• Home
  • Articles
  • New 2022 1z0-997-21 Dumps for Oracle Cloud Solutions Infrastructure Certified Exam Questions & Answer [Q19-Q39]

New 2022 1z0-997-21 Dumps for Oracle Cloud Solutions Infrastructure Certified Exam Questions & Answer [Q19-Q39]

Share

New 2022 1z0-997-21 Dumps for Oracle Cloud Solutions Infrastructure Certified Exam Questions and Answer

Realistic Verified 1z0-997-21 exam dumps Q&As - 1z0-997-21 Free Update


Oracle 1z0-997-21 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Design scalable and elastic solutions for high availability and disaster recovery
  • Design strategy for migrating on-premises workloads to OCI
Topic 2
  • Design, implement and operate databases in OCI
  • Migrate on-premises workloads to OCI
  • Operate and troubleshoot solutions on OCI
Topic 3
  • Create architecture patterns including N-tier applications, microservices, and serverless architectures
  • Implement and troubleshoot database migrations
Topic 4
  • Design, implement and operate solutions for security and governance
  • Implement solutions to meet business and technical requirements

 

NEW QUESTION 19
A company has an application that processes confidential dat
a. The data is currently stored in an on-premises data center. A solution architect needs to move this data to Oracle Cloud Infrastructure (OCI) Object Storage and ensure data is encrypted in-transit to OCI.
Which two steps should the solution architect perform to set up the most cost-effective connection between on-premises data center and OCI?

  • A. Attach an Internet Gateway to Virtual Cloud network(VCN).
  • B. Set up VPN Connect between the customer equipment and the Dynamic Routing Gateway.
  • C. Configure a service gateway accessing Object Storage.
  • D. Set up an IPsec tunnel between the customer equipment and software VPN on an oci instance
  • E. Set up private end point for accessing Object Storage.
  • F. Configure a private peering connection on the Oracle FastConnect

Answer: B,C

 

NEW QUESTION 20
A FinTech startup is developing a new blockchain based application to provide Smart Contracts using micro-services architecture. The development team is planning to deploy the application using containers and looking for a reliable way to build, deploy and manage their cloud-native application.
Additionally, they need an easy way to store, share and manage their application artifacts.
Which option should you recommend for this application?

  • A. Install and manage a Kubernetes cluster on OCI Compute Instances and use OCI Resource Manager for management of application artifacts
  • B. Use and OCI Resource Manager to manage cloud-native application and make the application artifacts available using OCI Functions
  • C. Use Oracle Container Engine for Kubernetes (OKE) to manage the deployment environment and OCI Functions for application artifacts
  • D. Use Oracle Container Engine for Kubernetes (OKE) to manage of cloud-native applications and OCI Registry for application artifacts

Answer: D

Explanation:
Oracle Cloud Infrastructure Container Engine for Kubernetes is a fully-managed, scalable, and highly available service that you can use to deploy your containerized applications to the cloud. Use Container Engine for Kubernetes (sometimes abbreviated to just OKE) when your development team wants to reliably build, deploy, and manage cloud-native applications. You specify the compute resources that your applications require, and Container Engine for Kubernetes provisions them on Oracle Cloud Infrastructure in an existing OCI tenancy.
Oracle Cloud Infrastructure Registry is an Oracle-managed registry that enables you to simplify your development to production workflow. Oracle Cloud Infrastructure Registry makes it easy for you as a developer to store, share, and manage development artifacts like Docker images. And the highly available and scalable architecture of Oracle Cloud Infrastructure ensures you can reliably deploy your applications.
So you don't have to worry about operational issues, or scaling the underlying infrastructure.

 

NEW QUESTION 21
Which of the below options for private access to services within Oracle Cloud Infrastructure (OCI) is NOT valid?

