Prep4Certs: Your Ultimate Destination for Exam Preparation
Are you ready to take your career to the next level with Oracle Cloud Infrastructure 2022 Foundations Associate? At Prep4Certs, we're dedicated to helping you achieve your goals by providing high-quality 1z0-1085-22 Dumps and resources for a wide range of certification exams.
How Can We Help You Prepare for the Oracle 1z0-1085-22 Exam?
At Prep4Certs, we're committed to your success in the Oracle 1z0-1085-22 exam. Our comprehensive study materials and resources are designed to equip you with the knowledge and skills needed to ace the exam with confidence:
In-depth Study Guides: Access detailed study guides covering each exam domain, complete with key concepts, best practices, and real-world scenarios.
Practice Exams and Quizzes: Test your knowledge with our collection of practice exams and quizzes, designed to simulate the exam environment and help you gauge your readiness.
Interactive Labs and Hands-On Exercises: Reinforce your learning with hands-on labs and interactive exercises that allow you to apply theoretical concepts in practical scenarios.
Expert Support and Guidance: Our team of experienced AWS professionals is here to support you every step of the way. Whether you have questions about exam topics or need guidance on exam preparation strategies, we're here to help.
Why Choose Prep4Certs for Your Exam Preparation?
Expertly Curated Content: Our study materials are meticulously curated by industry experts and certified professionals to ensure accuracy, relevance, and alignment with exam objectives.
User-Friendly Platform: Navigating our platform is easy and intuitive, allowing you to access study materials anytime, anywhere, and from any device. Our user-friendly interface makes it simple to track your progress and focus on areas that require further review.
Flexible Learning Options: Whether you prefer self-paced study or structured learning programs, we offer flexible learning options to suit your individual preferences and schedule.
Dedicated Support: Have questions or need assistance? Our dedicated support team is here to help. From technical support to exam preparation advice, we're committed to providing you with the assistance you need to succeed.
Start Your Certification Journey Today
Whether you're looking to advance your career, expand your skill set, or pursue new opportunities, Prep4Certs is here to support you on your certification journey. Explore our comprehensive study materials, take your exam preparation to the next level, and unlock new possibilities for professional growth and success.
Ready to achieve your certification goals? Begin your journey with Prep4Certs today!
Oracle 1z0-1085-22 Sample Questions
Question # 1
Which statement about Oracle Cloud Infrastructure (OCI) shared security model is true?
A. You are responsible for managing security controls within the physical OCInetwork. B. You are not responsible for any aspect of security in OCI. C. You are responsible for securing all data that you place in OCI D. You are responsible for securing the hypervisor within OCI Compute service.
Answer: C Explanation: Oracle Cloud Infrastructureoffers best-in-class security technology and operational processes to secure its enterprise cloud services. However, for you to securely run your workloads in Oracle Cloud Infrastructure, you must be aware of your security and compliance responsibilities.By design, Oracle provides security of cloud infrastructure and operations (cloud operator access controls, infrastructure security patching, and so on), and you are responsible for securely configuring your cloud resources. Security in the cloud
is a shared responsibility between you and Oracle.
In a shared, multi-tenant compute environment, Oracle is responsible for the security of the
underlying cloud infrastructure (such as data-center facilities, and hardware and software
systems) and you are responsible for securing your workloads and configuring your
services (such as compute, network, storage, and database) securely.
In a fully isolated, single-tenant, bare metal server with no Oracle software on it, your
responsibility increases as you bring the entire software stack (operating systems and
above) on which you deploy your applications. In this environment, you are responsible for
securing your workloads, and configuring your services (compute, network, storage,
database) securely, and ensuring that the software components that you run on the bare
metal servers are configured, deployed, and managed securely.
More specifically, your and Oracle's responsibilities can be divided into the following areas:
Identity and Access Management (IAM): As with all Oracle cloud services, you should
protect your cloud access credentials and set up individual user accounts. You are
responsible for managing and reviewing access for your own employee accounts and for all
activities that occur under your tenancy. Oracle isresponsible for providing effective IAM
services such as identity management, authentication, authorization, and auditing.
Workload Security: You are responsible for protecting and securing the operating system
and application layers of your compute instances from attacks and compromises. This
protection includes patching applications and operating systems, operating system
configuration, and protection against malware and network attacks. Oracle is responsible
for providing secure images that are hardenedand have the latest patches. Also, Oracle
makes it simple for you to bring the same third-party security solutions that you use today.
Data Classification and Compliance: You are responsible for correctly classifying and
labeling your data and meeting anycompliance obligations. Also, you are responsible for
auditing your solutions to ensure that they meet your compliance obligations.
Host Infrastructure Security: You are responsible for securely configuring and managing
your compute (virtual hosts, containers), storage (object, local storage, block volumes), and
platform (database configuration) services. Oracle has a shared responsibility with you to
ensure that the service is optimally configured and secured. This responsibility includes
hypervisor security and the configuration of the permissions and network access controls
required to ensure that hosts can communicate correctly and that devices are able to
attach or mount the correct storage devices.
Network Security: You are responsible for securely configuring network elements such as
virtual networking, load balancing, DNS, and gateways. Oracle is responsible for providing
a secure network infrastructure.
Client and Endpoint Protection: Your enterprise uses various hardware and software
systems, such as mobile devices and browsers, to access your cloud resources. You are
responsible for securing all clients and endpoints that you allow to access Oracle Cloud Infrastructure services.
Physical Security: Oracle is responsible for protecting the global infrastructure that runs all
of the services offered in Oracle Cloud Infrastructure. This infrastructure consists of the
hardware, software, networking, and facilities that run Oracle Cloud Infrastructure services.
Reference:
https://www.oracle.com/a/ocom/docs/oracle-cloud-infrastructure-security-architecture.pdf
Question # 2
Your company hasdeployed a business critical application in Oracle Cloud Infrastructure.
What should you do to ensure that your application has the highest level of resilience and
availability?
A. Deploy the application across multiple Availability Domains and Subnets B. Deploy the application across multiple Virtual Cloud Networks C. Deploy the application across multiple Regions and Availability Domains D. Deploy the application across multiple Availability Domains and Fault Domains
Answer: C Explanation: To design a high availability architecture, three key elements should be considered— redundancy, monitoring, and failover: 1) Redundancy means that multiple components can perform the same task. The problem of a single point of failure is eliminated because redundant components cantake over a task performed by a component that has failed. 2) Monitoring means checking whether or not a component is working properly. 3) Failover is the process by which a secondary component becomes primary when the primary component fails. The best practices introduced here focus on these three key elements. Although high availability can be achieved at many different levels, including the application level and the cloud infrastructure level, here we will focus on the cloud infrastructure level. An Oracle Cloud Infrastructure region is a localized geographic area composed of one or
more availability domains, each composed of three fault domains. High availability is
ensured by a redundancy of fault domains within the availability domains.
An availability domain is one or more data centers located within a region. Availability
domains are isolated from each other, fault tolerant, and unlikely to fail simultaneously.
Because availability domains do not share physical infrastructure, such as power or
cooling, or the internal availability domain network, a failure that impacts one availability
domain is unlikely to impact the availability of others.
A fault domain is a grouping of hardware and infrastructure within an availability domain.
Each availability domain contains three fault domains. Fault domains let you distribute your
instances so that they are not on the same physical hardware within a single availability
domain. As a result, an unexpected hardware failure or a Compute hardware maintenance
that affects one fault domain does not affect instances in other fault domains. You can
optionally specify the fault domain for a new instance at launch time, or you can let the
system select one for you.
All the availability domains in a region are connected toeach other by a low-latency, high
bandwidth network. This predictable, encrypted interconnection between availability
domains provides the building blocks for both high availability and disaster recovery.
Reference: https://docs.oracle.com/en/solutions/design-ha/index.html#GUID-76ECDDB4-
4CB1-4D93-9A6D-A8B620F72369
Question # 3
Which Oracle Cloud Infrastructure storage service can provide a shared file system across
multiple compute instances?
A. file Storage B. Local NVMe C. Object Storage D. Archive storage
Answer: A Explanation: Oracle Cloud Infrastructure File Storage service provides a durable, scalable,
secure, enterprise-grade network file system. You can connect to a File Storage service file
system from any bare metal, virtual machine, or container instance in your Virtual Cloud
Network (VCN). You can also access a file system from outside the VCN using Oracle
Cloud Infrastructure FastConnect and Internet Protocol security (IPSec) virtual private
network (VPN).
Large Compute clusters of thousands of instances can use the File Storage service
for high-performance shared storage. Storage provisioning is fully managed and automatic
as your use scales from a single byte to exabytes withoutupfront provisioning.
Reference:
https://docs.cloud.oracle.com/en-us/iaas/Content/File/Concepts/filestorageoverview.htm
Question # 4
What purpose does an Oracle Cloud Infrastructure (OCI) Dynamic Routing Gateway
Serve?
A. Enables OCI Compute Instance to privately connect to OCI Object Storage B. Enables OCI Compute instance to connect to on-promises environments C. Enable OCI Compute instances to connect to the internal D. Enables OCI Compute instances to be reached from internet
Answer: B Explanation: You can think of a Dynamic Routing Gateway (DRG) as a virtual router that provides a path for private traffic (that is, traffic thatuses private IPv4 addresses) between your VCN and networks outside the VCN's region. For example, if you use an IPSec VPN or Oracle Cloud Infrastructure FastConnect (or both) to connect your on-premises network to your VCN, that private IPv4 address traffic goes through a DRG that you create and attach to your VCN. For scenarios for using a DRG to connect a VCN to your on-premises network, see Networking Scenarios. For important details about routing to your on-premises network, see Routing Details for Connections toYour On-Premises Network. Also, if you decide to peer your VCN with a VCN in another region, your VCN's DRG routes traffic to the other VCN over a private backbone that connects the regions (without traffic traversing the internet). For information about connecting VCNs in different regions, see Remote VCN Peering (Across Regions). Reference: https://docs.cloud.oracle.com/en-us/iaas/tools/ocicli/2.9.1/oci_cli_docs/cmdref/network/drg.html
Question # 5
Which feature allows you to group and logically isolate your Oracle Cloud
Infrastructure (OCI) resources?
A. Tenancy B. Identity and Access Management Groups C. Availability Domains D. Compartments
Answer: D Explanation: It is collection of related resources. Compartments are a fundamental component of Oracle Cloud Infrastructure for organizing and isolating your cloud resources. You use them to clearly separate resources for the purposes of measuring usage and billing, access (through the use of IAM Service policies), and isolation (separating the resources for one project or business unit from another). A common approach is to create a compartment for each major part of your organization. For more information, see Overview of the IAM Service and also Setting Up Your Tenancy. To place a resource in a compartment, simply specify the compartment ID in the "Create" request object when initially creating the resource. For example, to launch an instance into a particular compartment, specify that compartment's OCID in the LaunchInstance request. You can't move an existing resource from one compartment to another. To use any of the API operations, you must be authorized in an IAM policy. If you're not authorized, talk to an administrator. Ifyou're an administrator who needs to write policies to give users access, see Getting Started with Policies. Reference: https://docs.cloud.oracle.com/en-us/iaas/tools/ocicli/2.9.9/oci_cli_docs/cmdref/iam/compartment.htm...
Question # 6
You want to leverage a managed Real Application Cluster (RAC) offering in Oracle Cloud
Infrastructure. which OCIManaged database service would you choose?
A. Autonomous Transaction Processing (shared) B. VM DB System C. Autonomous Data Warehousing (shared) D. Bare Metal DB Systems
Answer: B Explanation: There are 2 types of DB systems on virtual machines: A 1-node VMDB system consists of one VM. A 2-node VM DB system consists of two VMs clustered with RAC enabled. Reference: https://docs.cloud.oracle.com/en-us/iaas/Content/Database/Concepts/overview.htm Oracle Cloud Infrastructure offers single-node DB systems on either bare metal or virtual machines, and 2-node RAC DB systems on virtual machines. If you need to provision a DB system for development or testing purposes, then a special fast provisioning single-node virtual machine system is available. You can manage these systems by using the Console, the API, the OracleCloud Infrastructure CLI, the Database CLI (DBCLI), Enterprise Manager, Enterprise Manager Express, or SQL Developer. Reference: https://docs.cloud.oracle.com/enus/iaas/Content/Database/Concepts/overview.htm
Question # 7
Which of the following is an example of an edge service in OCI?
A. DNS ZoneManagement B. Virtual Machines C. OCI compute instances D. Oracle Data Guard
Answer: A Explanation: The Oracle Cloud Infrastructure Domain Name System (DNS) service lets you create and manage your DNS zones. You can create zones, add records to zones, and allow Oracle Cloud Infrastructure's edge network to handle your domain's DNS queries.
Which is NOT considered a security resource within Oracle Cloud Infrastructure?
A. Network Security Group B. Web Application Firewall C. File Storage Service D. Security Lists
Answer: C
Explanation: Oracle Cloud Infrastructure File Storage service provides a durable, scalable,
secure, enterprise-grade network file system. You can connect to a File Storage service file
system from any bare metal, virtualmachine, or container instance in your Virtual Cloud
Network (VCN).
You can control the access of the file system from FSS by applying some security rules
and others but the services it self not related to security but it related to shared storage
nce:
https://docs.cloud.oracle.com/en-us/iaas/Content/File/Concepts/filestorageoverview.htm
Question # 9
Which three components are part of Oracle Cloud Infrastructure Identity and Access
Management service?
A. Virtual Cloud Networks B. Policies C. Regional Subnets D. Dynamic Groups E. Roles F. Compute Instances G. Users
Answer: B,D,G Explanation: IAM components are
RESOURCE
Thecloud objects that your company's employees create and use when interacting with
Oracle Cloud Infrastructure. For example: compute instances, block storage volumes,
virtual cloud networks (VCNs), subnets, route tables, etc.
USER
An individual employee or system that needs to manage or use your company's Oracle
Cloud Infrastructure resources. Users might need to launch instances, manage remote
disks, work with your virtual cloud network, etc. End users of your application are not
typically IAM users. Users have one or more IAM credentials (see User Credentials).
POLICY
A document that specifies who can access which resources, and how. Access is granted
atthe group and compartment level, which means you can write a policy that gives a group
a specific type of access within a specific compartment, or to the tenancy itself. If you give
a group access to the tenancy, the group automatically gets the same typeof access to all
the compartments inside the tenancy. For more information, see Example
Scenario and How Policies Work. The word "policy" is used by people in different ways: to
mean an individual statement written in the policy language; to mean a collection of
statements in a single, named "policy" document(which has an Oracle Cloud ID (OCID)
assigned to it); and to mean the overall body of policies your organization uses to control
access to resources.
GROUP
A collection of users who all need the same type of access to a particular set of resources
or compartment.
DYNAMIC GROUP
A special type of group that contains resources (such as compute instances) that match
rules that you define (thus the membership can change dynamically as matching resources
are created or deleted). These instances act as "principal" actors and can make API calls
to services according to policies that you write for the dynamic group.
NETWORK SOURCE
A group of IP addresses that are allowed to access resources in your tenancy. The IP
addresses can be public IP addresses or IP addressesfrom a VCN within your tenancy.
After you create the network source, you use policy to restrict access to only requests that
originate from the IPs in the network source. COMPARTMENT
A collection of related resources. Compartments are a fundamental component of Oracle
Cloud Infrastructure for organizing and isolating your cloud resources. You use them to
clearly separate resources for the purposes of measuring usage and billing, access
(through the use of policies), and isolation (separating the resourcesfor one project or
business unit from another). A common approach is to create a compartment for each
major part of your organization. For more information, see Setting Up Your Tenancy.
TENANCY
The root compartment that contains all of your organization's Oracle Cloud Infrastructure
resources. Oracle automatically creates your company's tenancy for you. Directly within the
tenancy are your IAM entities (users, groups, compartments, and some policies; you can
also put policies into compartments inside the tenancy). You place the other types of cloud
resources (e.g., instances, virtual networks, block storage volumes, etc.) inside the
compartments that you create.
HOME REGION
The region where your IAM resources reside. All IAM resources are global and available
across all regions, but the master set of definitions reside in a single region, the home
region. You must make changes to your IAM resources in your homeregion. The changes
will be automatically propagated to all regions. For more information, see Managing
Regions.
FEDERATION
A relationship that an administrator configures between an identity provider and a service
provider. When you federate Oracle Cloud Infrastructure with an identity provider, you
manage users and groups in the identity provider. You manage authorization in Oracle
Cloud Infrastructure'sIAM service. Oracle Cloud Infrastructure tenancies are federated with
Oracle Identity Cloud Service by default.
Reference:
https://docs.cloud.oracle.com/en-us/iaas/data-safe/doc/iam-components.html
Question # 10
Which Oracle Cloud Infrastructure (OCI) database solution will be most economical for a
customer looking to have the elasticity of the cloud with minimal administration and maintenance effort for their DBA team?
A. OCI Bare Metal DB Systems B. OCI Virtual Machine DB Systems C. OCI Exadata DB Systems. D. OCI Autonomous Database
Answer: C Explanation: Exadata DB systems allow you to leverage the power of Exadata within the Oracle Cloud Infrastructure. An Exadata DB system consists of a basesystem, quarter rack, half rack, or full rack of compute nodes and storage servers, tied together by a highspeed, low-latency InfiniBand network and intelligent Exadata software. You can configure automatic backups, optimize for different workloads, and scale up the system to meet increased demands. Oracle now offers the Zero Downtime Migration service, a quick and easy way to move onpremises Oracle Databases and Oracle Cloud Infrastructure Classic databases to Oracle Cloud Infrastructure. You can migrate databases to the following types of Oracle Cloud Infrastructure systems: Exadata, Exadata Cloud@Customer, bare metal, and virtual machine. Zero Downtime Migration leverages Oracle Active Data Guard to create a standby instance of your database in an Oracle Cloud Infrastructure system. You switch over only when you are ready, and your source database remains available as a standby. Use the Zero Downtime Migration service to migrate databases individually or at the fleet level. See Move to Oracle Cloud Using Zero Downtime Migration for more information. Reference: https://docs.cloud.oracle.com/enus/iaas/Content/Database/Concepts/exaoverview.htm
