You have created several block volumes in the us-phoenix-1 region in a specific compart-ment. The
compartment can be identified by the following Oracle Cloud Infrastructure (OCI) unique identifier,
or ocid1.compartment.oc1.phx..exampleuniquelD Your manager has asked you to leverage the OCI
monitoring service and write a metric query showing all read IOPS at a one-minute interval, filtered
to this compartment and aggregated for the maximum. Which metric query will you create?
D
The general syntax for an IAM policy is: Allow <identity_domain_name>/<subject> to <verb>
<resource-type> in <location> where <conditions> Which two are valid values for <lo-cation>?
A, C
All the developers in a DevOps team are using the same compartment called 'devops'. There are two
IAM groups: 'group-devs' and 'group-ops'. Which of the following IAM policy will give users in both
these groups access to manage all resources in the compartment?
A
You have a group of developers who launch multiple VM.Standard3.Flex compute in-stances every
day into the compartment Dev. As a result, your Oracle Cloud Infrastructure (OCI) tenancy quickly
hits the service limit for this shape, and other groups can no longer create new instances using the
VM.Standard3.Flex shape. Therefore, your company issues a new mandate that the Dev
compartment must include a quota that allows the use of only 20 VM.Standard3.Flex OCPUs per
availability domain, without affecting any other compartment in the tenancy. Which quota statement
would you use to implement this new requirement?
D
An insurance company has contracted you to help automate their application business continuity
plan. They have the application running in eu-frankfurt-1 as the primary site and uk-london-1 as a
disaster recovery site. Normally they have a DNS A record associated with the IP address of the
primary endpoint in eu- frankfurt-1. In the event of a disaster, they use OCI DNS Zone Management
to update the A record and replace it with the IP address of the end-point in uk- londond-1. How can
you automate the failover process? (Choose the best answer.)
A
You have configured an Alarm Definition in the Oracle Cloud Infrastructure (OCI) Monitoring service
to send notifications through email. The alarm should resend notifications at specified intervals if the
alarm. continues to be in the firing state. A subscriber in the Notifications Topic complains about not
receiving multiple emails upon failures. Which of the following could be the possible cause of this
issue?
B
Which statement is incorrect regarding replication being turned ON for a bucket named my-bucket?
D
You are working as a Cloud Operations Administrator for your company. They have different Oracle
Cloud Infrastructure (OCI) tenancies for development and production work-loads. Each tenancy has
resources in two regions uk-london-1 and eu-frankfurt-1. You are asked to manage all resources and
to automate all the tasks using OCI Command Line Inter-face (CLI). Which is the most efficient
method to manage multiple environments using OCI CLI? (Choose the best answer.)
C
You have been brought In to help secure an existing application that leverages Object Storage
buckets to distribute content. The data is currently being shared from public buckets and the security
team Is not satisfied with this approach. They have stated that all data must be stored In storage
buckets. Your application should be able to provide secure access to the dat
a. The URL that is provided for access to the data must be rotated every 30 days. Which design option
will meet these requirements?
A
You set up a bastion host in your Virtual Cloud Network (VCN) to allow only your IP ad-dress
(140.19.2.140) to establish SSH connections with your compute instances that are deployed in a
private subnet. The compute instances have an attached Network Security Group (NSG) with a
Source Type: Network Security Group (NSG), Source NSG: NSG-050504. To secure the bastion host,
you add the following ingress rules to its NSG: Type: All TCP Proto-col: TCP Port Range: 22 Source:
140.19.2.140/32 Type: All TCP Protocol: TCP Port Range: 22 Source: NSG-050504 However, when you
check the bastion host logs, you discover that there are IP addresses other than your own that can
access your bastion host. What is the root cause of this issue?
B
Which of the following THREE statements are true about Versioning? (Choose three.)
B, C, E
A company is developing a highly available web application, which will be hosted on Oracle Cloud
Infrastructure (OCI). For high reliability, the Load Balancer's health status is very important. Which of
the following may lead to an unhealthy Load Balancer?
C
Recently, your e-commerce web application has been receiving significantly more traffic than usual.
Users are reporting they often encounter a 503 Service Error when trying to access your site.
Sometimes the site is very slow. You check your instance pool configuration to con-firm that the
maximum number of instances is configured to allow 20 compute instances. Currently, 14 compute
instances have been provisioned by the instance pool. You also confirm that current CPU utilization
across all hosts exceeds the scale-out threshold you set in your auto-scaling policy. However, the
instance pool is not provisioning any new instances. What can you check to determine why the
application is NOT functioning properly? (Choose the best answer.)
B
A developer has created a file system in the Oracle Cloud Infrastructure (OCI) File Storage service.
She then launches an Oracle Linux compute instance and mounts the file system successfully on this
instance. The next day, she tries writing to the file system from the compute instance using the
following command: touch /mnt/yourmountpoint/helloworld.txt But receives an error message:
touch: cannot touch '/mnt/yourmountpoint/helloworld.txt': Permission denied What might be the
reason for this error?
B
Your team implemented a SaaS application that requires a whole system deployment for each new
customer. The infrastructure provisioning is already automated via Terraform, and now you have
been asked to develop an Ansible playbook to centralize configuration file management and
deployment. What is the most effective way to ensure your playbooks are utilizing up-to-date and
accurate inventory? (Choose the best answer.)
C