  • A. The private endpoint gives hosts within your Virtual Cloud Network access to a given service within Oracle Cloud Infrastructure.
  • B. You can enable private access to certain services within OCI from your Virtual Cloud Network by using either a private endpoint or a service gateway.
  • C. Traffic from an OCI compute instance going through a Service Gateway to Object Storage is routed without being sent over the internet.
  • D. You cannot use the private endpoint for hosts in the on-premises network.

Answer: D

 

NEW QUESTION 22
You are working as a security consultant with a global insurance organization which is using Microsoft Azure Active Directory (AD) as identity provided to manager user login/passwords. When a user logs in to Oracle Cloud infrastructure (OCI) console, it should get authenticated by Azure AD.
Which set of steps are required to configure at OCI side in order to get it enabled

  • A. Setup Azure AD as an Enterprise Application, map Azure AD users and groups and policies to OCI groups and users
  • B. Setup Azure AD as an Identity Provider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups
  • C. Setup Azure AD as an Enterprise Application, configure OCI for single sign-on, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups
  • D. Setup Azure AD as an Identity Provider, Import users and groups from Azure AD to OCI, set up IAM policies to govern access to Azure AD groups

Answer: B

Explanation:
Federating with Microsoft Azure Active Directory
To federate with Azure AD, you set up Oracle Cloud Infrastructure as a basic SAML single sign-on application in Azure AD. To set up this application, you perform some steps in the Oracle Cloud Infrastructure Console and some steps in Azure AD.
Following is the general process an administrator goes through to set up the federation. Details for each step are given in the next section.
In Oracle Cloud Infrastructure, download the federation metadata document.
In Azure AD, set up Oracle Cloud Infrastructure Console as an enterprise application.
In Azure AD, configure the Oracle Cloud Infrastructure enterprise application for single sign-on.
In Azure AD, set up the user attributes and claims.
In Azure AD, download the Azure AD SAML metadata document.
In Azure AD, assign user groups to the application.
In Oracle Cloud Infrastructure, set up Azure AD as an identity provider.
In Oracle Cloud Infrastructure, map your Azure AD groups to Oracle Cloud Infrastructure groups.
In Oracle Cloud Infrastructure, set up the IAM policies to govern access for your Azure AD groups.
Share the Oracle Cloud Infrastructure sign-in URL with your user

 

NEW QUESTION 23
A global retailer has decided to re-design its e-commerce platform to have a micro-services architecture. They would like to decouple application architecture into smaller, independent services using Oracle Cloud Infrastructure (OCI). They have decided to use both containers and servers technologies to run these application instances.
Which option should you recommend to build this new platform?

  • A. Use OCI Resource Manager to automate compute Instances provisioning and use OCI Streaming service.
  • B. Use OCI functions, OCI object storage and OCI event service.
  • C. Install a kubernetes cluster on OCI and use OCI event service.
  • D. Use Oracle Container Engine for kubernetes, OCI Registry and OCI Functions.

Answer: D

Explanation:
Oracle Functions is a fully managed, multi-tenant, highly scalable, on-demand, Functions-as-a-Service platform. It is built on enterprise-grade Oracle Cloud Infrastructure and powered by the Fn Project open source engine. Use Oracle Functions (sometimes abbreviated to just Functions) when you want to focus on writing code to meet business needs.

Oracle Cloud Infrastructure Container Engine for Kubernetes is a fully-managed, scalable, and highly available service that you can use to deploy your containerized applications to the cloud. Use Container Engine for Kubernetes (sometimes abbreviated to just OKE) when your development team wants to reliably build, deploy, and manage cloud-native applications. You specify the compute resources that your applications require, and Container Engine for Kubernetes provisions them on Oracle Cloud Infrastructure in an existing OCI tenancy.

 

NEW QUESTION 24
Your organization is planning on using Oracle Cloud Infrastructure (OCI) File Storage Service (FSS). You will be deploying multiple compute instance in Oracle Cloud Infrastructure(OCI) and mounting the file system to these compute instances.
The file system will hold payment data processed by a Database instance and utilized by compute instances to create a overall inventory report. You need to restrict access to this data for specific compute instances and must be allowed/blocked per compute instance's CIDR block.
Which option can you use to secure access?

