Oracle Cloud Infrastructure (OCI) Services and Features, Exams of Computer Science

An overview of various oracle cloud infrastructure (oci) services and features, including oltp workload performance, shared file systems, compute instances, network connectivity, security, storage options, and autonomous database capabilities. It covers topics such as exadata db systems, file storage, ipsec vpn, security services, storage encryption, and autonomous database features like automatic indexing and scaling. The document aims to help users understand the capabilities and appropriate use cases of different oci services to design and deploy efficient cloud-based applications and infrastructure.

Typology: Exams

2023/2024

Available from 10/13/2024

josh-real
josh-real šŸ‡ŗšŸ‡ø

1

(1)

1.9K documents

1 / 28

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
OCI Foundations Associate Practice Exams with
Verified Answers
1. What does compute instance vertical scaling mean? - Correct answer Changing
to a larger or smaller shape
2. Which resource do you manage in an IaaS offering?
A. Networking
B. Servers
C. Storage
D. Operating System - Correct answer D. Operating System ***
3. A company has developed a payroll application in Oracle Cloud Infrastructure?
What should they do to ensure that the application has the highest level of
availability and resilience?
A. Deploy the application across multiple Virtual Cloud Networks
B. Deploy the application across multiple Regions and Availability Domains
C. Deploy the application across multiple ADs and Fault Domains
D. Deploy the application across multiple ADs and subnets - Correct answer
B. Deploy the application across multiple Virtual Cloud Networks
4. Which statement is not true for Oracle Cloud Infrastructure compartments?
A. Each OCI resource belongs to a single comparment
B. Compartments cannot be nested
C. Resources can be moved from one compartment to another
D. Resources and compartments can be added and deleted anytime. -
Correct answer B. Compartments cannot be nested
5. Which Oracle Cloud Infrastructure capability can be used to protect against
power failures within an Availability Domain?
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c

Partial preview of the text

Download Oracle Cloud Infrastructure (OCI) Services and Features and more Exams Computer Science in PDF only on Docsity!

OCI Foundations Associate Practice Exams with

Verified Answers

  1. What does compute instance vertical scaling mean? - Correct answer Changing to a larger or smaller shape
  2. Which resource do you manage in an IaaS offering? A. Networking B. Servers C. Storage D. Operating System - Correct answer D. Operating System ***
  3. A company has developed a payroll application in Oracle Cloud Infrastructure? What should they do to ensure that the application has the highest level of availability and resilience? A. Deploy the application across multiple Virtual Cloud Networks B. Deploy the application across multiple Regions and Availability Domains C. Deploy the application across multiple ADs and Fault Domains D. Deploy the application across multiple ADs and subnets - Correct answer B. Deploy the application across multiple Virtual Cloud Networks
  4. Which statement is not true for Oracle Cloud Infrastructure compartments? A. Each OCI resource belongs to a single comparment B. Compartments cannot be nested C. Resources can be moved from one compartment to another D. Resources and compartments can be added and deleted anytime. - Correct answer B. Compartments cannot be nested
  5. Which Oracle Cloud Infrastructure capability can be used to protect against power failures within an Availability Domain?

A. Top of rack switch B. Fault Domains C. Service cells D. Data Plane - Correct answer B. Fault Domains ***

  1. You want to leverage a managed RAC offering in OCI. Which OCI managed database service would you choose? A. Bare Metal DB systems B. Autonomous Data Warehousing (shared) C. Autonomous Transaction Processing (shared) D. VM DB Systems - Correct answer D. VM DB Systems
  2. Which statement is correct regarding the OCI Compute service? A. You cannot attach a block volume to a compute instance. B. When you stop a compute instance, all data on the boot volume is lost. C. You can attach a maximum of one public IP to each compute instance. D. You can launch either virtual machines or bare metal instances - Correct answer D. You can launch either virtual machine or bare metal instances.
  3. Which OCI service would you use to distribute incoming traffic between a set of web servers? A. Auto Scaling B. Public Load Balancer C. Private Load Balancer D. Internet Gateway - Correct answer B. Public load balancer
  4. Which option provides the best performance for running OLTP workload in OCI? A. OCI Virtual Machine Instance

