1Z0-997-21 Online Practice Questions and Answers

A global retailer is setting up the cloud architecture to be deployed in Oracle Cloud infrastructure (OCI) which will have thousands of users from two major geographical regions: North America and Asia Pacific. The requirements of the services are:

*

Service needs to be available 27/7 to avoid any business disruption

*

North American customers should be served by application running In North American regions

*

Asia Pacific customers should be served by applications running In Asia Pacific regions

*

Must be resilient enough to handle the outage of an entire OCI region

A.

OCl DNS, Traffic Management with Failover steering policy

B.

OCl DNS, Traffic Management with Geolocation steering policy. Health Checks

C.

OCl DNS, Traffic Management with Geolocation steering policy

D.

OCl DNS,' Traffic Management with Load Balancer steering policy, Health Checks

As a part of migration exercise for an existing on premises application to Oracle Cloud Infrastructure

(OCT), yon ore required to transfer a 7 TB file to OCI Object Storage. You have decided to upload

functionality of Object Storage.

Which two statements are true?

A. Active multipart upload can be checked by listing all parts that have been uploaded, however It Is not possible to list information for individual object part in an active multipart upload

B. It is possible to spill this fileInto multiple parts using the APIs provided by Object Storage.

C. It is possible to split this file into multiple parts using rclone tool provided by Object Storage.

D. After initiating a multipart upload by making a CreateMultlPartUpload RESI API Call, the upload remains active until you explicitly commit it or abort.

E. Contiguous numbers need to be assigned for each part so that Object Storage constructs the object by ordering, part numbers in ascending order

To serve web traffic for a popular product, your cloud engineer has provisioned four BM.Standard2.52 instances, event spread across two availability domains in the us-asburn-1 region: LoadBalancer is used to deliver the traffic across instances. After several months, the product grows even more popular and you need additional compute capacity. As a result, an engineer provisioned two additional VM.Standard2.8 instances. You register the two VM. Standard2. 8 Instances with your load Balancer Backend sot and quickly find that the VM Standard2.8 Instances running at 100% of CPU utilization but the BM.Standard2 .52 instances have significant CPU capacity that's unused. Which option is the most cost effective and uses instances capacity most effectively?

A. Configure your Load Balance, with weighted round robin policy to distribute traffic to the compute instances, with more weight assigned to bare metal instances.

B. Configure Autoscaling instance pool with LoadBalancer to add up to 3 more BM.Standard2.52 Instances when triggered. Shut off VM.Standard2.8 instances.

C. Route traffic to BM.Standard2.52 and VM Standard2.8 instances directly using DNS and Health Checks. Shut off the load Balances.

D. Configure LoadBalancer with two VM Standard2.8 instances and use Autoscalling Instant pool to add up to two additional VM instances. Shut off BM.Standard2.52 instances.

You are currently working for a public health care company based in the United Stats. Their existing patient records runs in an on-premises data center and the customer is sending tape backups offsite as part of their recovery planning. You have developed an alternative archival solution using Oracle Cloud Infrastructure (OCI) that will save the company a significant amount of mom on a yearly basis. The solution involves storing data in an OCI Object Storage bucket After reviewing your solution with the customer global Compliance (GRC) team they have highlighted the following security requirements: All data less than 1 year old must be accessible within 2 hour. All data must be retained for at least 10 years and be accessible within 48 hours AH data must be encrypted at rest No data may be transmitted across the public Internet

Which two options meet the requirements outlined by the customer GRC team?

A. Provision a FastConnect link to the closest OCI region and configure a private peering virtual circuit.

B. Create an OCI Object Storage Standard tier bucket Configure a lifecycle policy to archive any object that Is older than 365 days

C. Create a VPN connection between your on premises data center and OCI. Create a Virtual Cloud Network (VCN) along with an OCI Service Gateway for OCI Object Storage.

D. Provision a FastConnect link to the closest OCI region and configure a public peering virtual circuit

E. Create an OCI Object Storage Standard tier bucket. Configure a lifecycle policy to delete any object that is older than 7 years

A hospital in Austin has hosted its web based medical records portal entirely In Oracle cloud Infrastructure (OCI) using Compute Instances for its web-tier and DB system database for its data tier. To validate compliance with Health Insurance Portability and Accountability (HIPAA), the security professional to check their systems it was found that there are a lot of unauthorized coming requests coming from a set of IP addresses originating from a country in Southeast Asia. Which option can mitigate this type of attack?

