Question No. 1

You have been asked to ensure that in-transit communication between an Oracle Cloud Infrastructure (OCI) compute instance and an on-premises server (192.168.10.10/32) is encrypted. The instances communicate using HTTP. The OCI Virtual Cloud Network (VCN) is connected to the on-premises network by two separate connections: a Dynamic IPsec VPN tunnel and a FastConnect virtual circuit. No static configuration has been added.

What solution should you recommend? (Choose the best answer.)

AThe instances will communicate by default over IPsec VPN, which ensures data is encrypted in-transit.

BAdvertise a 192.168.10.10/32 route over the VPN.

CAdvertise a 192.168.10.10/32 router over the FastConnect.

DThe instances will communicate by default over the FastConnect private virtual circuit, which ensures data is encrypted in-transit.

Show Answer

Correct Answer: B

https://www.oracle.com/uk/cloud/networking/fastconnect-faq.html

Question No. 2

You have created a group for several auditors. You assign the following policies to the group:

What actions are the auditors allowed to perform within your tenancy? (Choose the best answer.)

AThe Auditors can view resources in the tenancy.

BAuditors are able to create new instances in the tenancy.

CThe Auditors are able to delete resource in the tenancy.

DAuditors are able to view all resources in the compartment.

Show Answer

Correct Answer: A

https://docs.oracle.com/en-us/iaas/Content/Identity/Concepts/policies.htm#Verbs

Question No. 3

You have a web application running on Oracle Cloud Infrastructure (OCI) that lets users log in with a username and password. You notice that an attacker has tried to use SQL comment ''--" to alter the database query, remove the password check and log in as a user. You decide to prevent any future attacks.

Which of the following OCI services or features would you choose to safeguard your application? (Choose the best answer.)

ANetwork Security Group

BData Safe

CWeb Application Framework (WAF)

DVault

Show Answer

Correct Answer: C

WAF provides you with the ability to create and manage rules for internet threats including Cross-Site Scripting (XSS), SQL Injection and other OWASP-defined vulnerabilities.

https://docs.oracle.com/en-us/iaas/Content/WAF/Concepts/overview.htm#Overview_of_the_Web_Application_Firewall_Service

Question No. 4

One of the compute instances that you have deployed on Oracle Cloud Infrastructure (OCI) is malfunctioning. You have created a console connection to remotely troubleshoot it.

Which two statements about console connections are TRUE? (Choose two.)

AIt is not possible to use VNC console connections to connect to Bare Metal Instances.

BVNC console connection uses SSH port forwarding to create a secure connection from your local system to the VNC server attached to your instance's console.

CIt is not possible to connect to the serial console to an instance running Microsoft Windows, however VNC console connection can be used.

DFor security purpose, the console connection will not let you edit system configuration files.

EIf you do not disconnect from the session, your serial console connection will automatically be terminated after 24 hours.

Show Answer

Correct Answer: B, E

https://docs.oracle.com/en-us/iaas/Content/Compute/References/serialconsole.htm

Question No. 5

You have created an Autonomous Data Warehouse (ADW) service in your company's Oracle Cloud Infrastructure (OCI) tenancy and you now have to load historical data into it. You have already extracted this historical data from multiple data marts and data warehouses. This data is stored in multiple CSV text files and these files are ranging in size from 25 MB to 20 GB.

Which is the most efficient and error tolerant method for loading data into ADW? (Choose the best answer.)

ACreate Auth token, use it to create an object storage credential by executing DBMS_CLOUD.CREATE_CREDENTIAL, using the web console upload the CSV files to an OCI object storage bucket, create the tables in the ADW database and then execute DBMS_CLOUD.COPY_DATA for each CSV file to copy the contents into the corresponding ADW database table.

BCreate the tables in the ADW database and then execute SQL*Loader for each CSV file to load the contents into the corresponding ADW database table.

CCreate Auth token, use it to create an object storage credential by executing DBMS_CLOUD.CREATE_CREDENTIAL, using OCI CLI upload the CSV files to an OCI object storage bucket, create the tables in the ADW database and then execute Data Pump Import for each CSV file to copy the contents into the corresponding ADW database table.

DCreate Auth token, use it to create an object storage credential by executing DBMS_CLOUD.CREATE_CREDENTIAL, using OCI CLI upload the CSV files to an OCI object storage bucket, create the tables in the ADW database and then execute DBMS_CLOUD.COPY_DATA for each CSV file to copy the contents into the corresponding ADW database table.

Show Answer

Correct Answer: D

Using Object Storage and COPY_DATA is the standard recommended method for fetching data into ADW. Furthermore using CLI over web has the benefit of multipart upload, that is chunk upload of large files, thus reducing the chance of a transfer failure

Free Oracle 1Z0-1067-22 Exam Actual Questions

The questions for 1Z0-1067-22 were last updated On Sep 16, 2024