• Home
  • Articles
  • 100% Accurate Answers! Aug-2022 1Z0-1067-21 Actual Real Exam Questions [Q26-Q51]

100% Accurate Answers! Aug-2022 1Z0-1067-21 Actual Real Exam Questions [Q26-Q51]

Share

100% Accurate Answers! Aug-2022 1Z0-1067-21 Actual Real Exam Questions

Best Value Available! 2022 Realistic Verified Free 1Z0-1067-21 Exam Questions

NEW QUESTION 26
One of the compute instances that you have deployed on Oracle Cloud Infrastructure (OCI) is malfunctioning. You have created a console connection to remotely troubleshoot it.
Which two statements about console connections are TRUE? (Choose two.)

  • A. It is not possible to use VNC console connections to connect to Bare Metal Instances.
  • B. For security purpose, the console connection will not let you edit system configuration files.
  • C. If you do not disconnect from the session, your serial console connection will automatically be terminated after 24 hours.
  • D. VNC console connection uses SSH port forwarding to create a secure connection from your local system to the VNC server attached to your instance's console.
  • E. It is not possible to connect to the serial console to an instance running Microsoft Windows, however VNC console connection can be used.

Answer: C,D

 

NEW QUESTION 27
Recently, your e-commerce web application has been receiving significantly more traffic than usual. Users are reporting they often encounter a 503 Service Error when trying to access your site. Sometimes the site is very slow.
You check your instance pool configuration to confirm that the maximum number of instances is configured to allow 20 compute instances. Currently, 14 compute instances have been provisioned by the instance pool.
You also confirm that current CPU utilization across all hosts exceeds the scale-out threshold you set in your auto-scaling policy. However, the instance pool is not provisioning any new instances.
What can you check to determine why the application is NOT functioning properly? (Choose the best answer.)

  • A. Verify that the database is accessible.
  • B. Verify that the Quality Assurance team is not currently performing load-testing against production.
  • C. Verify that the new offer feature code did not introduce any performance bugs.
  • D. Verify that the compute resource quota has not been exceeded.

Answer: D

 

NEW QUESTION 28
Your application is using an Object Storage bucket named app-data in the namespace vision, to store both persistent and temporary dat a. Every week all the temporary data should be deleted to limit the storage consumption.
Currently you need to navigate to the Object Storage page using the web console, select the appropriate bucket to view all the objects and delete the temporary ones.
To simplify the task you have configured the application to save all the temporary data with /temp prefix. You have also decided to use the Command Line Interface (CLI) to perform this operation.
What is the command you should use to speed up the data cleanup? (Choose the best answer.)

  • A. oci os object delete app-data in vision where prefix = /temp
  • B. oci objectstorage bulk-delete -ns vision -bn app-data --prefix /temp --force
  • C. oci os object bulk-delete -ns vision -bn app-data --prefix /temp --force
  • D. oci os object delete -ns vision -bn app-data --prefix /temp

Answer: C

 

NEW QUESTION 29
You are using Oracle Cloud Infrastructure (OCI) console to set up an alarm on a budget to track your OCI spending.
Which two are valid targets for creating a budget in OCI? (Choose two.)

  • A. Select group as the type of target for your budget.
  • B. Select Tenancy as the type of target for your budget.
  • C. Select Cost-Tracking Tags as the type of target for your budget.
  • D. Select user as the type of target for your budget.
  • E. Select Compartment as the type of target for your budget.

Answer: C,E

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Billing/Concepts/budgetsoverview.htm

 

NEW QUESTION 30
You have the following compartment structure within your company's Oracle Cloud Infrastructure (OCI) tenancy:

You want to create a policy in the root compartment to allow SystemAdmins to manage VCNs only in CompartmentC.
Which policy is correct? (Choose the best answer.)

  • A. Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentA:CompartmentB:CompartmentC
  • B. Allow group SystemAdmins to manage virtual-network-family in compartment Root
  • C. Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentB:CompartmentC
  • D. Allow group SystemAdmins to manage virtual-network-family in compartment CompartmentC

Answer: A

Explanation:
Complete Compartment path is required. It is also advisable to do so, as policies are name based ones.

