Oracle Oracle Certifications 1Z0-997-20 Questions & Answers

• Question 81:

  You work for a German company as the Lead Oracle Cloud Infrastructure architect. You have designed a highly scalable architecture for your company's business critical application which uses the Load Balancer service auto which uses the Load Balancer service, autoscaling configuration for the application servers and a 2 Node VM Oracle RAC database. During the peak utilization period of the- application yon notice that the application is running slow and customers are complaining. This is resulting in support tickets being created for API timeouts and negative sentiment from the customer base.

  What are two possible reasons for this application slowness?

  A. Autoscaling configuration for the application servers didn't happen due to IAM policy that's blocking access to the application server compartment

  B. The Load Balancer configuration is not sending traffic to the listener of the application servers.

  C. Autoscaling configuration for the application servers didn't happen due to compartment quota breach of the VM shapes used by the application servers.

  D. Autoscaling configuration for the application servers didn't happen due to service limit breach of the VM shapes used by the application servers

  E. The Load Balancer doesn't have a Network Security Group to allow traffic to the application servers.

  Correct Answer: CD

  Autoscaling Autoscaling enables you to automatically adjust the number of Compute instances in an instance pool based on performance metrics such as CPU utilization. This helps you provide consistent performance for your end users during periods of high demand, and helps you reduce your costs during periods of low demand. Prerequisites

  -

  You have an instance pool. Optionally, you can attach a load balancer to the instance pool. For steps to create an instance pool and attach a load balancer, see Creating an Instance Pool.

  -

  Monitoring is enabled on the instances in the instance pool. For steps to enable monitoring, see Enabling Monitoring for Compute Instances.

  -The instance pool supports the maximum number of instances that you want to scale to.

  This limit is

  determined by your tenancy's service limits.

  About Service Limits and Usage

  When you sign up for Oracle Cloud Infrastructure, a set of service limits are configured for your tenancy.

  The service limit is the quota or allowance set on a resource. For example, your tenancy is allowed a maximum number of compute instances per availability domain. These limits are generally established with your Oracle sales representative

  when you purchase Oracle Cloud Infrastructure.

  Compartment Quotas

  Compartment quotas are similar to service limits; the biggest difference is that service limits are set by Oracle, and compartment quotas are set by administrators, using policies that allow them to allocate resources with a high level of

  flexibility.

• Question 82:

  An OCI Architect is working on a solution consisting of analysis of data from clinical trials of a pharmaceutical company. The data is being stored in OCI Autonomous Data Warehouse (ADW) having 8 CPU Cores and 70 TB of storage. The architect is planning to setup autoscaling to respond to dynamic changes in the workload.

  Which of the following needs to be considered while configuring auto scaling? Choose two

  A. Enabling auto scaling does not change the concurrency and parallelism settings

  B. Auto scaling also scales IO throughput linearly along with CPU

  C. The database memory SGA and PGA will not get affected by the changes in the number of CPUs during auto scaling

  D. The maximum CPU cores that will be automatically allocated for this database is 16 CPUs

  Correct Answer: AB

  Auto scaling is enabled by default when you create an Autonomous Database instance or you can use Scale Up/Down on the Oracle Cloud Infrastructure console to enable or disable auto scaling. With auto scaling enabled the database can

  use up to three times more CPU and IO resources than specified by the number of OCPUs currently shown in the Scale Up/Down dialog. When auto scaling is enabled, if your workload requires additional CPU and IO resources the database

  automatically uses the resources without any manual intervention required.

  Enabling auto scaling does not change the concurrency and parallelism settings for the predefined services IO throughput depends on the number of CPUs you provision and scales linearly with the number of CPUs.

• Question 83:

  You are working for a Travel company and your travel portal application is a collection of microservices that run on Oracle Cloud Infrastructure Container Engine for Kubernetes. As per the recent security overview, you have noticed that Oracle has published a newer image of the Operating System used by the worker nodes. You want to make sure that your application doesn't face any downtime but at the same time the worker nodes gets upgraded to the latest version of the Operating System.

  What should you do to get this upgrade done without application downtime? (Choose the best answer.)

