1z0-1067-24試験無料問題集「Oracle Cloud Infrastructure 2024Cloud Operations Professional 認定」
You have been contracted by a local e-commerce company to assist with enhancing their online shopping application. The application is currently deployed in a single Oracle Cloud Infrastructure (OCI) region. The application utilizes a public load balancer, application servers in a private subnet, and a database in a separate, private subnet. The company would like to deploy another set of similar infrastructure in a different OCI region that will act as standby site. In the event of a failure at the primary site, all customers should be routed to the failover site automatically. After deploying the additional infrastructure within the second region, how should you configure automated failover requirements? (Choose the best answer.)
正解:A
解答を投票する
You have recently been asked to take over management of your company infrastructure provisioning efforts, utilizing Terraform v0.12 to provision and manage infrastructure resources in Oracle Cloud Infrastructure (OCI).
For the past few days the development environments have been failing to provision. Terraform re-turns the following error:
You locate the related code block in the Terraform config and find the following:
Which correction should you make to solve this issue? (Choose the best answer.)
For the past few days the development environments have been failing to provision. Terraform re-turns the following error:
You locate the related code block in the Terraform config and find the following:
Which correction should you make to solve this issue? (Choose the best answer.)
正解:B
解答を投票する
You run a large global application with 90% of customers based in the US and Canada. You want to be able to test a new feature and allow a small percentage of users to access the new version of your application.
What Oracle Cloud Infrastructure Traffic Management steering policy should you utilize? (Choose the best answer.)
What Oracle Cloud Infrastructure Traffic Management steering policy should you utilize? (Choose the best answer.)
正解:D
解答を投票する
In your root compartment, you have two subcompartments, A and B. You have three in-stances in each compartment, including the root (for a total of nine). What does the following metric query return if you use the console to run it in the root compartment? CpuUtiliza-tion[1m].mean()
正解:A
解答を投票する
(CHK) Your company recently adopted a hybrid cloud architecture which requires them to migrate some of their on-premises web applications to Oracle Cloud Infrastructure (OCI). You created a Terraform template which automatically provisions OCI resources such as compute instances, load balancer, and a database instance. After running the stack using the terraform apply command, it successfully launched the compute instances and the load balancer, but it failed to create a new database instance with the following error:
Service error: NotAuthorizedOrNotFound. shape VM.Standard2.4 not found. http status code: 404 You dis- covered that the resource quotas assigned to your compartment prevent you from using VM.Standard2.4 instance shapes available in your tenancy. You edit the Terraform script and replace the shape with VM.
Standard2.2 Which option would you recommend to re-run the terraform command to have required OCI resources provisioned with the least effort? (Choose the best answer.)
Service error: NotAuthorizedOrNotFound. shape VM.Standard2.4 not found. http status code: 404 You dis- covered that the resource quotas assigned to your compartment prevent you from using VM.Standard2.4 instance shapes available in your tenancy. You edit the Terraform script and replace the shape with VM.
Standard2.2 Which option would you recommend to re-run the terraform command to have required OCI resources provisioned with the least effort? (Choose the best answer.)
正解:A
解答を投票する
Scenario: 4 (Write Identity and Access Management Policies to Secure a Tenancy) Scenario Description: (Hands-On Performance Exam Certification) Your company has signed up for an OCI tenancy to migrate an e-commerce application, a supply chain management (SCM) system, and a customer relationship management (CRM) system. You have been tasked with setting up the requisite identity and access management (IAM) policies for your team to begin developing on OCI.
You start by setting up the following compartment hierarchy:
* Tenancy (root)
* Common-Infra
* Network
* Security
* Applications
* E-Comm
* SCM
* CRM
You create the following groups:
* Network-Admins
* Security-Admins
* E-Comm-Admins
* SCM-Admins
* CRM-Admins
Write the IAM policies for the following use cases:
Assumptions:
Assume that all policies will be attached to the root compartment.
Write one policy per given text box.
Keep policies as simple as possible by using verbs instead of permissions (for example, "inspect orm-stacks" instead of "ORM_STACK_INSPECT") and aggregate resource types instead of individual ones (for example, "file-family" instead of "file-systems" and "mount-targets") Task 1 Write a policy statement to enable Network-Admins to create and destroy network-related resources, such as VCNs, subnets, gateways, and so on in the Network compartment.