A. Enables OCI Compute instances to privately connect to OCI Object Storage B. Enables OCI Compute instance to connect to on-premises environments C. Enables OCI Compute instances to connect to the Internet D. Enables OCI Compute instances to be reached from the internet - Correct answer B. Enables OCI Compute instance to connect to on-premises environments***

  1. Which security service is offered by OCI? A. Key Management B. Managed Active Directory C. Certificate Management System D. Managed intrusion detection - Correct answer A. Key Management
  2. Which is Oracle's responsibility according to the OCI shared security model? A. Configuring OCI services securely B. Security of data-center facilities C. Data classification and compliance D. Securing application workloads - Correct answer B. Security of data- center facilities
  3. Which OCI storage does not provide encryption for data-at-rest? A. Block volume B. File Storage C. Object Storage D. Local NVMe - Correct answer D. Local NVMe
  4. Which OCI Compute shape does NOT incur instance billing in a stopped state? A. GPU

B. Standard C. HPC D. Dense I/O - Correct answer B. Standard

  1. You run four OCI virtual machine instances on an OCI Dedicated virtual host. How will this deployment be billed? A. All the four instances will be billed based on the number of OCPU. B. The dedicated virtual machine host and the boot volumes of each instance will be billed. C. The dedicated virtual machine host, all the four instances, and the boot volumes of each instance will be billed. D. Only the dedicated virtual machine host will be billed. - Correct answer B. The dedicated virtual machine host and the boot volumes of each instance will be billed.
  2. Which two situations incur costs within OCI? A. Data egress to the Internet B. Transferring data across regions C. Transferring data from one instance to another within the same AD D. Transferring data from one instance to another across different ADs in a region E. Data ingress from the Internet - Correct answer A. Data egress to the Internet B. Transferring data across regions
  3. Which SLA types is not offered by Oracle Cloud Infrastructure compute service? A. Control Plane B. Service Plane C. Performance D. Data Plane - Correct answer B. Service Plane
  1. You are running several Linux based operating systems in your on-premises environment that you want to import to OCI as custom images. You can launch your imported images as OCI compute VMs. Which two modes below can be used to launch these imported Linux VMs? A. Mixed B. Emulated C. Paravirtualized D. Native - Correct answer B. Emulated *** C. Paravirtualized ***
  2. Which two statements are true about OCI IPSec VPN Connect? A. Each OCI IPSec VPN consists of multiple redundant IPSec tunnels B. OCI IPSec VPN tunnel supports only static routes to route traffic C. OCI IPSec VPN can be configured in tunnel mode only D. OCI IPSec VPN can be configured in transport mode only - Correct answer A. Each OCI IPSec VPN consists of multiple redundant IPSec tunnels C. OCI IPSec VPN can be configured in tunnel mode only
  3. Which two OCI services use a Dynamic Routing Gateway? A. OCI FastConnect Public Peering B. OCI FastConnect Private Peering C. Internet Gateway D. Local Peering E. OCI IPSec VPN Connect - Correct answer B. OCI FastConnect Private Peering*** F. OCI IPSec VPN Connect***
  4. You have created a new compartment called Production to host some production apps. You have also created users in your tenancy and added them to a group

called "production_group". Your users are still unable to access the Production compartment. How can you resolve this situation? A. Write an IAM Policy for "production_group" granting it access to the production compartment B. Write an IAM Policy for each specific user granting them access to the production compartment C. Every compartment you create comes with a predefined set of policies, so no further action is needed D. Your users get automatic access to all compartments, so no further action is needed - Correct answer A. Write an IAM Policy for "production_group" granting it access to the production compartment***

  1. You have a instance running in a development compartment that needs to make API calls against other OCI services, but you do not want to configure user creditials or a store a configuration file on the instance. How can you meet this requirement? A. Create a dynamic group with matching rules to include your instance B. Instances are secure and cannot make calls to other OCI services. C. Instances can automatically make calls to other OCI services. D. Create a dynamic group with matching rules to include your instance and write a policy for this dynamic group - Correct answer D. Create a dynamic group with matching rules to include your instance and write a policy for this dynamic group***
  2. You have the following compartment structure in your tenancy: Root compartment->Training->Training-sub1->Training-sub You create a policy in the root compartment to allow the default admin for the account (Administrators) to manage block volumes in compartment Training-sub2. What policy would you write to meet this requirement? A. Allow group Administrators to manage volume-family in compartment Training-sub1:Training-sub B. Allow group Administrators to manage volume-family in root compartment C. Allow group Administrators to manage volume-family in compartment Training: Training-sub1:Training-sub

apps depend on this web server's public IP address and would need an update. What can you do to prevent this from happening again. A. Create a reserved public IP and associate it with the hosts file of your web server B. Create a reserved public IP and associate it with the virtual NIC of your compute instance C. Create a reserved public IP and associate it with the subnet of your compute instance D. Create a reserved public IP and associate it with the security list for the subnet being used by your compute instance - Correct answer B. Create a reserved public IP and associate it with the virtual NIC of your compute instance***

  1. You are a network architect of an application running on Oracle Cloud Infrastructure (OCI). Your security team has informed you about a security patch that needs to be applied immediately to one of the backend web servers. What should you do to ensure that the OCI load balancer does not forward traffic to this backend server during maintenance? A. Edit the security list associated with the subnet to avoid traffic conectivity to this backend serve B. Drain all existing connections to this backend server and mark the backend web server offline. C. Stop the load balancer for maintenance and restart the load balancer after the maintenance is finished. D. Create another OCI load balancer for the backend web servers, which are active and handling traffic. - Correct answer B. Drain all existing connections to this backend server and mark the backend web server offline.***
  2. Your application consists of three OCI compute instances running behind a public load balancer. You have configured the load balancer to perform health checks on these instances, but one of the three instances fails to pass the configured health check. Which of the following action will the load balancer perform? - Correct answer A. Terminate the instance that failed health check B. Stop sending traffic to the instance that failed health check*** C. Stop the instances that failed health check

D. Remove the instance that failed the health check from the backend set.

  1. Which three items must be configured for a load balancer to accept incoming traffic? - Correct answer A. A backend set with at least one backend server*** B. A security list that is open on the listener port*** C. SSL certificate D. A route table entry pointing to the listener IP address E. A listener***
  2. Which of the following statement is true regarding Oracle Cloud Infrastructure Object Storage Pre-Authenticated Requests? - Correct answer A. It is not possible to create pre-authenticated requests for "archive" storage tier B. Changing the bucket visibility does not change existing pre-authenticated requests*** C. It is not possible to create pre-authenticated requests for the buckets, but only for the objects D. Pre-authenticated requests don't have an expiration.
  3. IPSec VPNs are more affordable than FastConnect for connecting your VCN to your on-premises network. Which of the following statements are false about IPSec VPNs? - Correct answer A. IPSec VPNs offer end-to-end encrypted communications B. IPSec VPN tunnels run over public networks C. IPSec VPN tunnels run over private networks*** D. Two tunnels are created for redundancy when IPSec VPN is set up
  4. Which OCI storage types are suitable for unstructured data and may be used for big data applications? (Choose two.) - Correct answer A. Standard tier object storage*** B. HDFS storage C. Archive tier object storage D. Block Volume***
  1. Transparent Data Encryption (TDE) is a feature of the Advanced Security option available with Oracle Database Enterprise Edition. What options are available to you in terms of using TDE when migrating an on-premises database that is not using TDE to DBCS on OCI? (Choose two.) - Correct answer A. The new database on DBCS must have all tablespaces encrypted. B. You can migrate your database to DBCS, but all tablespaces must be unencrypted unless you purchase the Advanced Security option C. You can migrate your database to DBCS, but some tablespaces may be unencrypted.*** D. Any unencrypted tablespaces in a DBCS database may be encrypted after the migration is complete. ***
  2. Which of the following statements regarding autonomous databases is true? (Choose all that apply.) - Correct answer A. ATP and ADW databases are PDBs in an autonomous CBD on Exadata*** B. Serverless ATP is an ATP instance on a shared Exadata infrastructure.*** C. ATP and ADW databases run on non-Exadata infrastructure. D. ADW allows only CPU scaling and not storage scaling.
  3. While provisioning a Linux compute instance on a BM.HPC2.36 shape using an Oracle image, you are required to upload an SSH key. Which of the following statements regarding SSH keys are true? - Correct answer A. You generate the public and private key pairs and upload the private key when creating the instance. B. You generate the public and private key pairs and upload the public key when creating the instance. *** C. You download the Oracle pre-generated keys for your tenancy from the OCI key vault and share the private key as required. D. You download the Oracle pre-generated keys for your tenancy from the OCI key vault and share the public key as required.
  4. What is the main difference between a VM standard and VM DenseIO compute instance shape? - Correct answer A. VM DenseIO is made of a stronger, more durable material B. VM DenseIO has much more CPU and memory than standard shapes

