability (HIPAA), the security professional to check their systems it was found that there are a lot of unauthorized coming requests coming from a set of IP addresses originating from a country in Southeast Asia.

Which option can mitigate this type of attack?

Options:

A.

Block the attacking IP address by creating by Network Security Group rule to deny access to the compute Instance where the web server Is running

B.

Block the attacking IP address by implementing a OCI Web Application Firewall policy using Access Control Rules

C.

Mitigate the attack by changing the Route fable to redirect the unauthorized traffic to a dummy Compute instance

D.

Block the attacking IP address by creating a Security List rule to deny access to the subnet where the web server Is running

Buy Now
Questions 14

You notice that a majority of your Oracle Cloud Infrastructure (OCI) resources like compute instances, block volumes, and load balancers are not tagged. You have received a mandate from your CIO to add a predefined set of tags to identify owners for respective OCI resources. E.g. if Chris and Larry each create compute instances in a compartment, the instances that Chris creates include tags that contain his name as the value, while the instances that Larry creates have his name.

Which option is the simplest way to implement this new tagging requirement?

Options:

A.

Create a default tag for each compartment, which ensure that appropriate tags are applied at the time of resource creation.

B.

Create an OCI Identity and Access Management policy requiring users to tag resources with their user name.

C.

Create an OCI Identity and Access Management policy to automatically tag a resource with the user name.

D.

Create tag variables to automatically tag a resource with the user name.

Buy Now
Questions 15

A global media organization is working on a project which lets users upload their videos to the site. After upload is complete, the video should be automatically processed by an Al algorithm. The algorithm will try to recognize certain actions in the videos so that it can be used to show related advertisements in future. The development team wants to focus on writing Al code and not worry about underlying infrastructure for high availability, scalability, security and monitoring.

Which Oracle Cloud Infrastructure (OCI) services would meet these requirements?

Options:

A.

OCI Object Storage, OCI Events service and OCI Functions.

B.

Oracle Container Engine for Kubernetes, OCI Notifications and OCI Object Storage.

C.

OCI Events, Oracle Container Engine for Kubernetes and OCI Digital Assistant.

D.

OCI Resource Manager, OCI Functions and OCI Events service.

Buy Now
Questions 16

As part of planning the network design on Oracle Cloud Infrastructure, you have been asked to create an Oracle Cloud Infrastructure Virtual Cloud Network (VCN) with 3 subnets, one in each Availability Domain. Each subnet needs to have a minimum of 64 usable IP addresses.

What is the smallest subnet and VCN size you should use to implement this design? The requirements are static, so no growth is expected.

Options:

A.

122 for the VCN; 124 for the subnets

B.

/23 for the VCN; /25 for the subnets

C.

/24 for the VCN; /24 for the subnets

D.

/22 for the VCN; /25 for the subnets

Buy Now
Questions 17

Your team is conducting a root analysis (RCA) following a recent, unplanned outage. One of the block volumes attached to your production WebLogic server was deleted and you have tasked with identifying the source of the action. You search the Audit logs and find several Delete actions that occurred in the previous 24 hours. Given the sample of this event.

1z0-997-22 Question 17

Which item from the event log helps you identify the individual or service that initiated the DeleteVolume API call?

Options:

A.

requestAgent

B.

eventource

C.

principalld

D.

requestOrigin

E.

eventId

Buy Now
Questions 18

Which three scenarios are suitable for the use of Oracle Cloud Infrastructure (OCI) Autonomous Transaction Processing - Serverless (ATP-S) deployment? (Choose three.)

Options:

A.

A well-established, online auction marketplace is running an application where there is database usage 24x7, but also has peaks of activity that are hard to predict. When the peaks happen, the total activities may reach 3 times the normal activity level.

B.

A midsize company is considering migrating its legacy on-premises MongoDB database to Oracle Cloud Infrastructure (OCI). The database has significantly higher workloads on weekends than weekdays.

C.

A manufacturing company is running Oracle E-Business Suite application on-premises. They are looking to move this application to OCI and they want to use a managed database offering for their database tier.

D.

A developer working on an internal project needs to use a database during work hours but doesn't need it during nights or weekends. The project budget requires her to keep costs low.

E.

A small startup is deploying a new application for eCommerce and it requires a database to store customers' transactions. The team is unsure of what the load will look like since it is a new application.

Buy Now
Questions 19

You have deployed art application server irt a private Subnet irt your virtual cloud network (VCN). For the database, you have provisioned an Autonomous Transaction Processing (ATP) serverless instance. However, you are unable to connect to the database instance from your application server.