Task 2
Write policy statements to enable E-Comm-Admins to provision and destroy compute instances in the E- Comm compartment by using networking resources in the Network compartment.[Write one policy per given text box] Task 3 Write a policy statement to enable SCM-Admins to provision, destroy, and back up block volumes in the SCM compartment-but only in Phoenix and London.
You start by setting up the following compartment hierarchy:
* Tenancy (root)
* Common-Infra
* Network
* Security
* Applications
* E-Comm
* SCM
* CRM
You create the following groups:
* Network-Admins
* Security-Admins
* E-Comm-Admins
* SCM-Admins
* CRM-Admins
Write the IAM policies for the following use cases:
Assumptions:
Assume that all policies will be attached to the root compartment.
Write one policy per given text box.
Keep policies as simple as possible by using verbs instead of permissions (for example, "inspect orm-stacks" instead of "ORM_STACK_INSPECT") and aggregate resource types instead of individual ones (for example, "file-family" instead of "file-systems" and "mount-targets") Task 1 Write a policy statement to enable Network-Admins to create and destroy network-related resources, such as VCNs, subnets, gateways, and so on in the Network compartment.
Task 2
Write policy statements to enable E-Comm-Admins to provision and destroy compute instances in the E- Comm compartment by using networking resources in the Network compartment.[Write one policy per given text box] Task 3 Write a policy statement to enable SCM-Admins to provision, destroy, and back up block volumes in the SCM compartment-but only in Phoenix and London.
正解:
See the solution below with Step by Step Explanation.
Explanation:
Task 1
Write a policy statement to enable Network-Admins to create and destroy network-related resources, such as VCNs, subnets, gateways, and so on in the Network compartment.
Solution- Policy Statement:
allow Network-Admins to manage virtual-network-family in compartment Common-Infra:Network Task 2 Write policy statements to enable E-Comm-Admins to provision and destroy compute instances in the E- Comm compartment by using networking resources in the Network compartment.[Write one policy per given text box] Solution- Policy Statement:
* allow E-Comm-Admins to manage instance-familyincompartment Applications:E-Comm allow E- Comm-Admins tousevirtual-network-familyincompartment Common-Infra:Network Task 3 Write a policy statement to enable SCM-Admins to provision, destroy, and back up block volumes in the SCM compartment-but only in Phoenix and London.
Solution- Policy Statement:
allow SCM-Admins to manage volume-family in compartment Applications:SCM where any{request.
region='phx',request.region='lhr'}
Explanation:
Task 1
Write a policy statement to enable Network-Admins to create and destroy network-related resources, such as VCNs, subnets, gateways, and so on in the Network compartment.
Solution- Policy Statement:
allow Network-Admins to manage virtual-network-family in compartment Common-Infra:Network Task 2 Write policy statements to enable E-Comm-Admins to provision and destroy compute instances in the E- Comm compartment by using networking resources in the Network compartment.[Write one policy per given text box] Solution- Policy Statement:
* allow E-Comm-Admins to manage instance-familyincompartment Applications:E-Comm allow E- Comm-Admins tousevirtual-network-familyincompartment Common-Infra:Network Task 3 Write a policy statement to enable SCM-Admins to provision, destroy, and back up block volumes in the SCM compartment-but only in Phoenix and London.
Solution- Policy Statement:
allow SCM-Admins to manage volume-family in compartment Applications:SCM where any{request.
region='phx',request.region='lhr'}
An insurance company has contracted you to help automate their application business continuity plan. They have the application running in eu-frankfurt-1 as the primary site and uk-london-1 as a disaster recovery site.
Normally they have a DNS A record associated with the IP address of the primary endpoint in eu- frankfurt-1.
In the event of a disaster, they use OCI DNS Zone Management to update the A record and replace it with the IP address of the end-point in uk- londond-1. How can you automate the failover process? (Choose the best answer.)
Normally they have a DNS A record associated with the IP address of the primary endpoint in eu- frankfurt-1.
In the event of a disaster, they use OCI DNS Zone Management to update the A record and replace it with the IP address of the end-point in uk- londond-1. How can you automate the failover process? (Choose the best answer.)
正解:A
解答を投票する