  • A. Use 'Export option' feature of FSS to restrict access to the mounted file systems.
  • B. Create and configure OCI Web Application Firewall service with built in DNS based intelligent routing.
  • C. Create a new VCN security list, choose SOURCE TYPE as Service and SOURCE SERVICE as FSS. Add stateless ingress and egress rules for specific IP address and CIDR blocks.
  • D. Use stateless Security List rule to restrict access from known IP addresses only.

Answer: A

 

NEW QUESTION 25
You are trying to troubleshoot the configuration of your Oracle Cloud Infrastructure (OCI) Load Balancing service. You have a backend HTTP service for which you have created a backend set in the load balancer. You have configured health checks for the backend set. Although the health checks appear good, customers sometimes experience transaction failures.
Which of the following options will definitely lead to this problem?

  • A. You are NOT using regional subnets in your Virtual Cloud Network. With Availability Domain (AD) specific subnet. the compute instances of the backend service running in the subnet have issues when the AD is down.
  • B. You are using OCI Domain Name System. You have misconfigured the 'A' record with the wrong IP address leading to requests not getting routed correctly.
  • C. You are using iSCI for block volume attachment to the compute instances in your backed HTTP service. TCP/IP configuration of your block volume attachment is not configured correctly, leading to issues in your backend service.
  • D. You are running a TCP-level health check against your HTTP service. The TCP handshake can succeed and indicate that the service is up even when the HTTP service has issues.

Answer: D

 

NEW QUESTION 26
You are working on the migration of the web application infrastructure of your company from on-premises to Oracle Cloud Infrastructure. You need to ensure that the DNS cache entries of external clients will not direct them to the on-premises infrastructure after switching to the new infrastructure.
Which of the following options will minimize this problem?

  • A. Reduce the TTL of the DNS records after the switch.
  • B. Increase the TTL of the DNS records after the switch.
  • C. Increase the TTL of the DNS records before the switch.
  • D. Reduce the TTL of the DNS records before the switch.
  • E. DNS changes propagate fast enough that it is not necessary to take any action.

Answer: D

 

NEW QUESTION 27
You have provisioned a new VM.DenseIO2.24 compute instance with local NVMe drives. The compute instance is running production application. This is a write heavy application, with a significant Impact to the business it the application goes down.
What should you do to help maintain write performance and protect against NVMe devices failure.

  • A. Configure RAID 10 for NVMe devices.
  • B. NVMe drive have built in capability to recover themself so no other actions are required
  • C. Configure RAID 6 for NVMe devices.
  • D. Configure RAID 1 for NVMe devices.

Answer: A

Explanation:
VM.DeselO2.24 compute instance include locally attached NVMe devices. These devices provide extremely low latency, high performance block storage that is ideal for big data, OLTP, and any other workload that can benefit from high-performance block storage.
A protected RAID array is the most recommended way to protect against an NVMe device failure. There are three RAID levels that can be used for the majority of workloads:
RAID 1: An exact copy (or mirror) of a set of data on two or more disks; a classic RAID 1 mirrored pair contains two disks RAID 10: Stripes data across multiple mirrored pairs. As long as one disk in each mirrored pair is functional, data can be retrieved RAID 6: Block-level striping with two parity blocks distributed across all member disks If you need the best possible performance and can sacrifice some of your available space, then RAID 10 array is an option.

 

NEW QUESTION 28
You are tasked with migrating an online shopping website to Oracle Cloud Infrastructure (OCI) and decide to use a Load Balancer. You have configured the backend set with the round robin policy. During the testing phase, you noticed that users are losing items from their shopping carts when they navigate to different pages.
How should you implement a solution to this problem?

  • A. Set up a Traffic Management Steering Policy to redirect traffic to a different backend set that is deployed exclusively for the purpose of holding all Items placed in the shopping cart.
  • B. Set up session persistence at the Load Balancer backend set.
  • C. Configure a set of path route rules that will route to different backend sets based on the URI requested by the customer's browser.
  • D. Replace the round robin policy with least connections policy at the backend set.