 

NEW QUESTION 31
You have set an alarm to be generated when the CPU usage of a specified instance is greater than 10%. In the alarm behavior view below you notice that the critical condition happened around 23:30. You were expecting a notification after 1 minute, however, the alarm firing state did not begin until 23:33.

What should you change to fix it? (Choose the best answer.)

  • A. Change the alarm's metric interval to 1.
  • B. Change the alarm condition to be grater than 3%.
  • C. Change the alarm's trigger delay minutes value to 1.
  • D. Change the notification topic that you previously associated with the alarm.

Answer: C

 

NEW QUESTION 32
Which technique does NOT help you get the optimal performance out of the Oracle Cloud Infrastructure (OCI) File Storage service? (Choose the best answer.)

  • A. Limit access to the same Availability Domain (AD) as the File Storage service where possible.
  • B. Serialize operations to the file system to access consecutive blocks as much as possible.
  • C. Right size compute instances from where file system is accessed based on their network capacity.
  • D. Increase concurrency by using multiple threads, multiple clients, and multiple mount targets.

Answer: D

Explanation:
"File Storage performance increases with parallelism. Increase concurrency by using multiple threads, multiple clients, and multiple mount targets."

 

NEW QUESTION 33
You have been asked to investigate a potential security risk on your company's Oracle Cloud Infrastructure (OCI) tenancy. You decide to start by looking through the audit logs for suspicious activity.
How can you retrieve the audit logs using the OCI Command Line Interface (CLI)? (Choose the best answer.)

  • A. oci audit event list --start-time $start-time --compartment-id $compartment-id
  • B. oci audit event list --start-time $start-time --end-time $end-time -- compartment-id $compartment-id
  • C. oci audit event list --start-time $start-time --end-time $end-time --tenancy-id
  • D. oci audit event list --end-time $end-time --compartment-id $compartment-id

Answer: B

Explanation:
$tenancy-id
Explanation:
https://docs.oracle.com/en-us/iaas/tools/oci-cli/2.9.7/oci_cli_docs/cmdref/audit/event/list.html

 

NEW QUESTION 34
Security Testing Policy describes when and how you may conduct certain types of security testing of Oracle Cloud Services, including vulnerability and penetration tests, as well as tests involving data scraping tools.
What does Oracle allow as part of this testing? (Choose the best answer.)

  • A. Customers are allowed to use their own testing and monitoring tools.
  • B. Customers can simulate DoS attack scenarios as long as it's restricted to the customer's own environment.
  • C. Customers can validate that their network resources are isolated from other customer resources.
  • D. Customers are allowed to test Oracle Cloud Infrastructure (OCI) hardware related to resources in their tenancy.

Answer: D

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_testing-policy.htm

 

NEW QUESTION 35
Your company recently adopted a hybrid cloud architecture which requires them to migrate some of their on- premises web applications to Oracle Cloud Infrastructure (OCI). You created a Terraform template which automatically provisions OCI resources such as compute instances, load balancer, and a database instance. After running the stack using the terraform apply command, it successfully launched the compute instances and the load balancer, but it failed to create a new database instance with the following error:
Service error: NotAuthorizedOrNotFound. shape VM.Standard2.4 not found. http status code: 404 You discovered that the resource quotas assigned to your compartment prevent you from using VM.Standard2.4 instance shapes available in your tenancy. You edit the Terraform script and replace the shape with VM.Standard2.2 Which option would you recommend to re-run the terraform command to have required OCI resources provisioned with the least effort? (Choose the best answer.)

  • A. terraform refresh -target=oci_database_db_system.db_system
  • B. terraform apply -target=oci_database_db_system.db_system
  • C. terraform plan -target=oci_database_db_system.db_system
  • D. terraform apply -auto-approve

Answer: D

 

NEW QUESTION 36
You are asked to deploy a new application that has been designed to scale horizontally. The business stakeholders have asked that the application be deployed in us-phoenix-1.
Normal usage requires 2 OCPUs. You expect to have few spikes during the week, that will require up to 4 OCPUs, and a major usage uptick at the end of each month that will require 8 OCPUs.
What is the most cost-effective approach to implement a highly available and scalable solution? (Choose the best answer.)