  A. 1. Shutdown the worker nodes 2. Create a new node pool 3. Manually schedule the pods on the newly built node pool

  B. 1. Create a new node pool using the latest available Operating System image. 2. Run kubectl cordon against all the worker nodes in the old pool to stop any new application pods to get scheduled 3. Run kubectl drain """"delete""local""data """"force """"ignore""daemonsets to evict any Pods that are running 4. Delete the old node pool

  C. 1. Create a new node pool using the latest available Operating System image 2. Run kubectl taint nodes """"all node""role.kubernetes.io/master"" 3. Delete the old node pool

  D. 1. Run kubectl cordon against all the worker nodes in the old pool to stop any new application pods to get scheduled 2. Run kubectl drain """"delete""local""data """"force """"ignore""daemonsets to evict any Pods that are running 3. Download the patches for the new Operating System image 4. Patch the worker nodes to the latest Operating System image

  Correct Answer: B

  https://docs.cloud.oracle.com/en-us/iaas/Content/ContEng/Tasks/contengupgradingk8sworkernode.htm

• Question 84:

  An online registration system Is currently hosted on one large Oracle Cloud Infrastructure (OCT) Bare metal compute Instance with attached block volume to store of the users' data. The registration system accepts the Information from the user, Including documents and photos then performs automated verification and processing to check it the user is eligible for registration.

  The registration system becomes unavailable at tunes when there is a surge of users using the system the existing architecture needs improvement as it takes a long time for the system to complete the processing and the attached block volumes are not large enough to use data being uploaded by the users.

  Which Is the most effective option to achieve a highly scalable solution?

  A. Attach more Block volumes as the data volume increase, use Oracle Notification Service (ONS) to distribute tasks to a pool of compute instances working In parallel, and Auto Scaling to dynamically size the pool of Instances depending on the number of notifications received from the Notification Service. Use Resource Manager stacks to replicate your architecture to another region.

  B. Change your architecture to use an OCI Object Storage standard tier bucket, replace the single bare metal instance with a Oracle Streaming Service (OSS) to ingest the Incoming requests and distribute the tasks to a group of compute Instances with Auto Scaling

  C. Upgrade your architecture to use a pool of Bare metal servers and configure them to use their local SSDs for faster data access Set up Oracle Streaming Service (OSS) to distribute the tasks to the pool of Bare metal Instances with Auto Scaling to dynamically increase or decrease the pool of compute instances depending on the length of the Streaming queue.

  D. Upgrade your architecture to use more Block volumes as the data volume Increases. Replace the single bare metal instance with a group of compute instances with Auto Scaling to dynamically increase or decrease the compute instance pools depending on the traffic.

  Correct Answer: D

• Question 85:

  You are part of a project team working in the development environment created in Oracle Cloud Infrastructure (OCI). You realize that the CIDR block specified for one of the subnets in a Virtual Cloud Network (VCN) is not correct and want to delete the subnet. While deleting you get an error indicating that there are still resources that you must delete first. The error includes the OCID of the VNIC that is in the subnet.

  Which of the following action you will take to troubleshoot this issue?

  A. Use OCI CLI to call "network vnic" and "compute vnic-attachment" operations to find out the parent resource of the VNIC.

  B. Use OCI CLI to delete the VNIC first and then delete the subnet.

  C. Use OCI CLI to delete the subnet using -force option.

  D. Copy and paste OCID of the VNIC in the search box of the OCI Console to find out the parent resource of the VNIC.

  Correct Answer: A

• Question 86:

  Which of the below options for private access to services within Oracle Cloud Infrastructure (OCI) is NOT valid?

  A. You cannot use the private endpoint for hosts in the on-premises network.

  B. Traffic from an OCI compute instance going through a Service Gateway to Object Storage is routed without being sent over the internet.

  C. You can enable private access to certain services within OCI from your Virtual Cloud Network by using either a private endpoint or a service gateway.

  D. The private endpoint gives hosts within your Virtual Cloud Network access to a given service within Oracle Cloud Infrastructure.

  Correct Answer: A

• Question 87:

  Your team is conducting a root analysis (RCA) following a recent, unplanned outage. One of the block volumes attached to your production WebLogic server was deleted and you have tasked with identifying the source of the action. You search the Audit logs and find several Delete actions that occurred in the previous 24 hours. Given the sample of this event.

  

  Which item from the event log helps you identify the individual or service that initiated the DeleteVolume API call?

  A. requestAgent

  B. eventource

  C. principalld

  D. requestOrigin

  E. eventId

  Correct Answer: C

  The Oracle Cloud Infrastructure Audit service automatically records calls to all supported Oracle Cloud Infrastructure public application programming interface (API) endpoints as log events. Currently, all services support logging by Audit.