Answer: D

 

NEW QUESTION 29
An online Stock trading application is deployed to multiple Availability Domains in the us phoenix-1 region. Considering the high volume of transactions that the trading application handles, the company has hired you to ensure that the data stored by the application available, and disaster resilient. In the event of failure, the Recovery lime Objective (UK)) must be less than 2 hours to meet regulator requirements.
Which Disaster Recovery strategy should be used to achieve the RTO requirement In the event of system failure?

  • A. Store hourly block volumes backup to NVMe device under a compute instance and generate a custom Image every 5 minutes.
  • B. Configure hourly block volumes backups using the Oracle Cloud Infrastructure (OCI) Command Line Interface (CLI)
  • C. Configure hourly block volumes backups through the Storage Gateway service.
  • D. Configure your application to use synchronous master slave data replication between Availability Domains.

Answer: B

Explanation:
You can use the CLI, REST APIs, or the SDKs to automate, script, and manage volume backups and their lifecycle.
Planning Your Backup
The primary use of backups is to support business continuity, disaster recovery, and long-term archiving requirements. When determining a backup schedule, your backup plan and goals should consider the following:
Frequency: How often you want to back up your data.
Recovery time: How long you can wait for a backup to be restored and accessible to the applications that use it. The time for a backup to complete varies on several factors, but it will generally take a few minutes or longer, depending on the size of the data being backed up and the amount of data that has changed since your last backup.
Number of stored backups: How many backups you need to keep available and the deletion schedule for those you no longer need. You can only create one backup at a time, so if a backup is underway, it will need to complete before you can create another one. For details about the number of backups you can store

 

NEW QUESTION 30
You have been asked to create a mobile application which will be used for submitting orders by users of a popular E-Commerce site. The application is built to work with Autonomous Transaction Processing - Serverless (ATP-S) database as the backend and HTML5 on Oracle Application Express as the front end. During the peak usage of the application you notice that the application response time is very slow. ATP-S database is deployed with 3 CPU cores and 1 TB of memory.
Which two options are expensive or impractical ways to improve the application response times?

  • A. Identify the maximum memory capacity needed for peak times and scale the memory for the ATP-S database to that number. ATP-S will scale the memory down when not needed.
  • B. Use the Machine Learning (ML) feature of the ATP-S database iteratively to tune the SQL queries used by the application.
  • C. Scale up CPU core count and memory during peak times.
  • D. Identify the maximum CPU capacity needed for peak times and scale the CPU core count for the ATP-S database to that number. ATP-S will scale the CPU core count down when not needed.
  • E. Enable auto scaling for CPU cores on ATP-S database.

Answer: C,D

 

NEW QUESTION 31
To serve web traffic for a popular product, your cloud engineer has provisioned four BM.Standard2.52 instances, event spread across two availability domains in the us-asburn-1 region: LoadBalancer is used to deliver the traffic across instances.
After several months, the product grows even more popular and you need additional compute capacity. As a result, an engineer provisioned two additional VM.Standard2.8 instances.
You register the two VM. Standard2. 8 Instances with your load Balancer Backend sot and quickly find that the VM Standard2.8 Instances running at 100% of CPU utilization but the BM.Standard2 .52 instances have significant CPU capacity that's unused.
Which option is the most cost effective and uses instances capacity most effectively?

  • A. Configure Autoscaling instance pool with LoadBalancer to add up to 3 more BM.Standard2.52 Instances when triggered. Shut off VM.Standard2.8 instances.
  • B. Configure your Load Balance, with weighted round robin policy to distribute traffic to the compute instances, with more weight assigned to bare metal instances.
  • C. Configure LoadBalancer with two VM Standard2.8 instances and use Autoscalling Instant pool to add up to two additional VM instances. Shut off BM.Standard2.52 instances.
  • D. Route traffic to BM.Standard2.52 and VM Standard2.8 instances directly using DNS and Health Checks. Shut off the load Balances.