  • A. Create an instance pool with a VM.Standard2.1 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances and a maximum of 8 instances.
  • B. Create an instance with 1 OCPU shape. Use a CLI script to clone it when more resources are needed.
  • C. Create an instance pool with a VM.Standard2.2 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances, to handle the weekly spikes, and a maximum of 4 instances.
  • D. Create an instance with 1 OCPU shape. Use the Resize Instance action to scale up to a larger shape when more resources are needed.

Answer: A

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Compute/References/computeshapes.htm#baremetalshapes__bm-standard

 

NEW QUESTION 37
You created an Oracle Linux compute instance through the Oracle Cloud Infrastructure (OCI) management console then immediately realize you forgot to add an SSH key file. You notice that OCI compute service provides instance console connections that supports adding SSH keys for a running instance. Hence, you created the console connection for your Linux server and activated it using the connection string provided.
However, now you get prompted for a username and password to login.
What option should you recommend to add the SSH key to your running instance, while minimizing the administrative overhead? (Choose the best answer.)

  • A. You need to terminate the running instance and recreate it by providing the SSH key file.
  • B. You need to modify the serial console connection string to include the identity file flag, -i to specify the SSH key to use.
  • C. You need to reboot the instance from the console, boot into the bash shell in maintenance mode, and add SSH keys for the opc user.
  • D. You need to configure the boot loader to use ttyS0 as a console terminal on the VM.

Answer: B

Explanation:
Explanation/Reference: https://docs.oracle.com/en-us/iaas/Content/Compute/References/serialconsole.htm

 

NEW QUESTION 38
You launched a Linux compute instance to host the new version of your company website via Apache Httpd server on HTTPS (port 443). The instance is created in a public subnet along with other instances. The default security list associated to the subnet is:

You want to allow access to the company website from public internet without exposing websites eventually hosted on the other instances in the public subnet.
Which action would you take to accomplish the task? (Choose the best answer.)

  • A. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the instance that hosts the company website.
  • B. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the public subnet that hosts the company website.
  • C. In default security list, add a stateful rule to allow ingress access on port 443.
  • D. Create a new security list with a stateful rule to allow ingress access on port 443 and associate it to the public subnet.

Answer: A

Explanation:
Since we want to avoid exposing other instances in the same public subnet to the internet, Network Security Groups (NSG) must be used instead of Security Lists. NSG are attached to the vnic of the instance and not to the subnet

 

NEW QUESTION 39
Which option contains the essential components of the Oracle Cloud Infrastructure Notifications service? (Choose the best answer.)

  • A. An ALARM with a name unique across the compartment, a SUBSCRIPTION, and a METRIC with the measurement of interest.
  • B. A TOPIC with a name unique across the compartment, a SUBSCRIPTION, and a MESSAGE where content is published.
  • C. An ALARM with a name unique across the tenancy, a SUBSCRIPTION, and a METRIC with the measurement of interest.
  • D. A TOPIC with a name unique across the tenancy, a SUBSCRIPTION, and a MESSAGE where content is published.

Answer: D

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Notification/Concepts/notificationoverview.htm
https://docs.oracle.com/en-us/iaas/Content/Notification/Tasks/managingtopicsandsubscriptions.htm

 

NEW QUESTION 40
You have been asked to set up connectivity between a client's on-premises network and Oracle Cloud Infrastructure (OCI). The requirements are:
Low latency: The applications are financial and require low latency connectivity into OCI. Consistency: The application isn't tolerant of performance variation.
Performance: The communications link needs to support up to 1.25 Gbps.
Encryption: The communications link needs to encrypt any data in transit between the on-premises network and OCI Virtual Cloud Network (VCN).
The client wants to implement the above with as low a cost as possible, while meeting all of the requirements. What should you suggest? (Choose the best answer.)

