Welcome to TestSimulate

Pass Your Next Certification Exam Fast!

Everything you need to prepare, learn & pass your certification exam easily.

365 days free updates. First attempt guaranteed success.

  • Home
  • Blogs
  • [2022] Pass Oracle 1z0-1104-22 Exam Updated 95 Questions [Q41-Q60]

[2022] Pass Oracle 1z0-1104-22 Exam Updated 95 Questions [Q41-Q60]

Share

[2022] Pass Oracle 1z0-1104-22 Exam Updated 95 Questions

Get 2022 Updated Free Oracle 1z0-1104-22 Exam Questions and Answer

NEW QUESTION 41
What would you use to make Oracle Cloud Infrastructure Identity and Access Management govern resources in a tenancy?

  • A. Dynamic groups
  • B. Groups
  • C. Users
  • D. Policies

Answer: D

Explanation:
POLICY
A document that specifies who can access which resources, and how. Access is granted at the group and compartment level, which means you can write a policy that gives a group a specific type of access within a specific compartment, or to the tenancy itself. If you give a group access to the tenancy, the group automatically gets the same type of access to all the compartments inside the tenancy. For more information, see Example Scenario and How Policies Work. The word "policy" is used by people in different ways: to mean an individual statement written in the policy language; to mean a collection of statements in a single, named "policy" document (which has an Oracle Cloud ID (OCID) assigned to it); and to mean the overall body of policies your organization uses to control access to resources.
https://docs.oracle.com/en-us/iaas/Content/Identity/Concepts/overview.htm

 

NEW QUESTION 42
Which statements are CORRECT about Security Zone policy in OCI ? Select TWO correct answers

  • A. Bucket can't be moved from a security zone to a standard compartment
  • B. Resources in a security zone must be accessible from internet
  • C. Resources in a security zone must be encrypted using customer-managed keys
  • D. Block volume can be moved from a security zone to a standard compartment

Answer: A,C

Explanation:

 

NEW QUESTION 43
What do the features of OS Management Service do?

  • A. Add complexity in using multiple tools to manage mixed-OS environments.
  • B. Provide paid service and support to OCI subscribers for fixes on priority.
  • C. Encourage manual setup to avoid machine-induced errors.
  • D. Increase security and reliability by regular bug fixes.

Answer: D

Explanation:
https://docs.oracle.com/en/solutions/oci-best-practices/manage-your-operating-systems1.html

 

NEW QUESTION 44
Which security issues can be identified by Oracle Vulnerability Scanning Service? Select TWO correct answers

  • A. SQL Injection
  • B. Distributed Denial of Service (DDoS)
  • C. Ports that are unintentionally left open can be a potential attack vector for cloud resources
  • D. CIS published Industry-standard benchmarks

Answer: C,D

Explanation:

 

NEW QUESTION 45
What information do you get by using the Network Visualizer tool?

  • A. Interconnectivity of VCNs
  • B. Organization of subnets and VLANs across availability domains
  • C. State of subnets in a VCN
  • D. Routes defined between subnets and gateways

Answer: A

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Network/Concepts/network_visualizer.htm You can view and understand the following from this diagram:
How VCNs are inter-connected
How on-premises networks are connected (using FastConnect or Site-to-Site VPN) Which routing entities (DRGs and so on) control traffic routing How your transit routing is configured

 

NEW QUESTION 46
Which is NOT a compliance document?

  • A. Penetration test report
  • B. Attestation
  • C. Certificate
  • D. Bridge letter

Answer: A

Explanation:
Types of Compliance Documents
When viewing compliance documents, you can filter on the following types:
Attestation. A Payment Card Industry (PCI) Data Security Standard (DSS) Attestation of Compliance document.
Audit. A general audit report.
Bridge Letter (BridgeLetter). A bridge letter. Bridge letters provide compliance information for the period of time between the end date of an SOC report and the date of the release of a new SOC report.
Certificate. A document indicating certification by a particular authority, with regard to certification requirements and examination results conforming to said requirements.
SOC3. A Service Organization Controls 3 audit report that provides information relating to a service organization's internal controls for security, availability, confidentiality, and privacy.
Other. A compliance document that doesn't fit into any of the preceding, more specific categories.
https://docs.oracle.com/en-us/iaas/Content/ComplianceDocuments/Concepts/compliancedocsoverview.htm

 

NEW QUESTION 47
Where are logs stored?

  • A. OCI Block Storage
  • B. OCI File Storage
  • C. Cloud Agent
  • D. OCI Object Storage

Answer: D

Explanation:
You can collect log data continuously from Oracle Cloud Infrastructure (OCI) Object Storage. To enable the log collection, create ObjectCollectionRule resource using REST API or CLI. After the successful creation of this resource and having the required IAM policies, the log collection will be initiated.
https://docs.oracle.com/en-us/iaas/logging-analytics/doc/collect-logs-your-oci-object-storage-bucket.html

 

NEW QUESTION 48
Which Security Zone policy is NOT valid?

  • A. A boot volume can be moved from a security zone to a standard compartment.
  • B. Resources in a security zone should not be accessible from the public internet.
  • C. A compute instance cannot be moved from a security zone to a standard compartment.
  • D. Resources in a security zone must be automatically backed up regularly.

Answer: A

 

NEW QUESTION 49
which three resources are required to encrypt a block volume with the customer managed key?

  • A. Secrets
  • B. BLOCK KEY
  • C. SYMMETRIC MASTER KEY ENCRYPTlON KEY
  • D. IAM Policy Allowing Block Storage to Use Keys
  • E. MAXIMUM SECURITY ZONE
  • F. OCI VAIRT

Answer: A,D,F

Explanation:
https://docs.oracle.com/en-us/iaas/Content/SecurityAdvisor/Tasks/creatingsecureblockvolume.htm

 

NEW QUESTION 50
Which tasks can you perform on a dedicated virtual machine host?

  • A. Creating instance pools
  • B. Manual scaling
  • C. Instance configurations
  • D. Capacity reservations

Answer: B

Explanation:
Supported features: Most of the Compute features for VM instances are supported for instances running on dedicated virtual machine hosts. However, the following features are not supported:
Autoscaling
Capacity reservations
Instance configurations
Instance pools
Burstable instances
Reboot migration. You can use manual migration instead
https://docs.oracle.com/en-us/iaas/Content/Compute/Concepts/dedicatedvmhosts.htm#Dedicated_Virtual_Machine_Hosts

 

NEW QUESTION 51
Which Oracle Cloud Service provides restricted access to target resources?

  • A. Bastion
  • B. Load balancer
  • C. Internet Gateway
  • D. SSL certificate

Answer: A

Explanation:
Bastion
Oracle Cloud Infrastructure Bastion provides restricted and time-limited access to target resources that don't have public endpoints.

https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_features.htm

 

NEW QUESTION 52
Which statement is true about standards?

  • A. They are result of a regulation or contractual requirement or an industry requirement.
  • B. They are methods and instructions on how to maintain or accomplish the directives of the policy.
  • C. They may be audited.
  • D. They are the foundation of corporate governance.

Answer: A

 

NEW QUESTION 53
Which OCI services can encrypt all data-at-rest ? Select TWO correct answers

  • A. Geolocation Steering
  • B. Block Volumes
  • C. File Storage
  • D. NAT Gateway

Answer: B,C

Explanation:

 

NEW QUESTION 54
Which storage type is most effective when you want to move some unstructured data, consisting of images and videos, to cloud storage?

  • A. File storage
  • B. Standard storage
  • C. Archive storage
  • D. Block volume

Answer: B

Explanation:
Use Oracle Cloud Infrastructure Object Storage for data to which you need fast, immediate, and frequent access. Data accessibility and performance justifies a higher price point to store data in the Object Storage tier.
The Object Storage service can store an unlimited amount of unstructured data of any content type, including analytic data and rich content, like images and videos.
https://docs.oracle.com/en/solutions/learn-migrate-app-data-to-cloud/considerations-object-storage.html#GUID-AC192B08-5160-4DA7-B43E-001753D99CF1

 

NEW QUESTION 55
What must be configured for a load balancer to accept incoming traffic?

  • A. Service Gateway
  • B. Route table entry pointing to the listener IP address
  • C. Listener
  • D. SSL certificate

Answer: C

Explanation:
A listener is an entity that checks for connection requests. The load balancer listener listens for ingress client traffic using the port you specify within the listener and the load balancer's public IP.
https://docs.oracle.com/en-us/iaas/Content/GSG/Tasks/loadbalancing.htm
To create a listener:
On your Load Balancer Details page, click Listeners.
Click Create Listener.
Enter the following:
Name: Enter a friendly name. Avoid entering confidential information.
Protocol: Select HTTP.
Port: Enter 80 as the port on which to listen for incoming traffic.
Backend Set: Select the backend set you created.
Click Create.

 

NEW QUESTION 56
You want to make API calls against other OCI services from your instance without configuring user credentials. How would you achieve this?

  • A. Create a dynamic group and add your instance.
  • B. No configuration is required for making API calls.
  • C. Create a dynamic group and add a policy.
  • D. Create a group and add a policy.

Answer: C

Explanation:
DYNAMIC GROUP
Dynamic groups allow you to group Oracle Cloud Infrastructure instances as principal actors, similar to user groups. You can then create policies to permit instances in these groups to make API calls against Oracle Cloud Infrastructure services. Membership in the group is determined by a set of criteria you define, called matching rules. https://docs.cloud.oracle.com/en-us/iaas/Content/Identity/Tasks/callingservicesfrominstances.htm

 

NEW QUESTION 57
How can you convert a fixed load balancer to a flexible load balancer?

  • A. Delete the fixed load balancer and create a new one.
  • B. Using the Edit Listener option.
  • C. Use Update Shape workflows.
  • D. There is no way to covert the load balancer.

Answer: C

 

NEW QUESTION 58
A number of malicious requests for a web application is coming from a set of IP addresses originating from Antartica.
Which of the following statement will help to reduce these types of unauthorized requests ?

  • A. Delete NAT Gateway from Virtual Cloud Network
  • B. Use WAF policy using Access Control Rules
  • C. List specific set of IP addresses then deny rules in Virtual Cloud Network Security Lists
  • D. Change your home region in which your resources are currently deployed

Answer: B

 

NEW QUESTION 59
In which two ways can you improve data durability in Oracle Cloud Infrastructure Object Storage?

  • A. Limit delete permissions
  • B. Setup volumes in a RAID1 configuration
  • C. Enable server-side encryption
  • D. Enable client-side encryption
  • E. Enable Versioning

Answer: B

 

NEW QUESTION 60
......

Verified 1z0-1104-22 exam dumps Q&As with Correct 95 Questions and Answers: https://www.testsimulate.com/1z0-1104-22-study-materials.html

Related Blogs

more
Go To 1z0-1104-22 Questions

Copyright © 2026 TESTSIMULATE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.