A. Block the attacking IP address by creating by Network Security Group rule to deny access to the compute Instance where the web server Is running

B. Block the attacking IP address by implementing a OCI Web Application Firewall policy using Access Control Rules

C. Mitigate the attack by changing the Route fable to redirect the unauthorized traffic to a dummy Compute instance

D. Block the attacking IP address by creating a Security List rule to deny access to the subnet where the web server Is running

An upcoming e-commerce company has deployed their online shopping application on OCI. The application was deployed on compute instances with autoscaling configuration for application servers fronted by a load balancer and OCI Autonomous Transaction Processing (ATP) in the backend. In order to promote their e-commerce platform 50% discount was announced on all the products for a limited period. During the day 1 of promotional period it was observed that the application is running slow and company's hotline is flooded with complaints. What could be two possible reasons for this situation?

A. The health check on some of the backend servers has failed and the load balancer has taken those servers temporarily out of rotation

B. As part of autoscaling, the load balancer shape has dynamically changed to a larger shape to handle more incoming traffic and the system was slow for a short time during this change

C. The health check on some of the backend servers has failed and the load balancer was rebooting these servers.

D. The autoscaling has already scaled to the maximum number of instances specified in the configuration and there is no room of scaling

An E-Commerce company wants to deploy their web application for Oracle Database on Oracle Cloud Infrastructure (OCIJ DB Systems. In compliance with the business continuity program of the business, they need to provide a Recovery Point Objective (RPO) of 1 hour and a Recovery Time Objective (RTO) of 5 minutes. The web application should be highly available within the region and meet the RTO and RPO requirements in case of a region outage. Which approach is the most suitable and cost effective configuration for this scenario?

A. Deploy a 1 node VM Oracle database in one region and replicate the database to a 1 node VM Oracle database in another region using a manual setup and configuration of Oracle Data Guard.

B. Deploy a 2 node Virtual Machine (VM) Oracle RAC database in one region and replicate the database to a 2 node VM Oracle RAC database in another region using a manual setup and configuration of Oracle Data Guard.

C. Deploy an Autonomous Transaction Processing (Serverless) database in one region and replicate it to an Autonomous Transaction Processing (Serverless) database in another region using Oracle GoldenGate.

D. Deploy a 1 node VM Oracle database in one region. Manually Configure a Recovery Manager (RMAN) database backup schedule to take hourly database backups. Asynchronously copy the database backups to object storage in another OCI region. If the primary OCI region is unavailable, launch a new 1 node VM Database in the other OCI region and restore the production database from the backup.

You are responsible for migrating your on-premises legacy databases on 11.2.0.4 version to Autonomous Transaction Processing - Dedicated (ATP-D) in Oracle Cloud Infrastructure (OCI). As a solution architect, you need to plan your migration approach. Which three options do you need to implement together to migrate your on-premises databases to OCI?

A. Retain all legacy structures and unsupported features (e.g. legacy LOBs) in the on-premises databases for migration.

B. Use Oracle Data Guard to keep on-premises database always active during migration.

C. Launch Autonomous Transaction Processing - Dedicated database in OCI.

D. Retain changes to Oracle shipped privileges, stored procedures or views in the on-premises databases.

E. Convert on-premises databases to PDB, upgrade to 19c, and encrypt.

F. Use Oracle GoldenGate replication to keep on-premises database online during migration.

An insurance company is storing critical financial data in the Oracle Cloud Infrastructure block volume.

This volume is currently encrypted using oracle managed keys. Due to regulatory compliance, the

customer wants to encrypt the data using the keys that they can control and not the keys which are

controlled by Oracle.

What of the following series of tasks are required to encrypt the block volume using customer managed

keys?

A. Create a master encryption key, create a data encryption key, decrypt the block volume using existing oracle managed keys, encrypt the block volume using the data encryption key.

B. Create a vault import your master encryption key into the vault, generate data encryption key, assign data encryption key to the block volume.

C. Create a master encryption key, create a new version of the encryption key, decrypt the block volume using existing oracle managed keys and encrypt using new version of the encryption key.

D. Create a vault, create a master encryption key in the vault, assign this master encryption key to the block volume.

There are two compartments: Networks and Devlnstances

There are two groups: NetworkAdmins with a user named Nick, and Devs with a user named Dave The

following IAM policies are being used:

Allow group NetworkAdmins to manage virtual-network-family in compartment Networks

Allow group NetworkAdmins to manage instance-family in compartment Networks

Allow group Devs to use virtual-network-family in compartment Networks

Allow group Devs to manage all-resources in compartment

Devlnstances Nick creates a VCN in Networks compartment. Dave creates a VCN in Devlnstances

compartment.

Which of the following statements is INCORRECT?

A. Dave launches instances in Devlnstances using the VCN in Networks compartment

B. Nick cannot launch new instances in Devlnstances compartment

C. Nick launches instances in Networks using VCN in Devlnstances compartment D. Dave cannot launch new instances in Networks compartment