[Jan 29, 2023] 1z0-1104-22 PDF Dumps is essential on your 1z0-1104-22 Exam Questions Certain Success!
1z0-1104-22 PDF Questions - Perfect Prospect To Go With 1z0-1104-22 Practice Exam
Oracle 1z0-1104-22 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
NEW QUESTION 31
An automobile company needs to configure Bastion Managed SSH session to a compute instance in a private subnet. What are the TWO prerequisites to configure successfully?
- A. There is no need for any gateway in private subnet
- B. SSH port forwarding should be enabled
- C. Route rule to a NAT or Service Gateway should be associated with the subnet of the route table
- D. NAT or Service Gateway should be attached to the private subnet
Answer: C,D
NEW QUESTION 32
Which is NOT a part of Observability and Management Services?
- A. Logging
- B. Event Services
- C. OCI Management Service
- D. Logging Analytics
Answer: C
Explanation:
https://www.oracle.com/in/manageability/
NEW QUESTION 33
Which type of file system does file storage use?
- A. NVMe
- B. NFSv3
- C. iSCSI
- D. SSD
- E. Paravirtualized
Answer: B
Explanation:
The File Storage service supports the Network File System version 3.0 (NFSv3) protocol. The service supports the Network Lock Manager (NLM) protocol for file locking functionality.
https://docs.oracle.com/en-us/iaas/Content/File/Concepts/filestorageoverview.htm
NEW QUESTION 34
You subscribe to a PaaS service that follows the Shared Responsibility model.
Which type of security is your responsibility?
- A. Guest OS
- B. Data
- C. Infrastructure
- D. Network
Answer: B
Explanation:
https://www.oracle.com/a/ocom/docs/cloud/oracle-ctr-2020-shared-responsibility.pdf
NEW QUESTION 35
On which option do you set Oracle Cloud Infrastructure Budget?
- A. Instances
- B. Tenancy
- C. Free-form tags
- D. Compartments
Answer: D
Explanation:
How Budgets Work
Budgets are set on cost-tracking tags or on compartments (including the root compartment) to track all spending in that cost-tracking tag or for that compartment and its children.
https://docs.oracle.com/en-us/iaas/Content/Billing/Concepts/budgetsoverview.htm
NEW QUESTION 36
What is the matching rule syntax for a single condition?
- A. Option D
- B. Option C
- C. Option B
- D. Option A
Answer: B
Explanation:
NEW QUESTION 37
As a security administrator, you want to create cloud resources that align with Oracle's security principles and best practices. Which security service should you use?
- A. Security Advisor
- B. Identity and Access Management
- C. Web Application Firewall (WAF)
- D. Cloud Guard
Answer: A
Explanation:
NEW QUESTION 38
Which of these protects customer data at rest and in transit in a way that allows customers to meet their security and compliance requirements for cryptographic algorithms and key management?
- A. Identity Federation
- B. Customer isolation
- C. Security controls
- D. Data encryption
Answer: D
Explanation:
DATA ENCRYPTION
Protect customer data at-rest and in-transit in a way that allows customers to meet their security and compliance requirements for cryptographic algorithms and key management.
https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_overview.htm
NEW QUESTION 39
Which statement is true about using custom BYOI instances in Windows Servers that are managed by OS Management Service?
- A. Windows Servers that does not have the minimum agent version requires an agent update or installation.
- B. Windows Servers that does not have the minimum agent version does not require an agent update or installation.
- C. Windows Servers that already has the minimum agent version does not require an agent update or installation.
- D. Windows Servers that already has the minimum agent version requires an agent update or installation.
Answer: A
Explanation:
https://docs.oracle.com/cd/E11857_01/install.111/e15311/agnt_install_windows.htm
NEW QUESTION 40
As a lead Security Architect, you have tasked to restrict access to and from the worker nodes in pods running in Oracle Container Engine for Kubernetes?
- A. Identity and Access Management
- B. Vulnerability Scanning
- C. Cloud Guard
- D. Security Lists
Answer: D
Explanation:
NEW QUESTION 41
Which of the following services are NOT Security Services in OCI ? Select TWO answers.
- A. Vault
- B. Block Volume
- C. Data Guard
- D. Cloud Guard
Answer: B,C
NEW QUESTION 42
Where is sensitive configuration data (like certificates, and credentials) is stored by Kubernetes cluster control plane?
- A. ETCD
- B. Block Volume
- C. Boot Volume
- D. Oracle Functions
Answer: A
Explanation:
NEW QUESTION 43
which three resources are required to encrypt a block volume with the customer managed key?
