Which statement best describes the default AuthZ behavior for users and groups in Oracle
Cloud Infrastructure IAM?
In Oracle Cloud Infrastructure (OCI) IAM, the principle of least privilege is applied, which means that access to resources is denied by default. Users and groups are granted access explicitly through policies that define the actions allowed on specific resources, ensuring that access is controlled and minimized to what is necessary.
Which of these steps should be pet formed when creating the infrastructure Tor Sunbird ED deployment?
I) Create NAT Gateway in the Virtual Cloud Network (VCN) to give those cloud resources that are without
II) public IP addresses access to (he Internet, without exposing those resources to incoming Internet connections.
III) Create Service Gateway in the VCN to enable private access lo specific Oracle service (for example. Object Storage. Container Registry, and so on) without exposing the data to the public Internet
IV) Create Network Security Group (NSG) to allow the Compute VMs lo access other subnets. Oracle services, and the Internet.
V) Create Reverse DNS (FTR) records to resolve all private IP addresses hack to fully qualified domain names
VI) IFODN).
When creating the infrastructure for Sunbird ED deployment, it is essential to create a NAT Gateway for enabling private resources to access the internet without direct exposure, a Service Gateway for private access to Oracle services without internet exposure, and Network Security Groups (NSGs) for defining security rules for VMs. Creating Reverse DNS records is not typically a required step in this context, making options (i), (ii), and (iii) the correct actions to perform.
What is the primary purpose of Oracle Cloud Infrastructure Resource Manager (ORM)?
Oracle Cloud Infrastructure Resource Manager (ORM) is a managed service that enables the provisioning and managing of OCI resources through the infrastructure-as-code model. It uses Terraform by HashiCorp, allowing users to define and apply configurations using declarative code, thereby automating the setup and maintenance of cloud resources efficiently.
You need lo store Sunbird ED ansible inventory in a repository that pros ides additional layer of security 10 control access. Which repository would you use?
OCI DevOps Code Repositories is a service designed to provide a secure, scalable, and collaborative environment for storing and managing source code. It offers an additional layer of security to control access, making it an ideal choice for storing sensitive configurations like Sunbird ED ansible inventory, ensuring that access to these configurations is tightly controlled and monitored.
What is the relationship between Oracle Cloud Infrastructure regions and availability domains?
Oracle Cloud Infrastructure regions consist of one or more availability domains. Each availability domain is a standalone, isolated data center within a region, and resources provisioned in an availability domain are specific to that domain, providing fault tolerance and high availability within a region.