  • A. Provision FastConnect with a single private virtual circuit.
  • B. Provision FastConnect with a single public virtual circuit.
  • C. Provision FastConnect with a single public virtual circuit, and run an IPsec VPN tunnel over the top of this
  • D. Provision a site-to-site IPsec VPN between your on-premises network and your virtual cloud network (VCN) using VPN Connect.
  • E. Provision FastConnect with a single private virtual circuit, and run an IPsec VPN tunnel over the top of this virtual circuit.

Answer: A

Explanation:
virtual circuit.

 

NEW QUESTION 41
You set up a bastion host in your VCN to only allow your IP address (140.19.2.140) to establish SSH connections to your Compute Instances that are deployed in a private subnet. The Compute Instances have an attached Network Security Group with a Source Type: Network Security Group (NSG), Source NSG: NSG-050504. To secure the bastion host, you added the following ingress rules to its Network Security Group:
However, after checking the bastion host logs, you discovered that there are IP addresses other than your own that can access your bastion host.
What is the root cause of this issue? (Choose the best answer.)

  • A. The port 22 provides unrestricted access to 140.19.2.140 and to other IP address.
  • B. A netmask of /32 allows all IP address in the 140.19.2.0 network, other than your IP 140.19.2.140
  • C. The Security List allows access to all IP address which overrides the Network Security Group ingress rules.
  • D. All compute instances associated with NSG-050504 are also able to connect to the bastion host.

Answer: D

 

NEW QUESTION 42
You launched a Linux compute instance to host the new version of your company website via Apache Httpd server on HTTPS (port 443). The instance is created in a public subnet along with other instances. The default security list associated to the subnet is:

You want to allow access to the company website from public internet without exposing websites eventually hosted on the other instances in the public subnet.
Which action would you take to accomplish the task? (Choose the best answer.)

  • A. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the instance that hosts the company website.
  • B. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the public subnet that hosts the company website.
  • C. In default security list, add a stateful rule to allow ingress access on port 443.
  • D. Create a new security list with a stateful rule to allow ingress access on port 443 and associate it to the public subnet.

Answer: A

 

NEW QUESTION 43
You have created a geolocation steering policy in the Oracle Cloud Infrastructure (OCI) Traffic Management service, with this configuration:

What happens to requests that originate in Africa? (Choose the best answer.)

  • A. The traffic will be forwarded to Pool 1. If Pool 1 is not available, then it will be forwarded to Pool 2.
  • B. The traffic will be dropped.
  • C. The traffic will be forwarded at the same time to both Pool 1 and Pool 2.
  • D. The traffic will be forwarded randomly to any of the pools mentioned in the rules.

Answer: A

 

NEW QUESTION 44
You are using Oracle Cloud Infrastructure (OCI) services across several regions: us-phoenix-1, us-ashburn-1, uk-london-1 and ap-tokyo-1. You have creates a separate administrator group for each region: PHX-Admins, ASH-Admins, LHR-Admins and NRT-Admins, respectively.
You want to restrict admin access to a specific region. E.g., PHX-Admins should be able to manage all resources in the us-phoenix-1 region only and not any other OCI regions.
What IAM policy syntax is required to restrict PHX-Admins to manage OCI resources in the us-phoenix-1 region only? (Choose the best answer.) Allow group PHX-Admins to manage all-resources in tenancy where

  • A. request.permission= 'phx'
    Allow group PHX-Admins to manage all-resources in tenancy where
  • B. request.region= 'phx'
    Allow group PHX-Admins to manage all-resources in tenancy where
  • C. request.target= 'phx'
    Allow group PHX-Admins to manage all-resources in tenancy where
  • D. request.location= 'phx'

Answer: B

 

NEW QUESTION 45
You run a large global application with 90% of customers based in the US and Canad a. You want to be able to test a new feature and allow a small percentage of users to access the new version of your application.
What Oracle Cloud Infrastructure Traffic Management steering policy should you utilize? (Choose the best answer.)

  • A. IP Prefix steering
  • B. ASN steering
  • C. Geolocation steering
  • D. Load Balancer

Answer: C

 

NEW QUESTION 46
Which statement about Oracle Cloud Infrastructure paravirtualized block volume attachments is TRUE?
(Choose the best answer.)