C. VM Standard is ideal for demanding OLTP databases, while VM DenseIO is more suitable for big data systems D. VM DenseIO provides NVMe drivers, while VM standard shapes only support block storage***

  1. Which of the following is an example of an individual OCI resource type when used with IAM policies? (Choose all that apply.) - Correct answer A. VCN*** B. subnet*** C. Exadata cloud services D. instance-family
  2. A DNS zone contains a set of resource records for each domain being administered. Choose all valid resource record types from the following list. - Correct answer A. A record*** B. B record C. NS record*** D. C record
  3. Your organization has embraced the cloud, and all new emloyees are provided with thin client notebook computers with which they connect to their user VMs created in the us-ashburn-1 AD. The CEO is experiencing difficulties, as her VM is not accessible. The system administrators have attempted restarting the VM but cannot determine the problem. There is critical data on the boot volume of this VM that the CEO must recover at any cost. Which of the following is the most efficient approach to assisting the CEO? - Correct answer A. There is nothing further to do. The compute instance is lost. A new instance must be re-created. B. The boot volume may be detached and attached to another working instance as a regular volume to access critical files for the CEO while the underlying issue is being resolved.*** C. A console connection may be created to see if there is more information available to assist with diagnosis and resolution.*** D. The OCI autonomous repair feature may be used to diagnose and resolve any compute instance issues.
  1. Compute instance IAD1 has a 50GB boot volume and an additional 100GB block volume. You decided to delete the instance. What happens to the boot volume and additional block volume atter the instance is terminated? A. The boot volume is terminated, but the additional block volume is available for reuse B. Both the boot volume and block volume may be retained if you so choose C. Both the boot volume and block volume are removed D. Both the boot volume and block volume are removed - Correct answer B is correct. Upon deletion of the instance, you have the option to remove or retain the boot volume.
  2. Choose one or more approaches to allow OCI compute instances to access resources on the Internet. A. Configure a service gateway in your VCN B. Set up a local peering gateway to link your VCN to an lnternet-enabled VCN C. Set up a remote peering gateway using a DRG to connect to an Internet- enabled region D. Use an Internet gateway so instances in public subnets can access the Internet - Correct answer D is correct. Internet gateways extend your VCN by providing Internet access to public subnets while NAT gateways provide a mechanism for instances in private subnets to access the Internet.
  3. One of the block volume attributes to note is lifecycle state. Which of the following states is a valid litecycle state for block volume? A. PROVISIONING B. COMPLETE C. ATTACHING D. CREATING - Correct answer D. is correct. PROVISIONING, AVAILABLE,TERMINATING,TERMINATED, FAULTY, and RESTORING are valid iifecycle states for a block volume.
  4. Choose one or more approaches to allow OCI compute instances to access resources on the Internet. A. Configure a service gateway in your VCN B. Set up a local peering gateway to link your VCN to an lnternet enabled VCN C. Use a NAT gateway so instances in private subnets can access the Internet

D. Set up a remote peering gateway using a DRG to connect to an Internet enabled region - Correct answer C is correct. Internet gateways extend your VCN by providing Internet access to public subnets, while NAT gateways provide a mechanism for instances in private subnets to access the Internet.

  1. You are migrating an important on-premises data warehouse to ADW. Fortunately, data is only loaded into the warehouse once a month from operational data stores. Which of the following migration techniques are most suitable to migrate the data warehouse while ensuring it remains available for queries during the migration? A. RMAN B. Remote Cloning C. Unplug/Plug D. DataPump - Correct answer D is correct. Data Pump exports may be imported into ADW databases.
  2. A new compute instance is provisioned in a public subnet. Which of the following statements are true for the default vNIC assigned to the instance? (Choose all that apply.) A. The vNIC is allocated an OCID B. The VNIC is allocated a media access control (MAC) address C. A primary public IP address from the vNIC's subnet is allocated upon instance creation D. A primary private IP address from the vNIC's subnet is allocated upon instance creation - Correct answer A,B and D are correct. Each vNIC has an OCID and is assigned a MAC address. A primary private IP address from the vNIC's subnet is either automatically allocated by OCI network services or specified by you upon instance creation.
  3. Compartment A has a policy that grants the NetAdmin group members manage permissions on network resources in that compartment. Compartment B is a parent compartment of compartment A and contains a load balancer resource. Which of the following statements is true? (Choose all that apply.) A. Members of the NetAdmin group can inspect the load balancer in compartment A B. Members of the NetAdmin group cannot read the details of the load balancer in compartment B C. Members of the NetAdmin group can manage any network resources in compartments A and B D. Members of the NetAdmin group can manage any network resources in compartment A but not in compartment B - Correct answer A, B. and D

C. Create a volume group with the boot and block volumes from the source VM.Standard.E2.1 system and clone the volume group. Launch a new VM.Standard.E2.2 shape instance using the boot volume and attach the block volumes from the cloned volume group. D. Export the VM.Standard.E2.1 system to VMDK format and import as a custom image. Create VM.Standard.E2.2 instance in

  1. emulated mode. - Correct answer C is correct. This approach leaves the original instance in place. Cloning a volume group is relatively quick and creates a consistent snapshot of volumes to use on the target instance. An even quicker solution is to forego the volume group clone and stop the original instance, detach the volumes, and reuse them in the target instance.
  2. What are the two tiers of OCI object storage? A. S B. Glacier C. Standard D. Archive - Correct answer C and D are correct. Objects stored in a standard tier bucket may be accessed frequently, and your data is immediately available, while objects that are infrequently accessed but that must be retained and preserved for a long time are better suited for archive tier object storage
  3. A vNIC resides in a subnet and is allocated to a compute instance, thus allowing the instance to connect to the subnet's VCN. Which of the following statements are true for an OCI vNIC? A. a vNIC is never allocated an OCID B. a vNIC is allocated a media access control (MAC) address C. A primary private IP address from the vNIC's subnet upon creation D. A primary private IP address from the vNIC's subnet upon instance creation - Correct answer B and D are correct. Each vNIC includes a MAC address, which is a unique device identifier assigned to an NIC, and obtains a private IP address from the vNIC's subnet, either automatically allocated by OCI network services or specified by you upon instance creation
  4. Choose the OCI storage types listed in order from cheapest to most expensive in terms of cost per gigabyte. A. Object storage archive, object storage standard, block volume, NVMe, FSS B. Object storage archive, object storage standard, block volume, FSS, NVMe C. Object storage archive, object storage standard, FSS, block volume, NVMe

D. NVMe, FSS, block volume, object storage standard, object storage archive - Correct answer B is correct. NVMe SSD is only available on bare metal shapes and is the most expensive storage listed. FSS costs a little more than ten times more than block volume and roughly twice as much as standard tier object storage, which costs roughly ten times more than archive tier object storage.

  1. What type of IP address may be allocated to a compute instance and later unassigned and reassigned to a different compute instance? A. Reserved Public IP B. Ephemeral IP C. Dynamic IP D. Private IP - Correct answer A. Reserved Public IP
  2. The DHCP options available when created a VCN let you choose which two DNS resolution types? A. Local nameserver B. DNS resolver C. Internet and VCN resolver D. Custom resolver - Correct answer C and D
  3. Choose the OCI storage type that provides a snapshot-based backup mechanism that supports the immediate restoration of files accidentally removed due to user error. A. Object storage standard B. Block volume C. FSS D. NVMe - Correct answer C is correct
  4. OCI provides autoscaling, allowing the dynamic addition or removal of instances from an instance pool. This allows your systems to scale elastically to resource demand. Which of the following statements are true about autoscaling? A. When autoscaling is enabled, OCI provisions twice the number of active compute instances in the instance pool to ensure even load balancing. B. When autoscaling is enabled, OCI provisions as many compute instances as required, limited only by the autoscaling policy. C. Once an OCI instance pool has autoscaled out and reached the maximum defined scaling limit, you are manually required to scale in or reduce the number of instances. D. When autoscaling is enabled, OCI waits for administrator approval before provisioning any new compute instances. - Correct answer B is correct