Oracle Oracle Certifications 1Z0-574 Questions & Answers

• Question 41:

  Which statements are correct with regard to the layers in the Logical View of Service-Oriented Integration (SOI)?

  A. Upper layers in the architecture leverage capabilities provided by lower layers.

  B. Upper layers are allowed to access capabilities in any lower layer.

  C. Upper layers are allowed to access capabilities only in the next lower layer.

  D. Each layer encapsulates specific capabilities required by the entire architecture.

  E. Each layer encapsulates optional capabilities of the architecture; thus any layer can be omitted from the architecture.

  F. The layers are used to partition the capabilities of the architecture, but otherwise have no architectural significance.

  Correct Answer: ACD

  Explanation:

  Each layer encapsulates specific capabilities for the overall architecture. Upper layers in the architecture

  leverage the capabilities provided by the lower layers. Generally, upper layers call lower layers in the architecture and the reverse (i.e. lower levels calling upper layers) is prohibited.

  

  References:

• Question 42:

  Which statements are correct for service contracts?

  A. Each SOA Serviceincludes a service contract.

  B. When using web services, the WSDL for the web service is the service contract.

  C. A service contract defines the functional and non-functional capabilities provided by an SOA Service.

  D. A service contract defines which clients are allowed to access a particular SOA Service.

  E. A service contract is optional documentation that might be provided for an SOA Service.

  Correct Answer: AC

  Explanation:

  A: All Services must have a contract that adheres to a predefined template.

  C: A contract describes the Service in human-readable terms, enabling a solution designer to determine its capabilities and characteristics. It includes both functional and non-functional terms. The functional aspect of a contract describes the available operations of a Service and their functional capabilities. It should be stated using business terms, in order to promote alignment of Services to business concepts. Contracts also specify non-functional aspects of Service, such as invocation protocols, security requirements, semantics, transaction requirements, invocation style, quality of Service, etc.

  References:

• Question 43:

  Which of the following is not a key function of an identity management system?

  A. user provisioning

  B. password maintenance and self-service

  C. approval workflow

  D. LDAP integration

  E. authentication

  Correct Answer: BE

  Explanation:

  References:

• Question 44:

  What does access to Consolidated Information in Complex Distributed Environments require?

  A. siloedIT management and monitoring tools such as event managers and network managers.

  B. architects and engineers to reverse engineer applications to determine dependencies across components

  C. Access to information concerning dynamicinterdependences acrossinfrastructurecomments.

  D. Following for diagnosing and correlating problems in complex, distributed environments.

  E. a strong bottom-up approach to IT management to focus on the status of individual low-level Infrastructure components

  Correct Answer: C

  Explanation: Infrastructure components have become more dependent on one another, with many of these interdependencies crossing corporate boundaries. Without access to information concerning these dynamic interdependencies, diagnosing and correlating problems in a complex, distributed environment is a huge challenge.

  References:

• Question 45:

  A modular approach has been taken to document the Oracle Reference Architecture (ORA). Select the statements that are true for this modular approach?

  A. The ORA library has a document dedicated to each Oracle product suite.

  B. ORA is a collection of reference architectures, some based on specific technologies (Technology Perspectives), and some on industry verticals (Industry Perspectives).

  C. ORA is a single-reference architecture but is documented via different views of the architects-some focused on specific technologies (Technology Perspectives), and some on industry verticals (Industry Perspectives).

  D. The number of Technology Perspectives and Industry Perspectives will increase over time.

  E. The technology Perspectives are complete, but the Industry Perspectives will increase over time as more verticals are Included.

  Correct Answer: ACD

  Explanation:

  A: The scope of ITSO is all of Oracle's product families. However, the Oracle technology real estate is extremely large and evolves as new products are introduced. Thus, the ITSO material will continue to grow as more ORA documents are created, additional ETSs are covered, and additional ESDs are created. C, D:Technology perspectives extend the core material by adding the unique capabilities, components, standards, and approaches that a specific technology strategy offers. SOA, BPM, EPM/BI, and EDA are examples of perspectives for ORA. Each technology strategy presents unique requirements to architecture that includes specific capabilities, principles, components, technologies, standards, etc. Rather than create another reference architecture for each strategy, ORA was designed to be extensible to incorporate new computing strategies as they emerge in the industry.

  In order to present the reference architecture in the most effective manner, each new technology strategy adds a perspective to ORA. This enables the reference architecture to evolve holistically. New computing strategies extend the core material, providing further insight and detail as needed. A perspective extends the ORA core collateral by providing views, principles, patterns, and guidelines that are significant to that technology domain yet cohesive with the overall ORA. The perspective includes:

  *

  A foundation document describing the terms, concepts, standards, principles, etc. that are important to the ETS.

  *

  An infrastructure document that defines a reference architecture built using the technologies pertinent to the ETS.

  An industry reference architecture is a set of high level architectural representations which characterize the current state architecture of an enterprise and a desired state, or architectural vision, based on the ORA.

  References:

• Question 46:

  How do you enable risk profiling on the Authentication Service?

  A. Risk profiling is a feature of Oracle Identity Manager (OIM). It can be performed on any collection of users, groups, and/or roles. Risk profiling is an available option for OIM 11g. An administrator must install the license and configure the set of identities to profile.

  B. Risk profiling is a standard feature of Oracle Access Manager (OAM). It is enabled by default, but configured to only profile administrative Identities. The OAM administrator can configure additional identities individually, or by group, or enable profiling on all users.

  C. Risk profiling is a feature of Oracle Adaptive Access Manager (OAAM), OAAM works in conjunction with OAM to provide value-add authentication features. OAAM will assess anomalies based on configurable rules, behavior, and risk analysis and will challenge users when risks ore detected.

  D. Risk profiling is a feature of Oracle Advanced Security. This comprehensive suite provides value- odd authentication and authorization capabilities including multi-factor authentication and rule-based authorization. OAS is a separately installed product that integrates with OAM, OIM, and Oracle Entitlements Server (OES).

  E. Risk profiling is a feature of Oracle Virtual Directory (OVD). It will assess risk based on login attempts, login devices, login locations, and so on, and take action based on configurable rules. Possible actions include denying access, terminating sessions, and raising alerts. Sample rules are provided out of the box, and additional rules can be added via the IVD administrative console.

  Correct Answer: C

  Explanation:

  The Oracle Adaptive Access Manager (OAAM) is part of the Oracle Identity Management product suite that

  provides access control services to web and other online applications.

  The premise was simple in that the existing authentication technologies were unsatisfactory and easy to

  compromise. No authenticationtechnology can really provide its full and intended security benefits unless

  the computer and computer network are re-designed from the grounds up. Oracle Adaptive Access

  Manager has two components, the strong Authentication-agnostic security component and the application-

  agnostic Risk component. One simple example of the Strong Authentication component is that a User can

  choose a personalized keypad and use mouse clicks to enter password to prevent passwords being stolen

  with key loggers and being phished or pharmed. The Risk Component analyzes the authentication and

  transaction data for abnormalities and anomalies in real-time to prevent fraud and also in off-line mode to

  identify and detect internet fraud.

  Note:

  Oracle Access Manager (OAM) - OAM provides an identity management and access control system that is

  shared by all applications. It offers a centralized and automated single sign-on (SSO) solution for

  managing who has access to what information across IT infrastructure.

  Oracle Adaptive Access Manager (OAAM) - OAAM provides superior protection for businesses and their

  customers through strong yet easy-to-deploy multifactor authentication and proactive, real-time fraud

  prevention. Oracle Identity Manager (OIM) - OIM is a user provisioning and administration solution that

  automates the process of adding, updating, and deleting user accounts from applications and directories;

  and improves regulatory compliance by providing granular reports that attest to who has access to what

  resources Oracle Virtual Directory (OVD) - OVD virtually aggregates identity information from multiple

  sources and presents a real-time unified view without storing or copying the identity data itself.

• Question 47:

  Which of the following are primary parts of a SOA Service as defined by the Oracle Reference Architecture?

  A. Service Contract

  B. Usage Agreement

  C. Service Infrastructure

  D. Service Implementation

  E. Service Interface

  F. Web Services Description Language (WSDL)

  Correct Answer: ADE

  Explanation:

  The three primary parts of a SOA Service as defined by ORA are contract, interface, and implementation.

  Note:

  A Service Contract describes the SOA Service in human-readable terms. The Service Implementation is

  the technical realization of the contract. I A Service Interface provides a means for the consumers of a

  SOA Service to access its functionality according to the Service Contract.

  References:

• Question 48:

  What are the two primary approaches of visualization?

  A. Server Visualization - creating multiple logical virtual machines on top of a single hardware platform

  B. Server Consolidation - abstracting the complexities of the underlying pool of servers by creating aggregated logical machines

  C. Server Management - managing the servers by using a single-point management interface

  D. Server Sprawl - leads to a disproportionate amount of physical server machines running at very low rates of usage

  Correct Answer: BC

• Question 49:

  Which of the following statements are true?

  A. When a DMZis used, all components of the architecture are deployed into the demilitarized zone.

  B. Secure Internet protocols, such as HTTPS, enable the deployment of the full UI stack without the use of a firewall.

  C. Traditional "fat client" applications may be deployed across the Internet along with browsers and mobile devices.

  D. The ORA UI architecture may be deployed in a cloud environment by using virtual servers.

  Correct Answer: BD

• Question 50:

  Which of the following statements are true with regard to the Service Contract as defined by the Oracle Reference Architecture (ORA)?

  A. A Service Contract defines the contract between a service consumer and a service provider.

  B. A Service Contract defines the functional and nonfunctional capabilities of the SOA ServiceiIn human-readable terms.

  C. The Web Services Description Language (WSDL) defines the Service Contract for a Web Service.

  D. A Service Contract defines the totality of what the SOA Service provides, independent of individual service consumers.

  E. A Service Contract Is an optional part of an SOA Service, providing human-readable documentation of the SOA Service.

  Correct Answer: B

  Explanation:

  SOA Services include a contract that specifies the functional and non-functional capabilities provided.

  In order to support business-level composition, the SOA Service must have a contract that is understandable to a business person.

  References: