[Nov 13, 2022] 1z0-1104-22 Exam Dumps - Try Best 1z0-1104-22 Exam Questions - Pass4SureQuiz [Q17-Q36]

[Nov 13, 2022] 1z0-1104-22 Exam Dumps - Try Best 1z0-1104-22 Exam Questions - Pass4SureQuiz

Verified 1z0-1104-22 exam dumps Q&As with Correct 95 Questions and Answers

NEW QUESTION 17
Where is sensitive configuration data (like certificates, and credentials) is stored by Kubernetes cluster control plane?

• A. Block Volume
• B. ETCD
• C. Oracle Functions
• D. Boot Volume

Answer: B

Explanation:

 

NEW QUESTION 18
How can you establish private connectivity over two VCN within same OCI region without traversing the traffic over public internet ?

• A. Local VCN Peering
• B. NAT Gateway
• C. Remote VCN Peering
• D. Data Guard

Answer: A

Explanation:

 

NEW QUESTION 19
You create a new compartment, "apps," to host some production apps and you create an apps_group and added users to it.
What would you do to ensure the users have access to the apps compartment?

• A. No action is required.
• B. Add an IAM policy for the individual users to access the apps compartment.
• C. Add an IAM policy for apps_group granting access to the apps compartment.
• D. Add an lAM policy to attach tenancy to the apps group.

Answer: C

 

NEW QUESTION 20
Which of the following is necessary step when creating a secret in vault?

• A. Digest Hash should be created of the secret value
• B. Shamir's secret sharing algorithm should be used to unseal the vault
• C. Vault-managed key is necessary to encrypt the secret
• D. Object Storage must be created to run secret service

Answer: C

Explanation:
https://docs.oracle.com/en/database/other-databases/essbase/21/essad/create-vault-and-secrets.html

 

NEW QUESTION 21
Which tasks can you perform on a dedicated virtual machine host?

• A. Capacity reservations
• B. Creating instance pools
• C. Instance configurations
• D. Manual scaling

Answer: D

Explanation:
Supported features: Most of the Compute features for VM instances are supported for instances running on dedicated virtual machine hosts. However, the following features are not supported:
Autoscaling
Capacity reservations
Instance configurations
Instance pools
Burstable instances
Reboot migration. You can use manual migration instead
https://docs.oracle.com/en-us/iaas/Content/Compute/Concepts/dedicatedvmhosts.htm#Dedicated_Virtual_Machine_Hosts

 

NEW QUESTION 22
A http web server hosted on an Oracle cloud infrastructure compute instance in a public subnet of the vcsl virtual cloud network has a stateless security ingress rule for port 80 access through internet gateway stateful network security group notification for port 80 how will the Oci vcn handle request response traffic to the compute instance for a web page from the http server with port 80?

• A. the union of both configuration would happen and allow both inbound and outbound traffic
• B. network security group would supersede the security utility list and allow both inbound and outbound traffic
• C. due to the conflict in security configuration inbound request traffic would not be allowed
• D. Because there is no Egress ruled defined in Security List, The Response would not pass through Internet Gateway.

Answer: D

 

NEW QUESTION 23
What information do you get by using the Network Visualizer tool?

• A. State of subnets in a VCN
• B. Routes defined between subnets and gateways
• C. Interconnectivity of VCNs
• D. Organization of subnets and VLANs across availability domains

Answer: C

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Network/Concepts/network_visualizer.htm You can view and understand the following from this diagram:
How VCNs are inter-connected
How on-premises networks are connected (using FastConnect or Site-to-Site VPN) Which routing entities (DRGs and so on) control traffic routing How your transit routing is configured

 

NEW QUESTION 24
As a lead Security Architect, you have tasked to restrict access to and from the worker nodes in pods running in Oracle Container Engine for Kubernetes?

• A. Cloud Guard
• B. Vulnerability Scanning
• C. Identity and Access Management
• D. Security Lists

Answer: D

Explanation:

 

NEW QUESTION 25
Which challenge is generally the first level of bot mitigation, but not sufficient with more advanced bot tools?

• A. Device fingerprint challenge
• B. Human interaction challenge
• C. CAPTCHA challenge
• D. JavaScript challenge

Answer: D

 

NEW QUESTION 26
Operations team has made a mistake in updating the secret contents and immediately need to resume using older secret contents in OCI Secret Management within a Vault.
As a Security Administrator, what step should you perform to rollback to last version? Select TWO correct answers.

• A. Mark the secret version as 'deprecated'
• B. Mark the secret version as 'Previous'
• C. Upload new secret and mark as 'Pending'. Promote this secret version as 'Current'
• D. Mark the secret version as 'Rewind'

Answer: B,C

Explanation:

 

NEW QUESTION 27
VCN Flow log record details about the traffic that has been denied or approved is based on which of the following statements?

• A. Web Application Firewall (WAF)
• B. Auth tokens
• C. Configuration of route table
• D. Security Lists or Network Security Group Rules

Answer: D

Explanation:

 

NEW QUESTION 28
Which OCI services can encrypt all data-at-rest ? Select TWO correct answers

• A. File Storage
• B. NAT Gateway
• C. Geolocation Steering
• D. Block Volumes

Answer: A,D

Explanation:

 

NEW QUESTION 29
Which VCN configuration is CORRECT with regard to VCN peering within a same region ?

• A. 12.0.0.0/16 and 194.168.0.0/16
• B. 194.168.0.0/24 and 194.168.0.0/16
• C. 12.0.0.0/16 and 12.0.0.0/16
  C 194.168.0.0/24 and 194.168.0.0/24

Answer: A

 

NEW QUESTION 30
Cloud Guard detected a risk score of zero in the dashboard, what does this mean ?

• A. Risk score doesn't say anything. These are just numbers
• B. No problem detected for any resource
• C. Larger number of problems that have high risk levels ( HIGH or CRITICAL )
• D. LOW or MINOR issues

Answer: B

Explanation:

 

NEW QUESTION 31
For how long are API calls audited and available?

• A. 30 days
• B. 60 days
• C. 90 days
• D. 365 days

Answer: C

 

NEW QUESTION 32
What is the minimum active storage duration for logs used by Logging Analytics to be archived?

• A. 10 days
• B. 60 days
• C. 30 days
• D. 15 days

Answer: C

Explanation:
https://docs.oracle.com/en-us/iaas/logging-analytics/doc/manage-storage.html#:~:text=The%20minimum%20Active%20Storage%20Duration,be%20archived%20is%2030%20days.
The minimum Active Storage Duration (Days) for logs before they can be archived is 30 days.

 

NEW QUESTION 33
Which statement is true about standards?

• A. They may be audited.
• B. They are methods and instructions on how to maintain or accomplish the directives of the policy.
• C. They are the foundation of corporate governance.
• D. They are result of a regulation or contractual requirement or an industry requirement.

Answer: D

 

NEW QUESTION 34
Which components are a part of the OCI Identity and Access Management service?

• A. Policies
• B. Compute instances
• C. Regional subnets
• D. VCN

Answer: A

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Identity/Concepts/overview.htm

 

NEW QUESTION 35
Which statement is true about origin management in WAF?
Statement A: Multiple origins can be defined.
Statement B: Only a single origin can be active for a WAF.

• A. Only statement A is true.
• B. Both the statements are false.
• C. Both the statements are true.
• D. Only statement B is true.

Answer: C

 

NEW QUESTION 36
......

Oracle 1z0-1104-22 Test Engine PDF - All Free Dumps: https://certkingdom.pass4surequiz.com/1z0-1104-22-exam-quiz.html