Which two steps would you need to enable this connectivity?

Options:

A.

Add an internet gateway to your VCN and add a route rule to your private subnet route table.

CIDR: 0.0.0.0/0

Target: Internet Gateway

B.

Add a remote peering connection from your VCN to the ATP VCN

C.

Add a stateful egress rule to the security list associated with your private subnet.

Destination CIDR: 0.0.0.0/0

Protocols: All Protocols

D.

Create a NAT Gateway and add the following route rule to the route table of private subnet.

CIDR: 0.0.0.0/0

Target: NAT Gateway

Buy Now
Questions 20

A digital marketing company is planning to host a website on Oracle Cloud Infrastructure (OCI) and leverage OCI Container Engine for Kubernetes (OKE). These web servers will make API calls to access OCI Object Storage to store all images uploaded by users.

For security purposes, you must ensure that the credentials used by the web server to allow access to OCI Object Storage are not stored in the compute instance.

What solution results in an implementation with the least-effort for this scenario?

Options:

A.

Configure the credentials to use Transparent Data Encryption (TDE) to automatically allow the web server to make API calls to the OCI Object Storage.

B.

Configure the credentials using OCI Registry (OCIR) to automatically connect with OKE allowing the web server to make API calls to the OCI Object Storage.

C.

Configure the credentials using OCI Vault to allow an instance to make API calls and grant access to OCI Object Storage.

D.

Configure the credentials using Instance Principals to allow the web server to make API calls to the OCI Object Storage.

Buy Now
Questions 21

You are building a highly available and fault tolerant web application deployment for your company. Similar application delayed by competitors experienced web site attack including DDoS which resulted in web server failing.

You have decided to use Oracle Web Application Firewall (WAF) to implement an architecture which will provide protection against such attacks and ensure additional configuration will you need to implement to make sure WAF is protecting my web application 24×7.

Which additional configuration will you need to Implement to make sure WAF Is protecting my web application 24×7?

Options:

A.

Configure auto scaling policy and it to WAF instance.

B.

Configure Control Rules to send traffic to multiple web servers

C.

Configure multiple origin servers

D.

Configure new rules based on now vulnerabilities and mitigations

Buy Now
Questions 22

A data analytics company has been building Its now generation big data and analytics platform on Oracle Cloud Infrastructure (OCI). They need a storage service that provide the scale and performance that their big data applications require such as high throughput to compute nodes with low latency file operations in addition, their data needs to be stored redundantly across multiple nodes In a single availability domain and allows concurrent connections from multiple compute Instances hosted on multiple availability domains.

Which OCI storage service can you use to meet i his requirement?

Options:

A.

Object Storage

B.

File System Storage

C.

Archive storage

D.

Block Volume

Buy Now
Questions 23

You are creating an Oracle Cloud Infrastructure Dynamic Group. To determine the members of this group you are defining a set of matching rules.

Which of the following are the supported variables to define conditions in the matching rules? (Choose Two)

Options:

A.

instance.compartment.id -the OCID of the compartment where the instance resides.

B.

instance.tenancy.id -the OCID of the tenancy where the instance resides.

C.

tag...value -the tag namespace and tag key.

D.

iam.policy.id - the OCID of the IAM policy to apply to the group.

Buy Now
Questions 24

You developed a microservices based application that runs on Oracle Cloud Infrastructure (OCI) Container Engine for

Kubernetes (OKE). It has multiple endpoints that needs to be exposed to the public internet.

What Is the most cost-effective way to expose multiple application endpoints without adding complexity to the application?

Options:

A.

Use clusterlP service type in Kubernetesfor each of yourservice endpointand use a load balancerto expose the endpoints.

B.

Use separate load balancerinstancefor each service but use the 100 Mbps loadbalanceroption.

C.

Deploy an Ingress controllerand use it to expose each endpointwith its own routing endpoint.

D.

Use NodePort service type in Kubernetesfor each of yourservice endpointand use node's public IP address to acccess the applications.

Buy Now
Exam Code: 1z0-997-22
Exam Name: Oracle Cloud Infrastructure 2022 Architect Professional
Last Update: Feb 22, 2024
Questions: 165
dumpsmate guaranteed to pass
24/7 Customer Support

DumpsMate's team of experts is always available to respond your queries on exam preparation. Get professional answers on any topic of the certification syllabus. Our experts will thoroughly satisfy you.

Site Secure

mcafee secure

TESTED 03 May 2024