  Every audit log event includes two main parts:

  Envelopes that act as a container for all event messages Payloads that contain data from the resource emitting the event message The identity object contains the following attributes. data.identity.authType The type of authentication used.

  data.identity.principalId The OCID of the principal. data.identity.principalName The name of the user or service. This value is the friendly name associated with principalId .

• Question 88:

  You have designed and deployed your Autonomous Data Warehouse (ADW) such that it is accessible from your on-premises data center and servers running on both private and public networks in Oracle Cloud Infrastructure (OCI).

  

  As you are testing the connectivity to your ADW database from the different access paths, you notice that the server running on the private network is unable to connect to ADW.

  Which two steps do you need to take to enable connectivity from the server on the private network to ADW? (Choose two.)

  A. Add an entry in the Security List of the ADW allowing ingress traffic for C10R block 10.2.2.0/24

  B. Add an entry in the route table (associated with the private subnet) with destination of 0.0.0.0/: target type of NAT Gateway, add a stateful egress rule to the security list (associated with the private subnet) with destination of 0.0.0.0./0 and for all IP protocols.

  C. Add an entry in the access table list of ASW for CIDR block 10.2.2.0/24.

  D. Add an entry in the route table (associated with the private subnet) with destination of 0.0.0.0./0; target type of internet Gateway, add a stateful egress in the security list (associated with the private subnet) with destination of 0.0.0.0/0 and for all IP protocols.

  E. Add an entry in the access control list of ADW for IP address 129.146.160.11

  Correct Answer: BE

  There are 3 connections to ADW 1- Connecting to (ADW) from Public Internet 2- Connecting to ADW (via NAT or Service Gateway) from a server running on a private subnet in OCI (in the same tenancy) 3- Connecting to ADW (via internet Gateway) from a server running on a public subnet in OCI (in the same tenancy

• Question 89:

  A FinTech startup is developing a new blockchain based application to provide Smart Contracts using micro-services architecture. The development team is planning to deploy the application using containers and looking for a reliable way to build, deploy and manage their cloud-native application.

  Additionally, they need an easy way to store, share and manage their application artifacts.

  Which option should you recommend for this application?

  A. Install and manage a Kubernetes cluster on OCI Compute Instances and use OCI Resource Manager for management of application artifacts

  B. Use and OCI Resource Manager to manage cloud-native application and make the application artifacts available using OCI Functions

  C. Use Oracle Container Engine for Kubernetes (OKE) to manage of cloud-native applications and OCI Registry for application artifacts

  D. Use Oracle Container Engine for Kubernetes (OKE) to manage the deployment environment and OCI Functions for application artifacts

  Correct Answer: C

  Oracle Cloud Infrastructure Container Engine for Kubernetes is a fully-managed, scalable, and highly available service that you can use to deploy your containerized applications to the cloud. Use Container Engine for Kubernetes (sometimes abbreviated to just OKE) when your development team wants to reliably build, deploy, and manage cloud-native applications. You specify the compute resources that your applications require, and Container Engine for Kubernetes provisions them on Oracle Cloud Infrastructure in an existing OCI tenancy.

  Oracle Cloud Infrastructure Registry is an Oracle-managed registry that enables you to simplify your development to production workflow. Oracle Cloud Infrastructure Registry makes it easy for you as a developer to store, share, and manage development artifacts like Docker images. And the highly available and scalable architecture of Oracle Cloud Infrastructure ensures you can reliably deploy your applications.

  So you don't have to worry about operational issues, or scaling the underlying infrastructure.

• Question 90:

  You are creating a compute instance using Oracle Cloud Infrastructure (OCI) Console. You decide to use Oracle provided image for the compute instance launch. Which option is TRUE when using Oracle provided images?

  A. On Windows images, custom user data scripts are executed using cloud-init to perform various tasks such as enabling GPU support.

  B. Oracle provided images do not support the ability to supply a custom metadata during instance launch.

  C. For a Linux based image, access to host over the internet is permitted only via SSH protocol and all other remote access is disabled.

  D. If you choose a non-Windows image, the only way to download and update packages is by running apt or yum commands.

  Correct Answer: C

  Explanation: https://blogs.oracle.com/developers/post/working-with-oracle-cloud- infrastructure-custom-compute-images https://docs.oracle.com/en-us/iaas/Content/Compute/Tasks/managingcustomimages.htm