• Home
  • Blogs
  • [Q26-Q51] Best Quality Oracle 1Z0-1067-21 Exam Questions Actualtests4sure Realistic Practice Exams [2021]

[Q26-Q51] Best Quality Oracle 1Z0-1067-21 Exam Questions Actualtests4sure Realistic Practice Exams [2021]

Share

Best Quality Oracle 1Z0-1067-21 Exam Questions Actualtests4sure Realistic Practice Exams [2021]

Critical Information To Oracle Cloud Infrastructure 2021 Cloud Operations Associate Pass the First Time

NEW QUESTION 26
You have created a geolocation steering policy in the Oracle Cloud Infrastructure (OCI) Traffic Management service, with this configuration:

What happens to requests that originate in Africa? (Choose the best answer.)

  • A. The traffic will be forwarded randomly to any of the pools mentioned in the rules.
  • B. The traffic will be forwarded to Pool 1. If Pool 1 is not available, then it will be forwarded to Pool 2.
  • C. The traffic will be dropped.
  • D. The traffic will be forwarded at the same time to both Pool 1 and Pool 2.

Answer: B

 

NEW QUESTION 27
You have recently joined a startup company and quickly find that nobody is tracking the amount of money spent on Oracle Cloud Infrastructure (OCI). Seeing an opportunity to help save money you begin creating a solution to better track the cost of resources provisioned by each individual on the team.
Which option allows you to identify excessive spend across all resources in your tenancy? (Choose the best answer.)

  • A. Create a tag namespace named BILLING with a Tag Key named CostCenter. Tag each of your resources with this Tag Key and the correct value.
  • B. Create a budget for each compartment that will send a notification when monthly spend reaches a pre- defined amount.
  • C. Use the Python SDK to write a custom application that will monitor the Audit log. Look for CREATE events and configure the application to send you an email each time a new resource is created.
  • D. Use the Events Service and create rules that will act when a new Object Storage bucket or Compute Instance has been created. Have the rule email you each time one of these events occurs.

Answer: B

 

NEW QUESTION 28
Your customer is running a set of compute instances inside a private subnet to manage their workloads on Oracle Cloud Infrastructure (OCI) tenancy. You have set up auto scaling feature to provide consistent performance to their end users during period of high demand.
Which step should be met for auto scaling to work? (Choose the best answer.)

  • A. Audit logs for the instances should be enabled.
  • B. Service gateway should be setup to allow instances to send metrics to monitoring service.
  • C. OS Management Service agent (osms) must be installed on the instances.
  • D. Monitoring for the instances should not be enabled.

Answer: A

 

NEW QUESTION 29
You have been asked to investigate a potential security risk on your company's Oracle Cloud Infrastructure (OCI) tenancy. You decide to start by looking through the audit logs for suspicious activity.
How can you retrieve the audit logs using the OCI Command Line Interface (CLI)? (Choose the best answer.)

  • A. oci audit event list --start-time $start-time --end-time $end-time -- compartment-id $compartment-id
  • B. oci audit event list --end-time $end-time --compartment-id $compartment-id
  • C. oci audit event list --start-time $start-time --end-time $end-time --tenancy-id
  • D. oci audit event list --start-time $start-time --compartment-id $compartment-id

Answer: A

Explanation:
$tenancy-id

 

NEW QUESTION 30
You have created the following JSON file to specify a lifecycle policy for one of your object storage buckets:

How will this policy affect the objects that are stored in the bucket? (Choose the best answer.)

  • A. The objects with prefix "LOGS" will be deleted 30 days after creation date.
  • B. Objects with the prefix "LOGS" will be retained for 120 days and then deleted permanently.
  • C. Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be deleted 120 days after creation.
  • D. Objects containing the name prefix LOGS will be automatically migrated from standard Storage to Archive storage 30 days after the creation date. The object will be migrated back to standard Storage 120 days after creation.

Answer: C

 

NEW QUESTION 31
You have a Linux compute instance located in a public subnet in a VCN which hosts a web application. The security list attached to subnet containing the compute instance has the following stateful ingress rule.

The Route table attached to the Public subnet is shown below. You can establish an SSH connection into the compute instance from the internet. However, you are not able to connect to the web server using your web browser.

Which step will resolve the issue? (Choose the best answer.)

  • A. In the security list, remove the ssh rule.
  • B. In the route table, add a rule for your default traffic to be routed to service gateway.
  • C. In the security list, add an ingress rule for port 80 (http).
  • D. In the route table, add a rule for your default traffic to be routed to NAT gateway.

Answer: B

 

NEW QUESTION 32
Recently, your e-commerce web application has been receiving significantly more traffic than usual. Users are reporting they often encounter a 503 Service Error when trying to access your site. Sometimes the site is very slow.
You check your instance pool configuration to confirm that the maximum number of instances is configured to allow 20 compute instances. Currently, 14 compute instances have been provisioned by the instance pool.
You also confirm that current CPU utilization across all hosts exceeds the scale-out threshold you set in your auto-scaling policy. However, the instance pool is not provisioning any new instances.
What can you check to determine why the application is NOT functioning properly? (Choose the best answer.)

  • A. Verify that the new offer feature code did not introduce any performance bugs.
  • B. Verify that the Quality Assurance team is not currently performing load-testing against production.
  • C. Verify that the compute resource quota has not been exceeded.
  • D. Verify that the database is accessible.

Answer: C

 

NEW QUESTION 33
You are using Oracle Cloud Infrastructure (OCI) console to set up an alarm on a budget to track your OCI spending.
Which two are valid targets for creating a budget in OCI? (Choose two.)

  • A. Select group as the type of target for your budget.
  • B. Select Cost-Tracking Tags as the type of target for your budget.
  • C. Select user as the type of target for your budget.
  • D. Select Tenancy as the type of target for your budget.
  • E. Select Compartment as the type of target for your budget.

Answer: B,E

 

NEW QUESTION 34
Your company recently adopted a hybrid cloud architecture which requires them to migrate some of their on- premises web applications to Oracle Cloud Infrastructure (OCI). You created a Terraform template which automatically provisions OCI resources such as compute instances, load balancer, and a database instance. After running the stack using the terraform apply command, it successfully launched the compute instances and the load balancer, but it failed to create a new database instance with the following error:
Service error: NotAuthorizedOrNotFound. shape VM.Standard2.4 not found. http status code: 404 You discovered that the resource quotas assigned to your compartment prevent you from using VM.Standard2.4 instance shapes available in your tenancy. You edit the Terraform script and replace the shape with VM.Standard2.2 Which option would you recommend to re-run the terraform command to have required OCI resources provisioned with the least effort? (Choose the best answer.)

  • A. terraform refresh -target=oci_database_db_system.db_system
  • B. terraform plan -target=oci_database_db_system.db_system
  • C. terraform apply -auto-approve
  • D. terraform apply -target=oci_database_db_system.db_system

Answer: D

 

NEW QUESTION 35
What is a key benefit of using Oracle Cloud Infrastructure's Resource Manager for your Terraform provisioning and management activities? (Choose the best answer.)

  • A. You can use Resource Manager to identify and maintain an inventory of all Compute and Database instances across your tenancy.
  • B. Resource Manager has administrative privileges by design. Even if your IAM user does not have access, you can leverage Resource Manager to provision new resources to any compartment in the Tenancy.
  • C. Resource Manager manages to Terraform state file for your infrastructure and locks the file so that only one job at a time can run on a given stack.
  • D. You can use Resource Manager to apply patches to all existing Oracle Linux interfaces in a specified compartment.

Answer: C

 

NEW QUESTION 36
You have a web application running on Oracle Cloud Infrastructure (OCI) that lets users log in with a username and password. You notice that an attacker has tried to use SQL comment "--" to alter the database query, remove the password check and log in as a user. You decide to prevent any future attacks.
Which of the following OCI services or features would you choose to safeguard your application? (Choose the best answer.)

  • A. Network Security Group
  • B. Web Application Framework (WAF)
  • C. Vault
  • D. Data Safe

Answer: C

 

NEW QUESTION 37
You have ordered two FastConnect connections that provide a high availability connection architecture between your on-premises data center and Oracle Cloud Infrastructure (OCI). You want to run these connections in an ACTIVE/PASSIVE architecture.
How can you accomplish this? (Choose the best answer.)

  • A. Enable BGP on the FastConnect that you want as the ACTIVE connection.
  • B. Use AS PATH prepending with your routes.
  • C. Adjust one of the connections to have a higher ASN.
  • D. Decrease the prefix length of AS for the FastConnect you want to use as PASSIVE connection.

Answer: B

 

NEW QUESTION 38
You have been monitoring your company's applications running in Oracle Cloud Infrastructure (OCI) and notice that the application is using OCI Traffic Management service. This service uses a traffic steering policy to distribute the DNS traffic based on subnet addresses in a rule set.
Which steering policy is in use in this particular case? (Choose the best answer.)

  • A. IP Prefix steering
  • B. ASN steering policy
  • C. Load Balancing policy
  • D. Geolocation steering

Answer: B

 

NEW QUESTION 39
You set up a bastion host in your VCN to only allow your IP address (140.19.2.140) to establish SSH connections to your Compute Instances that are deployed in a private subnet. The Compute Instances have an attached Network Security Group with a Source Type: Network Security Group (NSG), Source NSG: NSG-050504. To secure the bastion host, you added the following ingress rules to its Network Security Group:
However, after checking the bastion host logs, you discovered that there are IP addresses other than your own that can access your bastion host.
What is the root cause of this issue? (Choose the best answer.)

  • A. The Security List allows access to all IP address which overrides the Network Security Group ingress rules.
  • B. The port 22 provides unrestricted access to 140.19.2.140 and to other IP address.
  • C. All compute instances associated with NSG-050504 are also able to connect to the bastion host.
  • D. A netmask of /32 allows all IP address in the 140.19.2.0 network, other than your IP 140.19.2.140

Answer: C

 

NEW QUESTION 40
The boot volume on your Oracle Linux instance has run out of space. Your application has crashed due to a lack of swap space, forcing you to increase the size of the boot volume.
Which step should NOT be included in the process used to solve the issue? (Choose the best answer.)

  • A. Attach the resized boot volume to a second instance as a data volume; extend the partition and grow the file system in the resized boot volume.
  • B. Stop the instance and detach the boot volume.
  • C. Create a RAID 0 configuration to extend the boot volume file system onto another block volume.
  • D. Resize the boot volume by specifying a larger value than the boot volume's current size.
  • E. Reattach the boot volume and restart the instance.

Answer: A

 

NEW QUESTION 41
An insurance company has contracted you to help automate their application business continuity plan. They have the application running in eu-frankfurt-1 as the primary site and uk-london-1 as a disaster recovery site. Normally they have a DNS A record associated with the IP address of the primary endpoint in eu-frankfurt-1. In the event of a disaster, they use OCI DNS Zone Management to update the A record and replace it with the IP address of the endpoint in uk-londond-1.
How can you automate the failover process? (Choose the best answer.)

  • A. Provision a Load Balancer in Frankfurt and associate it with the A record in DNS. Create a backend set with backend servers from both eu-frankfurt-1 and uk-london-1 regions.
  • B. Create a Traffic Management Steering policy with Load Balancer type and add both eu-frankfurt-1 and uk- london-1 endpoints. Attach the Traffic Management Steering policy to the A record.
  • C. Create a Traffic Management Steering policy and attach it to a backend servers from both eu-frankfurt-1 and uk-london-1 regions.
  • D. Create a Health Check that evaluates both regional endpoints. Create a Traffic Management Steering policy with Failover type and associate it with the Health Check.

Answer: B

 

NEW QUESTION 42
You are asked to implement the disaster recovery (DR) and business continuity requirements for Oracle Cloud Infrastructure (OCI) Block Volumes. Two OCI regions being used: a primary/source region and a DR/ destination region. The requirements are:
There should be a copy of data in the destination region to use if a region-wide disaster occurs in the source region Minimize costs Which design will help you meet these requirements? (Choose the best answer.)

  • A. Clone block volumes. Use Object Storage lifecycle management to automatically move clone objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.
  • B. Back up block volumes. Use Object Storage lifecycle management to automatically move backup objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.
  • C. Clone block volumes. Copy block volume clones from source region to destination region at regular intervals.
  • D. Back up block volumes. Copy block volume backups from source region to destination region at regular intervals.

Answer: B

 

NEW QUESTION 43
Multiple teams are sharing a tenancy in Oracle Cloud Infrastructure (OCI). You are asked to figure out an appropriate method to manage OCI costs.
Which is NOT a valid technique to accurately attribute costs to resources used by each team? (Choose the best answer.)

  • A. Create a Cost-Tracking tag. Apply this tag to all resources with team information. Use the OCI cost analysis tools to filter costs by tags.
  • B. Define and use tags for resources used by each team. Analyze usage data from the OCI Usage Report which has detailed information about resources and tags.
  • C. Create an Identity and Access Management (IAM) group for each team. Create an OCI budget for each group to track spending.
  • D. Create separate compartment for each team. Use the OCI cost analysis tools to filter costs by compartment.

Answer: C

 

NEW QUESTION 44
You launched a Linux compute instance to host the new version of your company website via Apache Httpd server on HTTPS (port 443). The instance is created in a public subnet along with other instances. The default security list associated to the subnet is:

You want to allow access to the company website from public internet without exposing websites eventually hosted on the other instances in the public subnet.
Which action would you take to accomplish the task? (Choose the best answer.)

  • A. In default security list, add a stateful rule to allow ingress access on port 443.
  • B. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the public subnet that hosts the company website.
  • C. Create a network security group, add a stateful rule to allow ingress access on port 443 and associate it to the instance that hosts the company website.
  • D. Create a new security list with a stateful rule to allow ingress access on port 443 and associate it to the public subnet.

Answer: C

 

NEW QUESTION 45
Which two statements about the Oracle Cloud Infrastructure (OCI) Command Line Interface (CLI) are TRUE? (Choose two.)

  • A. You can run CLI commands from inside OCI Regions only.
  • B. The CLI provides an automatic way to connect with instances provisioned on OCI.
  • C. The CLI provides the same core functionality as the Console, plus additional commands.
  • D. You can filter CLI output using the JMESPath query option for JSON.
  • E. The CLI allows you to use the Python language to interact with OCI APIs.

Answer: C,D

 

NEW QUESTION 46
You are using Oracle Cloud Infrastructure (OCI) services across several regions: us-phoenix-1, us-ashburn-1, uk-london-1 and ap-tokyo-1. You have creates a separate administrator group for each region: PHX-Admins, ASH-Admins, LHR-Admins and NRT-Admins, respectively.
You want to restrict admin access to a specific region. E.g., PHX-Admins should be able to manage all resources in the us-phoenix-1 region only and not any other OCI regions.
What IAM policy syntax is required to restrict PHX-Admins to manage OCI resources in the us-phoenix-1 region only? (Choose the best answer.)

  • A. Allow group PHX-Admins to manage all-resources in tenancy where request.permission= 'phx'
  • B. Allow group PHX-Admins to manage all-resources in tenancy where request.target= 'phx'
  • C. Allow group PHX-Admins to manage all-resources in tenancy where request.region= 'phx'
  • D. Allow group PHX-Admins to manage all-resources in tenancy where request.location= 'phx'

Answer: C

 

NEW QUESTION 47
Here is a partial code from a Terraform template written for Oracle Cloud Infrastructure (OCI):

What operation(s) does it perform? (Choose the best answer.)

  • A. Provides object read and write access for an OCI Object Storage bucket.
  • B. Creates a URL to provide access to an OCI Object Storage bucket for managing objects.
  • C. Creates a lifecycle policy for an OCI Object Storage bucket for moving data to Archival storage at a specified time.
  • D. Creates a pre-authenticated request for objects in an OCI Object Storage bucket.

Answer: A

 

NEW QUESTION 48
......

1Z0-1067-21 EXAM DUMPS WITH GUARANTEED SUCCESS: https://www.actualtests4sure.com/1Z0-1067-21-test-questions.html

Related Blogs

more
Go To 1Z0-1067-21 Questions

The best valid study guide material for better understanding of the actual test materials. Study and prepare efficiently with the products of Actualtests4sure.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 ACTUALTESTS4SURE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor. Privacy Policy