- A. Secrets
- B. BLOCK KEY
- C. SYMMETRIC MASTER KEY ENCRYPTlON KEY
- D. OCI VAIRT
- E. MAXIMUM SECURITY ZONE
- F. IAM Policy Allowing Block Storage to Use Keys
Answer: A,D,F
Explanation:
https://docs.oracle.com/en-us/iaas/Content/SecurityAdvisor/Tasks/creatingsecureblockvolume.htm
NEW QUESTION 44
You have configured the Management Agent on an Oracle Cloud Infrastructure (OCI) Linux instance for log ingestion purposes.
Which is a required configuration for OCI Logging Analytics service to collect data from multiple logs of this Instance?
- A. Entity - Log Association
- B. Log - Log Group Association
- C. Log Group - Source Association
- D. Source - Entity Association
Answer: D
NEW QUESTION 45
Which statement is not true about Cloud Security Posture?
- A. Problems are created when Cloud Guard discovers a deviation from a responder rule.
- B. Problems can be resolved, dismissed, or remediated.
- C. Problems are defined by the type of detector that creates them: activity or configuration.
- D. Problems contain data about the specific type of issue that was found.
Answer: A
Explanation:
https://www.oracle.com/security/cloud-security/what-is-cspm/
NEW QUESTION 46
your company has hired a consulting firm to audit your oracle cloud infrastructure activity and configuration you have created a set of users who will be performing the audit, you assigned these user to the orgauditgrp group. the auditor required the ability to see the configuration of all resources within tenant and you have agreed to exempt the dev compartment from the audit.
which IAM policy should be created to grant the orgauditgrp the ability to look at configuration for all resources except for those resources inside the dev compartment?
- A. allow group orgauditgrp to read all-resources in tenancy where target.compartment.name !=dev
- B. allow group orgauditgrp to inspect all-resources in tenancy where target compartment.name !=dev
- C. allow group orgauditgrp to read all-resources in compartment !=dev
- D. allow group orgauditgrp to inspect all-resources in compartment !=dev
Answer: B
NEW QUESTION 47
Which challenge is generally the first level of bot mitigation, but not sufficient with more advanced bot tools?
- A. Device fingerprint challenge
- B. Human interaction challenge
- C. JavaScript challenge
- D. CAPTCHA challenge
Answer: C
NEW QUESTION 48
What would you use to make Oracle Cloud Infrastructure Identity and Access Management govern resources in a tenancy?
- A. Users
- B. Policies
- C. Dynamic groups
- D. Groups
Answer: B
Explanation:
POLICY
A document that specifies who can access which resources, and how. Access is granted at the group and compartment level, which means you can write a policy that gives a group a specific type of access within a specific compartment, or to the tenancy itself. If you give a group access to the tenancy, the group automatically gets the same type of access to all the compartments inside the tenancy. For more information, see Example Scenario and How Policies Work. The word "policy" is used by people in different ways: to mean an individual statement written in the policy language; to mean a collection of statements in a single, named "policy" document (which has an Oracle Cloud ID (OCID) assigned to it); and to mean the overall body of policies your organization uses to control access to resources.
https://docs.oracle.com/en-us/iaas/Content/Identity/Concepts/overview.htm
NEW QUESTION 49
In which two ways can you improve data durability in Oracle Cloud Infrastructure Object Storage?
- A. Limit delete permissions
- B. Enable client-side encryption
- C. Enable server-side encryption
- D. Setup volumes in a RAID1 configuration
- E. Enable Versioning
Answer: D
NEW QUESTION 50
Which statements are CORRECT about Multi-Factor Authentication in OCI ? Select TWO correct answers
- A. Users cannot enable MFA for themselves
- B. Members of the Administrators group cannot enable MFA for another user
- C. Members of the Administrators group can disable MFA for other users
- D. A user can register multiple devices to use for MFA.
Answer: B,C
Explanation:
NEW QUESTION 51
Which components are a part of the OCI Identity and Access Management service?
- A. Policies
- B. Regional subnets
- C. VCN
- D. Compute instances
Answer: A
Explanation:
https://docs.oracle.com/en-us/iaas/Content/Identity/Concepts/overview.htm
NEW QUESTION 52
A company needs to have some buckets as public in the compartment. You want Cloud Guard to ignore the problem associated with public bucket. Select TWO correct answers
- A. First make the bucket private and after few days make the bucket public again
- B. Make the bucket private so that Cloud Guard won't detect it
- C. Dismiss the issues associated with these resources
- D. Configure Conditional groups for the detector to fix base line
Answer: C,D
NEW QUESTION 53
......
1z0-1104-22 Exam with Accurate Oracle Cloud Infrastructure 2022 Security Professional PDF Questions: https://www.testkingfree.com/Oracle/1z0-1104-22-practice-exam-dumps.html
True Oracle Exam Extraordinary Practice For the 1z0-1104-22 Exam: https://drive.google.com/open?id=155SjQSLsQCXwmZky9k9EAoULP9jlcQrG