oracle 1z0-997-21 practice test

Question 1

You developed a microservices based application that runs on Oracle Cloud Infrastructure (OCI)
Container Engine for
Kubernetes (OKE). It has multiple endpoints that needs to be exposed to the public internet.
What Is the most cost-effective way to expose multiple application endpoints without adding
complexity to the application?

• A. Use clusterlP service type in Kubernetesfor each of yourservice endpointand use a load balancerto expose the endpoints.
• B. Use separate load balancerinstancefor each service but use the 100 Mbps loadbalanceroption.
• C. Deploy an Ingress controllerand use it to expose each endpointwith its own routing endpoint.
• D. Use NodePort service type in Kubernetesfor each of yourservice endpointand use node's public IP address to acccess the applications.

Answer:

C

Question 2

You developed a microservices based application that runs on Oracle Cloud Infrastructure (OCI)
Container Engine for Kubernetes (OKE). Your security team wants to use SSL termination for this
application. What should you do to create a secure SSL termination for this application using fewest
steps?

• A. Create a self-signed certificate and it's corresponding key. Create a Kubernetes secret using the certificate and the key. Then add these an notations to the Kubernetes service: annotations: service.beta.kubernetes.io/oci-load-balancer-ssl-ports: "443" service.beta.kubernetes.io/oci-load-balancer-security-list-management-mode:"Frontend"
• B. Generate a self-signed certificate using Let's Encrypt. Use that certificate on OCI Load Balancer. Create the Kubernetes service usingthis load balancer.
• C. Add these annotationsto the Kubernetes service: annotations: service.beta.kubernetes.io/oci-load-balancer-ssl-ports: "443" service.beta.kubernetes.io/oci-load-balancer-ssl-secret-key: ssl-secret-key
• D. Create a self-signed certificate and it's corresponding key. Create a Kubernetes secret using then add these annotationsto the Kubernetes service. Service.beta.kubernete.io/oci-load-balancer-ssl-ports: "443" Service.beta.kubernete.io/oci-load-balancer-tls-secret:SSL-CERTIFICATE-SECRET

Answer:

D

Question 3

You are using the Oracle Cloud Infrastructure (OCI) OS Management service to manage updates and
patches for the Oracle Linux 8 environments on your compute instances in OCI. You have verified that
the OS Management Service Agent (osms-agent) is installed and running properly in the instances.
One of the compute instances is not getting the updates from OS Management Service. You use the
following command to validatethatyourinstance cannot reach the OS Management Ingestion service
by running curl
https://ingestion.osms
.
<region>.oci.oraclecloud.com/
Which Is NOT a possible reason for this issue?

• A. The instance Is in a private subnet with a NAT gateway.
• B. The instance is in a private subnet with a privateendpointwith security rules configured to access the OS Managementingestion service
• C. The instance is in a private subnet with a service gatewaythat uses the All <region> Services in Oracle Services Network CIDR label.
• D. The Instance is in a publicsubnet with an Internet gateway.

Answer:

B

Question 4

You are creating a compute instance using Oracle Cloud Infrastructure (OCI) Console. You decide to
use Oracle provided image for the compute instance launch. Which option is TRUE when using Oracle
provided images?

• A. On Windows images, custom user data scripts are executed using cloud-init to perform various tasks such as enabling GPU support.
• B. Oracle provided images do not support the ability to supply a custom metadata during instance launch.
• C. For a Linux based image, access to host over the internet is permitted only via SSH protocol and all other remote access is disabled.
• D. If you choose a non-Windows image, the only way to download and update packages is by running apt or yum commands.

Answer:

C

Explanation:
https://blogs.oracle.com/developers/post/working-with-oracle-cloud-infrastructure-custom-
compute-images
https://docs.oracle.com/en-us/iaas/Content/Compute/Tasks/managingcustomimages.htm

Question 5

A telecom company has an application running in Oracle Cloud Infrastructure (OCI) Germany Central
(eu-frankfurt-1) region. They want to configure Disaster Recovery (DR) site in the OCI UK South (uk-
london-1) region. Which is the most cost effective option to help set up application and persistence
layers in the DR site?

• A. Application layer: configure events service rule in eu-frankfurt-1 region to filter Health Checks event failure and route traffic to uk-london-1 region in the event of a disaster. Persistence layer: set up policy to schedule cross-region automated backups of block volumes between eu-frankfurt-1 and uk-london-1 regions.
• B. Application layer: configure Traffic Management steering policy with Load Balancing policy between servers in eu-frankfurt-1 and uk-london-1 regions. Persistence layer: set up policy to schedule cross-region automated backups of block volumes between eu-frankfurt-1 and uk-london-1 regions.
• C. Application layer: Set us a public laod balancerin the eu-frankfurt-1 region. Create a backend set with instances running in bothuk-frankfurt-1 and uk-london-1 regions. Persistence layer: Set up OCI Object Storage replication from eu-frankfurt-1 region to uk-london-1 region.
• D. Application layer: configure Traffic Management steering policy with Failover policy between servers in eu-frankfurt-1 and uk-london-1 regions. Persistence layer: set up policy to schedule cross-region automated backups of file systems in File Storage service between eu-frankfurt-1 and uk-london-1 regions.

Answer:

B

Question 6

A company has an urgent requirement to migrate 100 TB of data to Oracle Cloud Infrastructure (OCI)
in two weeks. They have a 100 Mbps Internet line but the connection is intermittent due to problems
with their internet provider. In this scenario, what is the most time-efficient mechanism to migrate
data to OCI?

• A. Set up an IPSec VPN tunnel between your data center and OCI. Upload all data to OCI using OCI Storage Gateway.
• B. Set up an OCI Storage Gateway to connect your data center to your Virtual Cloud Network and upload data.
• C. Upload data using OCI Object Storage multipart upload capability.
• D. Set up hybrid network by launching a 1 Gbps FastConnect virtual circuit between your data center and OCI. Use OCI Object Storage multipart upload capability to automate the migration of your data to OCI.
• E. Use OCI File Storage Service to copy data from your data center to OCI.

Answer:

D

Question 7

A large E-commerce company is looking to run seasonal workloads in Oracle Cloud Infrastructure.
The Oracle database used by their E-commerce application can use up to 52 cores at peak workloads.
Due to the seasonal nature of the business, the database will be not be used for 10 months in a year
and can also be shut down during non-business hours.

• A. Autonomous Transaction Processing with shared Exadata infrastructure
• B. Oracle Cloud Infrastructure Exadata DB Systems
• C. Oracle Cloud Infrastructure Virtual Machine DB Systems
• D. Oracle Cloud Infrastructure Bare Metal DB Systems

Answer:

A

Question 8

A small business specializing in video processing wants to leverage cloud storage in order to lower its
costs. They are looking to backup all video data generated, from an existing on-premises file server to
Oracle Cloud Infrastructure (OCI). The requirement is to setup continuous data sync as changes are
made to on-
premises file server. What is the most cost effective solution for this scenario?

• A. Set up a Fastconnect virtual Circuit and nightly back up all videos to OCI Archive Storage.
• B. Set up file storage service on OCI and mount the file system to an instance running on-premises. Move all the data to this on-premises instance and then sync the videos to the shared file system.
• C. Set up a VPN connect connection and back up all videos to Object storage standard bucket. Create a lifecycle policy to move files older than 30 days to Archive Storage.
• D. Setup an on-premises OCI Storage Gateway Cloud Sync to back up videos to OCI Object Storage Archive tier.

Answer:

D

Question 9

A company has an application that processes confidential dat
a. The data is currently stored in an on-premises data center. A solution architect needs to move this
data to Oracle Cloud Infrastructure (OCI) Object Storage and ensure data is encrypted in-transit to
OCI.
Which two steps should the solution architect perform to set up the most cost-effective connection
between on-premises data center and OCI?

• A. Set up private end point for accessing Object Storage.
• B. Attach an Internet Gateway to Virtual Cloud network(VCN).
• C. Configure a service gateway accessing Object Storage.
• D. Set up an IPsec tunnel between the customer equipment and software VPN on an oci instance
• E. Configure a private peering connection on the Oracle FastConnect
• F. Set up VPN Connect between the customer equipment and the Dynamic Routing Gateway.

Answer:

CF

Question 10

A company runs a public-facing application that uses a Java-based web service via a RESTful API in
their on-premises data center. Use of the API is expected to double with a new product launch. The
business wants to migrate their application to Oracle Cloud Infrastructure (OCI) to meet the scale and
reliability requirements. In order to achieve this, they will divert only 40% of the traffic to the new
Apache Tomcat web servers running on OCI and serve the remaining 60% traffic through their on-
premises infrastructure. Once the migration is complete and application works fine, they will divert
all traffic to OCI. How can these requirements be met with the LEAST amount of effort?

• A. Use OCI Traffic management service with failover steering policy and distribute the traffic between OCI and on premises infrastructure.
• B. Use OCI Traffic management service with Load Balancing steering policy and distribute the traffic between OCI and on premises infrastructure.
• C. Use an OCI load Balancer and distribute the traffic between OCI and on premises infrastructure.
• D. Use VPN connectivity between on premises Infrastructure and OCI and create routing tables to distribute the traffic between them.

Answer:

B