E. OCI's Identity and Access Management (IAM) service cannot enforce multi -factor authentication (MFA) for user accounts, making it less secure against unauthorized access. Explanation: OCI's Identity and Access Management (IAM) service cannot enforce multi -factor authentication (MFA) for user accounts, making it less secure against unauthorized access. -> Correct. OCI's IAM service does support multi -factor authentication (MFA) for user accounts. This feature enhances security by requiring a second form of verification beyond just a password, making this statement false. Network Security Groups (NSGs) in OCI can be applied to both VCNs and individual instances, offering granular control over access and traffic flow. -> Correct. NSGs in OCI are designed to be applied at the instance level or to other resources within a VCN, not to VCNs as a whole. This statement incorrectly suggests NSGs have broader applicability than they actually do. Security Lists in OCI allow for both stateful and stateless rules, providing flexibility in defining ingress and egress rules for your virtual cloud network (VCN). -> Incorrect. Security Lists can indeed have both stateful and stateless rules, which is correct. This flexibility allows users to effectively manage traffic rules for resources within a VCN. The File Storage Service (FSS) in OCI automatically encrypts all data at rest, but it requires manual configuration to enable encryption for data in transit. -> Incorrect. The statement about the FSS automatically encrypting data at rest is true. While encryption in transit does need to be configured, it emphasizes the comprehensive security measures available in OCI. OCI Vault allows for the management of not only encryption keys and secrets but also offers an integrated hardware security module (HSM) for stronger encryption needs. -> Incorrect. The mention of OCI Vault supporting encryption keys, secrets, and integration with HSM for enhanced encryption needs is accurate, highlighting its role in OCI's security infrastructure. An innovative tech startup has recently migrated their AI -based image processing application to Oracle Cloud Infrastructure (OCI) to leverage OCI's high-performance computing capabilities and robust infrastructure. Their application analyzes large sets of images for real -time facial recognition and is critical for their operations. The architecture includes distributed compute instances for processing, Oracle Cloud Storage for image data, and OCI's Load Balancer to manage incoming traffic. Following the migration, during a high -traffic event triggered by a marketing campaign, users reported significant delays in image processing times and occasional timeouts. What could be two possible reasons for this situation?
performed in time to meet the increased demand. -> Correct. If the application's compute instances are not part of an autoscaling group or if manual scaling is delayed, the system cannot dynamically allocate more resources to meet increased demand, leading to processing delays and timeouts. The bandwidth limit of the Load Balancer was reached, preventing it from handling additional incoming traffic effectively. -> Correct. Reaching the bandwidth limit of the Load Balancer would directly impact its ability to distribute incoming traffic, leading to delays and timeouts as described. This scenario indicates a need for bandwidth adjustment or Load Balancer scaling to accommodate higher traffic volumes. The OCI File Storage service was incorrectly configured, leading to slow reads and writes of image data. -> Incorrect. While the OCI File Storage service is critical for storing and retrieving data efficiently, slow reads and writes would generally not cause significant delays in processing unless there was a misconfiguration specific to the application's use case. However, this is less likely to be the immediate cause of processing delays during high traffic. The Load Balancer's health check configuration was too aggressive, causing unnecessary rerouting of traffic and overloading of servers. -> Incorrect. Although aggressive health check configurations can lead to some performance issues, they are more likely to cause premature server rotation rather than the significant delays described in the scenario. The Image Processing application's cache was not properly configured, resulting in repeated processing of the same images. -> Incorrect. Improper cache configuration might cause inefficiency in processing; however, it's more related to the optimization of processing rather than the infrastructure's ability to handle increased load. You are running a mission -critical database application in Oracle Cloud Infrastructure (OCI). You regular backups of your DB system to OCI Object Storage. Recently, you notice a failed database back status in the console. • Ensure that the database is not active and running while the backup is in progress. What troubleshooting action can you perform to determine the cause of the backup failure?
reliability requirements. In order to achieve this, they will divert only 40% of the traffic to the new Apache Tomcat web servers running on OCI and serve the remaining 60% traffic through their on -premises infrastructure. Once the migration is complete and application works fine, they will divert all traffic to OCI. How can these requirements be met with the LEAST amount of effort?
Databases running in the OCI Virtual Cloud Network (VCN). Explanation: Option A is correct because creating a FastConnect virtual circuit with Microsoft Azure as the provider to establish a private interconnect between the application tier running in the Azure Virtual Network and the OCI VCN that contains the Oracle Databases is the most -fault tolerant and secure solution for this customer. This option provides low latency, high throughput, and consistent network performance across the clouds. It also avoids exposing the traffic to the public internet, which enhances security and reliability12. Option B is incorrect because creating an encrypted, Virtual Private Network connection between the Microsoft Azure Virtual Network that contains the application tier and the OCI Virtual Cloud Network (VCN) that contains the Oracle Databases is not as fault-tolerant and secure as option A . This option relies on the public internet for connectivity, which can introduce latency, bandwidth limitations, and security risks12. Option C is incorrect because using an OCI Virtual Cloud Network remote peering connection to create a remote network connection between the application tier running in Microsoft Azure Virtual Network and Oracle Databases running in the OCI Virtual Cloud Network (VCN) is not possible. Remote peering connections can only be used to connect two VCNs within the same region or across regions within OCI. They cannot be used to connect a VCN with a VNet in another cloud provider3. (OCI) in two weeks. Their data center has been recently struck by a massive hurricane and the building has been badly damaged, although still operational. They have a 100 Mbps Internet line but the connection is intermittent due to the damages caused to the electrical grid. In this scenario, what is the most effective service to use to migrate the data to OCI given the time constraints? (Choose the best answer.)
circuit between your data center and OCI and using OCI Object Storage multipart upload tool to automate the migration of your data to OCI is not feasible given the time constraints. This option requires provisioning a FastConnect circuit, which can take several days or weeks depending on your network provider. It also requires using a public internet backup path, which can be unreliable due to the hurricane. Option D is incorrect because setting up an OCI Storage Gateway to connect your data center and your VCN and uploading all data to OCI using OCI Storage Gateway Cloud Sync tool is not effective given the time constraints. This option requires using the public internet, which can be intermittent due to the damages caused by the hurricane. It also requires installing and configuring a software appliance on your premises, which can add complexity and overhead6. Option E is incorrect because uploading the data to OCI using OCI Object Storage multipart upload tool is not effective given the time constraints. This option requires using the public internet, which can be slow, unreliable, and expensive due to the hurricane and the large amount of data involved Your company needs to migrate a business critical application from your data center to Oracle Cloud Infrastructure (OCI). The application runs on Oracle • Deploy Virtual Machine RAC DB system on OCI and use the Oracle Database Backup module with RMAN to migrate the data from customer on - premises to OCI. The application server is WebLogic server running on multiple 4-core servers and the database is deployed as an Oracle Database Enterprise Edition RAC database on 2 servers (4 -cores each). Which method of database migration should you choose so that the application has minimal impact? (Choose the best answer.)
Note: Throughout your exam, ensure to use assigned Compartment99248134 - C01 and Region us - ashburn -1 Complete the following tasks in the provisioned OCI environment: 1. Create a new VCN with the name exam -vcn within your assigned compartment by using the Start VCN Wizard. 2. Create a new Oracle Functions application named exam -app within your assigned compartment by using the private subnet in your previously created VCN. Ensure you use all defaults provided with the Create VCN with Internet Connectivity option. ee the explanation for this task. Explanation: Here are the steps to complete the challenge: To create a new VCN with the name exam -vcn within your assigned compartment by using the Start VCN Wizard, follow these steps: In the OCI Console, go to Networking and click Virtual Cloud Networks. Select your assigned compartment from the list on the left. Click Start VCN Wizard. Select Create VCN with Internet Connectivity and click Start VCN Wizard. Enter exam -vcn as the VCN Name and leave the other fields as default. Click Next. Review the summary and click Create. This will create a VCN with a public subnet, a private subnet, an internet gateway, a NAT gateway, a service gateway, and a route table. To create a new Oracle Functions application named exam -app within your assigned compartment by using the private subnet in your previously created VCN, follow these steps: In the OCI Console, go to Developer Services and click Functions. Select your assigned compartment from the list on the left. Click Create Application. Enter exam -app as the Application Name and select your previously created VCN from the VCN dropdown menu. Select the private subnet from the Subnet dropdown menu and leave the other fields as default. Click Create. This will create an Oracle Functions application that can run serverless functions in a private subnet. Challenge 2 - Task 2 of 5