  • A. Paravirtualized is required to manage iSCSI configuration for virtual machine instances.
  • B. Paravirtualized volumes may reduce the maximum IOPS performance for larger block volumes.
  • C. Paravirtualized volumes become immediately available on bare metal compute instances.
  • D. Paravirtualization utilizes the internal storage stack of compute instance OS and network hardware virtualization to access block volumes.

Answer: B

Explanation:
Explanation/Reference: https://blogs.oracle.com/cloud-infrastructure/paravirtualized-block-volume-attachments-for-vms

 

NEW QUESTION 47
You are asked to deploy a new application that has been designed to scale horizontally. The business stakeholders have asked that the application be deployed in us-phoenix-1.
Normal usage requires 2 OCPUs. You expect to have few spikes during the week, that will require up to 4 OCPUs, and a major usage uptick at the end of each month that will require 8 OCPUs.
What is the most cost-effective approach to implement a highly available and scalable solution? (Choose the best answer.)

  • A. Create an instance pool with a VM.Standard2.2 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances, to handle the weekly spikes, and a maximum of 4 instances.
  • B. Create an instance pool with a VM.Standard2.1 shape instance configuration. Setup the autoscaling configuration to use 2 availability domains and have a minimum of 2 instances and a maximum of 8 instances.
  • C. Create an instance with 1 OCPU shape. Use a CLI script to clone it when more resources are needed.
  • D. Create an instance with 1 OCPU shape. Use the Resize Instance action to scale up to a larger shape when more resources are needed.

Answer: A

 

NEW QUESTION 48
You have been asked to review a network design for Oracle Cloud Infrastructure (OCI) by a major client. The client's IT team needs to provision two Virtual Cloud Networks (VCNs) for a major application. The application uses a large number of virtual machine instances. Additionally, in the future, a VCN peering will be required to allow connectivity between the VCNs.
Which of the following are valid IP ranges to consider? (Choose the best answer.)

  • A. 10.0.0.0/8 and 11.0.0.0/8
  • B. 10.0.0.0/30 and 192.168.0.0/30
  • C. 10.0.8.0/21 and 10.0.16.0/22
  • D. 10.0.0.0/16 and 10.0.64.0/24

Answer: D

 

NEW QUESTION 49
You are asked to implement the disaster recovery (DR) and business continuity requirements for Oracle Cloud Infrastructure (OCI) Block Volumes. Two OCI regions being used: a primary/source region and a DR/ destination region. The requirements are:
There should be a copy of data in the destination region to use if a region-wide disaster occurs in the source region Minimize costs Which design will help you meet these requirements? (Choose the best answer.)

  • A. Clone block volumes. Use Object Storage lifecycle management to automatically move clone objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.
  • B. Back up block volumes. Copy block volume backups from source region to destination region at regular intervals.
  • C. Clone block volumes. Copy block volume clones from source region to destination region at regular intervals.
  • D. Back up block volumes. Use Object Storage lifecycle management to automatically move backup objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.

Answer: D

 

NEW QUESTION 50
You have ordered two FastConnect connections that provide a high availability connection architecture between your on-premises data center and Oracle Cloud Infrastructure (OCI). You want to run these connections in an ACTIVE/PASSIVE architecture.
How can you accomplish this? (Choose the best answer.)

  • A. Enable BGP on the FastConnect that you want as the ACTIVE connection.
  • B. Adjust one of the connections to have a higher ASN.
  • C. Decrease the prefix length of AS for the FastConnect you want to use as PASSIVE connection.
  • D. Use AS PATH prepending with your routes.

Answer: D

 

NEW QUESTION 51
......

Actual Questions Answers Pass With Real 1Z0-1067-21 Exam Dumps: https://examsdocs.dumpsquestion.com/1Z0-1067-21-exam-dumps-collection.html

Related Articles

more
Oracle 1Z0-1067-21 Certification Practice Exam

Copyright © 2026 DumpsQuestion NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy