Exam2pass
0 items Sign In or Register
  • Home
  • IT Exams
  • Guarantee
  • FAQs
  • Reviews
  • Contact Us
  • Demo
Exam2pass > Oracle > Oracle Certifications > 1Z0-1072-21 > 1Z0-1072-21 Online Practice Questions and Answers

1Z0-1072-21 Online Practice Questions and Answers

Questions 4

As a solution architect, you are showcasing the Oracle Cloud Infrastructure (OCI) Object Storage feature

about Object Versioning to a customer.

Which statement is true in regards to OCI Object Storage Versioning?

A. Object versioning does not provide data protection against accidental or malicious object update, overwrite, or deletion.

B. By default, object versioning is disabled on a bucket.

C. A bucket that is versioning-enabled can have only and always will have a latest version of the object in the bucket.

D. Objects are physically deleted from a bucket when versioning is enabled.

Buy Now

Correct Answer: A

Reference: https://docs.cloud.oracle.com/en-us/iaas/Content/Object/Tasks/usingversioning.htm

Questions 5

You have created a virtual cloud network (VCN) with three private subnets. Two of the subnets contain application servers and the third subnet contains a DB System. The application requires a shared file system so you have provisioned one using the file storage service (FSS). You also created the corresponding mount target in one of the application subnets. The VCN security lists are properly configured so that both application servers and the DB System can access the file system. The security team determines that the DB System should have read-only access to the file system. What change would you make to satisfy this requirement?

A. Create an NFS export option that allows READ_ONLY access where the source is the CIDR range of the DB System subnet.

B. Connect via SSH to one of the application servers where the file system has been mounted. Use the Unix command chmod to change permissions on the file system directory, allowing the database user read only access.

C. Modify the security list associated with the subnet where the mount target resides. Change the ingress rules corresponding to the DB System subnet to be stateless.

D. Create an instance principal for the DB System. Write an Identity and Access Management (IAM) policy that allows the instance principal read-only access to the file storage service.

Buy Now

Correct Answer: A

NFS export options enable you to create more granular access control than is possible using just security list rules to limit VCN access. You can use NFS export options to specify access levels for IP addresses or CIDR blocks connecting to file systems through exports in a mount target.

Questions 6

What is the default backup location for database backup on Database Cloud Service (DBCS)?

A. Object Storage on Oracle Cloud Infrastructure

B. ASM diskgroup

C. block volume

D. locally attached NVMe on Virtual Machine

Buy Now

Correct Answer: A

References: https://docs.oracle.com/en/cloud/paas/database-dbaas-cloud/csdbi/backing.html

Questions 7

What does Terraform use to create, manage, and manipulate infrastructure resources?

A. resources

B. provisioner

C. instances

D. provider

Buy Now

Correct Answer: D

The Oracle Cloud Infrastructure provider is used to interact with the many resources supported by the Oracle Cloud Infrastructure. The provider needs to be configured with credentials for the Oracle Cloud Infrastructure account.

Questions 8

You are an administrator with an application running on OCI. The company has a fleet of OCI compute virtual instances behind an OCI Load Balancer. The OCI Load Balancer Backend Set health check API is providing a `Critical' level warning. You have confirmed that your application is running healthy on the backend servers. What is the possible reason for this `Critical' warning?

A. A user does not have correct IAM credentials on the Backend Servers.

B. The Backend Server VCN's Route Table does not include the route for OCI LB.

C. OCI Load Balancer Listener is not configured correctly.

D. The Backend Server VCN's Security List does not include the IP range for the source of the health check requests.

Buy Now

Correct Answer: D

References:

"In this case, your security rules might not include the IP range for the source of the health check requests.

You can find the health check source IP on the Details page for each backend server. You can also use

the API to find the IP in the sourceIpAddress field of the HealthCheckResult object." https:// docs.cloud.oracle.com/iaas/Content/Balance/Tasks/editinghealthcheck.htm#health-status

Questions 9

Which two statements about the Oracle File Storage Service (FSS) Security are accurate? (Choose two.)

A. Oracle IAM controls which filesystems are mountable by which instances.

B. Security lists can be used as a virtual firewall to prevent an instance from mounting an FSS mount target within a subnet.

C. Encryption of file storage in FSS is optional.

D. Data in transit to an FSS mount target is encrypted.

E. FSS leverages UNIX user group and permission checking for file access security.

Buy Now

Correct Answer: DE

All data is encrypted at rest. and In-transit encryption provides a way to secure your data between instances and mounted file systems using TLS v. 1.2 (Transport Layer Security) encryption. File Storage service supports the AUTH_UNIX style of authentication and permission checking for remote NFS client requests.

Questions 10

You have an application running on Oracle Cloud Infrastructure. You identified that the read and write operations are slowing your application down enough to impair user access. The application is currently using a VM.Standard 1.2 compute without any block storage attached to it. Which two options allow you to increase disk performance? (Choose two.)

A. Terminate the compute instance preserving the boot volume. Create a new compute instance using a VM Dense IO shape using the boot volume preserved.

B. Terminate the compute instance preserving the boot volume. Create a new compute instance using a VM Standard shape and attach a new block volume to host your application.

C. Create a backup of the boot volume. Create a new compute instance using a VM Dense IO shape and restore the backup.

D. Terminate the compute instance and create a backup of the boot volume. Create a new compute instance using a VM Dense IO shape and restore the backup.

Buy Now

Correct Answer: AB

You can permanently terminate (delete) instances that you no longer need.By default, the instance's boot volume is deleted when you terminate the instance, however you can preserve the boot volume associated with the instance, so that you can attach it to a different instance as a data volume, or use it to launch a new instance. You can use a boot volume backup to create an instance or you can attach it to another instance as a data volume. However before you can use a boot volume backup, you need to restore it to a boot volume.

Questions 11

You have an application deployed in Oracle Cloud Infrastructure running only in the Phoenix region. You were asked to create a disaster recovery (DR) plan that will protect against the loss of critical dat

A. The DR site must be at least 500 miles from your primary site and data transfer between the two sites must not traverse the public Internet. Which is the recommended disaster recovery plan?

B. Create a new virtual cloud network (VCN) in the Phoenix region and create a subnet in one availability domain (AD) that is not currently being used by your production systems. Establish VCN peering between the production and DR sites.

C. Create a DR environment in Ashburn. Associate a DRG with the VCN in each region and create a remote peering connection between the two VCNs.

D. Create a DR environment in Ashburn and provision a FastConnect virtual circuit using DRG between the regions.

E. Create a DR environment in Ashburn. Associate a dynamic routing gateway (DRG) with the VCN in each region and configure an IPsec VPN connection between the two regions.

Buy Now

Correct Answer: B

Remote VCN peering is the process of connecting two VCNs in different regions (but the same tenancy ).

The peering allows the VCNs' resources to communicate using private IP addresses without routing the

traffic over the internet or through your on-premises network. Without peering, a given VCN would need an

internet gateway and public IP addresses for the instances that need to communicate with another VCN in

a different region.

At a high level, the Networking service components required for a remote peering include:

-Two VCNs with non-overlapping CIDRs, in different regions that support remote peering. The VCNs must

be in the same tenancy.

-A dynamic routing gateway (DRG) attached to each VCN in the peering relationship. Your VCN already

has a DRG if you're using an IPSec VPN or an Oracle Cloud Infrastructure FastConnect private virtual

circuit.

A remote peering connection (RPC) on each DRG in the peering relationship.

A connection between those two RPCs.

Supporting route rules to enable traffic to flow over the connection, and only to and from select subnets in

the respective VCNs (if desired).

Supporting security rules to control the types of traffic allowed to and from the instances in the subnets that

need to communicate with the other VCN.

Questions 12

You are an administrator with an application running in Oracle Cloud Infrastructure (OCI). The company has a fleet of OCI compute virtual instances behind an load balancer. The load balancer backend set health check API is providing a 'Critical' level warning. You have confirmed that your application Is running healthy on the backend servers. What Is the possible reason for this 'Critical' warning?

A. The load balancer listener is not configured correctly.

B. The security list associated with the subnet In which the backend server is provisioned does not include the IP range for the source of the health check requests.

C. A user does not have correct Identity and Access Management (IAM) credentials on the backend servers.

D. The route table associated with the subnet in which the backend server is provisioned does not include the route for the OCI load balancer.

Buy Now

Correct Answer: B

Questions 13

Which of the following two tasks can be performed in the Oracle Cloud Infrastructure Console for Autonomous Data Warehouse?

A. Adjust Network Bandwidth

B. Scale up/down Memory

C. Increase Storage allocated for Database

D. Scale up/down CPU

Buy Now

Correct Answer: CD

You can scale up/down your Autonomous Database to scale both in terms of compute (CPU) and storage only when needed, allows people to pay per use. Oracle allows you to scale compute and storage independently, no need to do it together. these scaling activities fully online (no downtime required) in Details page Autonomous Database in OCI console, click Scale Up/Down. Click on arrow to select a value for CPU Core Count or Storage (TB). Or Select auto scaling to allow the system to automatically use up to three times more CPU and IO resources to meet workload demand, compared to the database operating with auto scaling disabled.

Exam Code: 1Z0-1072-21
Exam Name: Oracle Cloud Infrastructure 2021 Architect Associate
Last Update: May 25, 2026
Questions: 239

PDF (Q&A)

$45.99
ADD TO CART

VCE

$49.99
ADD TO CART

PDF + VCE

$59.99
ADD TO CART

Exam2Pass----The Most Reliable Exam Preparation Assistance

There are tens of thousands of certification exam dumps provided on the internet. And how to choose the most reliable one among them is the first problem one certification candidate should face. Exam2Pass provide a shot cut to pass the exam and get the certification. If you need help on any questions or any Exam2Pass exam PDF and VCE simulators, customer support team is ready to help at any time when required.

Home | Guarantee & Policy |  Privacy & Policy |  Terms & Conditions |  How to buy |  FAQs |  About Us |  Contact Us |  Demo |  Reviews

2026 Copyright @ exam2pass.com All trademarks are the property of their respective vendors. We are not associated with any of them.