1. Home
  2. Oracle
  3. 1Z0-1067-22

Oracle Cloud Infrastructure 2022 Cloud Operations Professional

Exam Details

  • Exam Code
    :1Z0-1067-22
  • Exam Name
    :Oracle Cloud Infrastructure 2022 Cloud Operations Professional
  • Certification
    :Oracle Certifications
  • Vendor
    :Oracle
  • Total Questions
    :55 Q&As
  • Last Updated
    :Mar 22, 2025

Oracle Oracle Certifications 1Z0-1067-22 Questions & Answers

  • Question 11:

    You set up a bastion host in your VCN to only allow your IP address (140.19.2.140) to establish SSH connections to your Compute Instances that are deployed in a private subnet. The Compute Instances have an attached Network Security Group with a Source Type: Network Security Group (NSG), Source NSG: NSG-050504. To secure the bastion host, you added the following ingress rules to its Network Security Group:

    However, after checking the bastion host logs, you discovered that there are IP addresses other than your own that can access your bastion host.

    What is the root cause of this issue? (Choose the best answer.)

    A. The Security List allows access to all IP address which overrides the Network Security Group ingress rules.

    B. All compute instances associated with NSG-050504 are also able to connect to the bastion host.

    C. The port 22 provides unrestricted access to 140.19.2.140 and to other IP address.

    D. A netmask of /32 allows all IP address in the 140.19.2.0 network, other than your IP 140.19.2.140

  • Question 12:

    You are asked to implement the disaster recovery (DR) and business continuity requirements for Oracle Cloud Infrastructure (OCI) Block Volumes. Two OCI regions being used: a primary/source region and a DR/destination region. The requirements are:

    There should be a copy of data in the destination region to use if a region-wide disaster occurs in the source region Minimize costs

    Which design will help you meet these requirements? (Choose the best answer.)

    A. Clone block volumes. Use Object Storage lifecycle management to automatically move clone objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.

    B. Clone block volumes. Copy block volume clones from source region to destination region at regular intervals.

    C. Back up block volumes. Copy block volume backups from source region to destination region at regular intervals.

    D. Back up block volumes. Use Object Storage lifecycle management to automatically move backup objects to Archive Storage. Copy Archive Storage buckets from source region to destination at regular intervals.

  • Question 13:

    A subscriber of an Oracle Cloud Infrastructure (OCI) Notifications service topic complained about not receiving messages from the service.

    Which option can help you debug this issue? (Choose the best answer.)

    A. If OCI Notifications service does not receive an acknowledgement from a subscription endpoint, the service drops the message. Confirm that the subscriber is always online to receive messages to help debug the issue.

    B. If OCI Notifications service does not receive an acknowledgement from a subscription endpoint, check the NumberOfNotificationFailed metric through the OCI Monitoring service for failed messages. Copy these messages to an OCI Object Storage bucket. Make sure the subscriber has the required credentials to access this bucket to help debug the issue.

    C. If OCI Notifications service does not receive an acknowledgement from a subscription endpoint, the service tries to redeliver messages for up to one day. Make sure that the subscriber is online at least once a day to help debug the issue.

    D. If OCI Notifications service does not receive an acknowledgement from a subscription endpoint, the service tries to redeliver messages for up to two hours. Configure an alarm on the NumberOfNotificationFailed metric through the OCI Monitoring service to help debug the issue.

  • Question 14:

    Which statement about Oracle Cloud Infrastructure paravirtualized block volume attachments is TRUE? (Choose the best answer.)

    A. Paravirtualized volumes may reduce the maximum IOPS performance for larger block volumes.

    B. Paravirtualized is required to manage iSCSI configuration for virtual machine instances.

    C. Paravirtualized volumes become immediately available on bare metal compute instances.

    D. Paravirtualization utilizes the internal storage stack of compute instance OS and network hardware virtualization to access block volumes.

  • Question 15:

    Multiple teams are sharing a tenancy in Oracle Cloud Infrastructure (OCI). You are asked to figure out an appropriate method to manage OCI costs.

    Which is NOT a valid technique to accurately attribute costs to resources used by each team? (Choose the best answer.)

    A. Create a Cost-Tracking tag. Apply this tag to all resources with team information. Use the OCI cost analysis tools to filter costs by tags.

    B. Create separate compartment for each team. Use the OCI cost analysis tools to filter costs by compartment.

    C. Create an Identity and Access Management (IAM) group for each team. Create an OCI budget for each group to track spending.

    D. Define and use tags for resources used by each team. Analyze usage data from the OCI Usage Report which has detailed information about resources and tags.

  • Question 16:

    You have been asked to investigate a potential security risk on your company's Oracle Cloud Infrastructure (OCI) tenancy. You decide to start by looking through the audit logs for suspicious activity.

    How can you retrieve the audit logs using the OCI Command Line Interface (CLI)? (Choose the best answer.)

    A. oci audit event list –-end-time $end-time –-compartment-id $compartment-id

    B. oci audit event list –-start-time $start-time –-compartment-id $compartment-id

    C. oci audit event list –-start-time $start-time –-end-time $end-time –-compartment-id $compartment-id

    D. oci audit event list –-start-time $start-time –-end-time $end–time –-tenancy-id $tenancy–id

  • Question 17:

    You are launching a Windows server in your Oracle Cloud Infrastructure (OCI) tenancy. You provided a startup script during instance initialization, but it was not executed successfully.

    What is a possible reason for this error? (Choose the best answer.)

    A. Didn't include anything in user_data.

    B. Wrote a custom script which tried to install GPU drivers.

    C. Ran a cloudbase-init script instead of cloud-init.

    D. Specified a #directive on the first line of your script.

  • Question 18:

    You have been asked to update the lifecycle policy for object storage using the Oracle Cloud Infrastructure (OCI) Command Line Interface (CLI).

    Which command can successfully update the policy? (Choose the best answer.)

    A. oci os object-lifecycle-policy delete –ns –bn

    B. oci os object-lifecycle-policy put –ns –bn

    C. oci os object-lifecycle-policy put –ns –bn – –items

    D. oci os object-lifecycle-policy get –ns –bn

  • Question 19:

    You are using Oracle Cloud Infrastructure (OCI) services across several regions: us-phoenix-1, usashburn-1, uk-london-1 and ap-tokyo-1. You have creates a separate administrator group for each region: PHX-Admins, ASH-Admins, LHR-Admins and NRT-Admins, respectively.

    You want to restrict admin access to a specific region. E.g., PHX-Admins should be able to manage all resources in the us-phoenix-1 region only and not any other OCI regions.

    What IAM policy syntax is required to restrict PHX-Admins to manage OCI resources in the us-phoenix-1 region only? (Choose the best answer.)

    A. Allow group PHX-Admins to manage all-resources in tenancy where request.region= ‘phx’

    B. Allow group PHX-Admins to manage all-resources in tenancy where request.permission= ‘phx’

    C. Allow group PHX-Admins to manage all-resources in tenancy where request.target= ‘phx’

    D. Allow group PHX-Admins to manage all-resources in tenancy where request.location= ‘phx’

  • Question 20:

    You created an Oracle Linux compute instance through the Oracle Cloud Infrastructure (OCI) management console then immediately realize you forgot to add an SSH key file. You notice that OCI compute service provides instance console connections that supports adding SSH keys for a running instance. Hence, you created the console connection for your Linux server and activated it using the connection string provided. However, now you get prompted for a username and password to login.

    What option should you recommend to add the SSH key to your running instance, while minimizing the administrative overhead? (Choose the best answer.)

    A. You need to configure the boot loader to use ttyS0 as a console terminal on the VM.

    B. You need to terminate the running instance and recreate it by providing the SSH key file.

    C. You need to reboot the instance from the console, boot into the bash shell in maintenance mode, and add SSH keys for the opc user.

    D. You need to modify the serial console connection string to include the identity file flag, –i to specify the SSH key to use.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Oracle exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 1Z0-1067-22 exam preparations and Oracle certification application, do not hesitate to visit our Vcedump.com to find your solutions here.