Answer: B

Explanation:
Customer have 4 BM.Standard2.52 and After several months he need additional compute capacity customer find The VM Standard2.8 Instances running at 100% of CPU utilization but the BM.Standard2 .52 instances have significant CPU capacity that unused.
so the customer need to check the Load balance policy to make sure the 4 BM and VM is utilize correctly

 

NEW QUESTION 32
Your company developed a function that needs to access the Oracle Database to inject some data to it at runtime. You are tasked to move this function to the Oracle Cloud Infrastructure (OCI) and use Oracle Functions and access Oracle Autonomous Database. You created a Dockerfile below to run this function, however, you are getting this error "cx_Oracle.DatabaseError: ORA""12560: TNS:protocol adapter error".

What should you do to make sure that Oracle Functions can run this Dockerfile properly? (Choose the best answer.)

  • A. Add these two lines to your Dockerfile: groupadd """"gid 1000 fn && \ adduser """"uid 1000 """"gid fn fn
  • B. You ned to run this Container as root, so add this line: USER root
  • C. Use """"privileged flag while running the Docker container to add runtime privilege
  • D. Use """"cap""add=ALL flag while running the Docker container to add runtime capability

Answer: A

Explanation:
https://docs.cloud.oracle.com/en-us/iaas/Content/Functions/Tasks/functionsrunningasunprivileged.htm

 

NEW QUESTION 33
A retailer bank is currently hosting their mission critical customer application on-premises. The application has a standard 3 tier architecture -4 application servers process the incoming traffic and store application data in an Oracle Exadata Database Server. The bank has recently has service disruption to other inter applications to they are looking to avoid this issue for their mission critical Customer Application.
Which Oracle Cloud Infrastructure services should you recommend as part of the DR solution?

  • A. OCI DNS Service' Public Load Balancer, Oracle Database Cloud Backup Service, Object Storage Service, Oracle Bare Metal Cloud Service, Oracle Bare Metal Cloud Service with GoldenGate, OCI Container Engines for Kubernetes, Oracle IPSec VPN
  • B. OCI Traffic Management, Public toad Balancer, Compute Instances distributed across multiple Availability Domains and/or Vault domains. Exadata Cloud Service with Data Guard, Oracle FastConnect, Object Storage, Database cloud backup module
  • C. OCI Traffic Management, Private Load Balancer, Compute instances distributed across multiple Availability Domains and/or Fault Domains, Exadata Cloud Service with Data Guard, Oracle FastConnect, Object Storage, Database Cloud backup module
  • D. OCI DNS Service, Load Balancer as a service using Public Load Balancer distributing traffic Compute Instance across multiple regions, Oracle RAC Database using Virtual Machines, Remote Peering connecting two VCNs in different regions. Exadata Cloud Service with GoldenGate FastConnect, Object Storage, Database Cloud backup module.

Answer: B

Explanation:
OCI Traffic Management Steering Policies can account for health of answers to provide failover capabilities, provide the ability to load balance traffic across multiple resources, and account for the location where the query was initiated to provide a simple, flexible and powerful mechanism to efficiently steer DNS traffic.
Public Load Balancer Accepts traffic from the internet using a public IP address that serves as the entry point for incoming traffic. Load balancing service creates a primary load balancer and a standby load balancer, each in a different availability domain

 

NEW QUESTION 34
You have an application running in Microsoft Azure and want to use Oracle Autonomous Data warehouse (ADW) instance for running business analytics.
How can you build a secure solution for such a use-case?

  • A. Create a software Remote Peering Connection between Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) and Microsoft Azure Virtual Network (VNet) and connect the application with Oracle ADW instance.
  • B. Create a software VPN connection between Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) and Microsoft Azure Virtual Network (VNet) and connect the application with Oracle ADW instance.
  • C. Connect the Oracle ADW in your VCN to the Microsoft Azure VNet over the internet.
  • D. Setup an interconnect between OCI and Microsoft Azure using FastConnect and ExpressRoute. Use a Service Gateway in OCI Virtual Cloud Network to provide connectivity to the Oracle ADW instance for the application in Microsoft Azure VNet.

Answer: D

 

NEW QUESTION 35
You have to migrate your application to Oracle Cloud Infrastructure (OCI). The database is constantly being updated and needs to be online without interruptions. How can you transition the database to OCI without interrupting its use?

  • A. Use an on-premises database with two-way synchronization to a cloud-based database and allow clients to connect to either databases.
  • B. It is impossible to migrate without interruption.
  • C. Use an on-premises database with one-way synchronization to a cloud-based database and allow clients to connect only to the cloud database.
  • D. Use an on-premises database with one-way synchronization to a cloud-based database and allow clients to connect only to the on-premises database until it is synchronized.

Answer: D

 

NEW QUESTION 36
Which three options are available to migrate an Oracle database 12.x from an on-premises environment to Oracle Cloud Infrastructure (OCI)?

  • A. Leverage OCI Storage Gateway asynchronous database migration option.
  • B. Use Oracle Data Pump Export/Import to migrate the database.
  • C. Setup OCI schema and data transfer tool with Bare Metal DB Systems as the target.
  • D. Create a backup of your on-premises database In OCI DB Systems.
  • E. Configure RMAN cross-platform transportable tablespace backup sets.

Answer: B,D,E

Explanation:
https://docs.cloud.oracle.com/en-us/iaas/Content/Database/Tasks/mig-onprembackup.htm

 

NEW QUESTION 37
Your customer has gone through a recent departmental re structure. As part of this change, they are organizing their Oracle Cloud Infrastructure (OCI) compartment structure to align with the company's new organizational structure.
They have made the following change:
Compartment x Is moved, and its parent compartment is now compartment c.

Policy defined in compartment A: Allow group networkadmins to manage subnets in compartment X Policy defined in root compartment: Allow group admins to read subnets in compartment Finance:A:X After you move the compartment, which two IAM policies would be required to ensure both groups retain the same permissions to compartment X that they had before? (Choose two.)

  • A. Define a policy in compartment HR as follows: Allow group networkadmins to manage subnets in compartment C:X.
  • B. Define a policy in the root compartment as follows: Allow group admins to read subnets in compartment HR:C:X
  • C. Define a policy in the root compartment as follows: Allow group admins to manage subnets in compartment Finance:A:X
  • D. Define a policy in compartment C as follows: Allow group networkadmins to read subnets in compartment X

Answer: A,B

 

NEW QUESTION 38
Your company has recently deployed a new web application that uses Oracle functions Your manager Instructed you to Implement major manage your systems more effectively. You know that Oracle functions automatically monitors functions on your behalf reports metrics through Service Metrics.
Which two metrics are collected and made available by this feature?

  • A. number of times a function is invoked
  • B. number of times a function is removed
  • C. number of concurrent connections
  • D. length of time a function runs
  • E. amount of CPU used by a function

Answer: A,D

Explanation:
https://docs.cloud.oracle.com/en-us/iaas/Content/Functions/Reference/functionsmetrics.htm you can monitor the health, capacity, and performance of functions you've deployed to Oracle Functions by using metrics Oracle Functions monitors function execution, and collects and reports metrics such as:
The number of times a function is invoked.
The length of time a function runs for.
The number of times a function failed.
The number of requests to invoke a function that returned a '429 Too Many Requests' error in the response (known as 'throttled function invocations').

 

NEW QUESTION 39
......

Use Real 1z0-997-21 Dumps - 100% Free 1z0-997-21 Exam Dumps: https://passtorrent.testvalid.com/1z0-997-21-valid-exam-test.html

Related Articles

more
Oracle 1z0-997-21 Certification Practice Exam

Copyright © 2026 TestValid NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy