1z0-1104-22試験無料問題集（95題）「Oracle Cloud Infrastructure 2022 Security Professional 認定」

出題：1

Which is NOT a part of Observability and Management Services?

A. Logging

B. OCI Management Service

C. Logging Analytics

D. Event Services

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Which OCI services can encrypt all data-at-rest ? Select TWO correct answers

A. NAT Gateway

B. Block Volumes

C. Geolocation Steering

D. File Storage

正解：B,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

Which storage type is most effective when you want to move some unstructured data, consisting of images and videos, to cloud storage?

A. Block volume

B. Archive storage

C. File storage

D. Standard storage

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

With regard to vulnerability and cloud penetration testing, which rules of engagement apply? Select TWO correct answers.

A. Physical penetration and vulnerability testing of Oracle facilities is prohibited

B. Any port scanning must be performed in an aggressive mode

C. Testing should target any other subscription or any other Oracle Cloud customer resources

D. You are responsible for any damages to Oracle Cloud customers that are caused by your testing activities

正解：A,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Logical isolation for resources is provided by which OCI feature?

A. Compartments

B. Tenancy

C. Availability Zone

D. Region

正解：A 解答を投票する

出題：6

As a security administrator, you found out that there are users outside your co network who are accessing OCI Object Storage Bucket. How can you prevent these users from accessing OCI resources in corporate network?

A. Create an 1AM policy and create WAF rules

B. Create PAR to restrict access the access

C. Make OCI resources private instead of public

D. Create an 1AM policy and add a network source

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Operations team has made a mistake in updating the secret contents and immediately need to resume using older secret contents in OCI Secret Management within a Vault.
As a Security Administrator, what step should you perform to rollback to last version? Select TWO correct answers.

A. Upload new secret and mark as 'Pending'. Promote this secret version as 'Current'

B. Mark the secret version as 'Previous'

C. Mark the secret version as 'deprecated'

D. Mark the secret version as 'Rewind'

正解：A,B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

A company has OCI tenancy which has mount target associated with two File Systems, CG_1 and CG_2. These File Systems are accessed by IP-based clients AB_1 and AB_2 respectively. As a security administrator, how can you provide access to both clients such that CGI has Read only access on AB1 and CG_2 has Read/Write access on AB_2?

A. Access Control Lists

B. NFS Export Option

C. Vault

D. NFS v3 Unix Security

正解：B,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

As a security administrator, you want to create cloud resources that align with Oracle's security principles and best practices. Which security service should you use?

A. Cloud Guard

B. Security Advisor

C. Web Application Firewall (WAF)

D. Identity and Access Management

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

In which two ways can you improve data durability in Oracle Cloud Infrastructure Object Storage?

A. Enable Versioning

B. Enable client-side encryption

C. Setup volumes in a RAID1 configuration

D. Enable server-side encryption

E. Limit delete permissions

正解：C 解答を投票する

1z0-1104-22試験無料問題集「Oracle Cloud Infrastructure 2022 Security Professional 認定」