Note! Following 1z0-1072-22 Exam is Retired now. Please select the alternative replacement for your Exam Certification. The new exam code is 1z0-1072-23

1z0-1072-22 Exam Dumps - Oracle Cloud Infrastructure 2022 Architect Associate

Go to page:

Question # 17

A company currently uses Microsoft Active Directory as its identity provider. The company recently purchased Oracle Cloud Infrastructure (OCI) to leverage the cloud platform for its test and development operations. As the administrator, you are now tasked with giving access only to developers so that they can start creating resources in their OCI accounts.

Which step will you perform to achieve this requirement?

Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process.

Federate all Microsoft Active Directory groups with OCI to allow users to use their existing credentials.

Create a new user account for each user, and then create policies to provide access to developers.

Create a group for developers on OCI, export all the developers from Microsoft Active Directory, and then import them into the Identity and Access Management (IAM) group.

Full Access

Question # 18

A customer has launched a compute Instance in the Virtual Cloud Network (VCN), which has an Internet gateway, a service gateway, a default security lists and a default route table. Customer has opened up Port 22 in the security lists attached to the compute instance subnet, however is still unable to connect to compute instances using ssh.

Which option would remedy this situation?

Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table.

Destination CIDR: 0.0.0.0/0

Target: Internet Gateway (IGW)

Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful egress rule to allow icmp traffic in addition to the port 22.

Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table.

Destination CIDR: 0.0.0.0/0

Target: Dynamic Routing Gateway (DRG)

Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table.

Destination CIDR: 0.0.0.0/0

Target: Service Gateway (SGW)

Full Access

Question # 19

A company currently uses Microsoft Active Directory as its identity provider. The company recently subscribed to Oracle Cloud Infrastructure (OCI) to leverage the cloud platform for test and development. As the administrator, you configured the OCI tenancy to be federated with Microsoft Active Directory. Now you need to give access to developers so that they can start creating resources in their OCI accounts.

Which step will you perform to make sure you are not duplicating user creation inside of OCI tenancy?

Create a group for developers on OCI and map the group to a similar group in Microsoft Active Directory during the federation process.

Create a new user account in OCI for each user, and then create policies to provide access to developers.

Create a group for developers on OCI, export all the developers from Microsoft Active Directory, and then import them into the Identity and Access Management (IAM) group.

Create a single user account in OCI, and then create policies to provide access to developers to this single account.

Full Access

Question # 20

You have been tasked with creating one virtual cloud network (VCN) each for two line of business (LOB) applications. LOB A and LOB B will need to communicate with each other. To ensure that you can utilize VCN peering, which network CIDR ranges should be used?

VCN A (10.0.0.0/16) and VCN B (10.1.0.0/16)

VCN A (10.0.2.0/16) and VCN B (10.0.2.0/25)

VCN A (10.0.0.0/16) and VCN B (10.0.16.0/24)

VCN A (172.16.0.0/24) and VCN B (172.16.0.0/28)

Full Access

Question # 21

In which language are Terraform and Terraform providers written?

Python

Ruby

Full Access

Question # 22

You create a public Load Balancer instance and configure a back end set â€œBES1â€ with one back end server running a service on port 80. You also create a listener on port 80 and configure that listener to use the back end set â€œBES1â€. A client makes one HTTP request to the Load Balancer with the correct protocol and port.

How many connections does the Load Balancer maintain?

Full Access

Question # 23

Which two statements are true about subnets within a VCN? (Choose two.)

You can have multiple subnets in an Availability Domain for a given VCN.

Private and Public subnets cannot reside in the same Availability Domain for a given VCN.

Subnets can have their IP addresses overlap with other subnets in another network for a given VCN.

Instances obtain their private IP and the associated security list from their subnets.

Full Access

Question # 24

You have successfully configured identity federation between Oracle Cloud Infrastructure (OCI) and Oracle Identity Cloud Services (IDCS). A new project manager wants access to OCI for her team and provides the name of an existing group within IDCS to use when granting access.

How do you configure federation to allow the project team access to OCI resources?

Create a new IAM group in OCI and map it to the existing IDCS group. Create a new policy in IDCS and reference the name of the IAM group.

Create a new Identity and Access Management (IAM) policy in OCI and reference the name of the IDCS group in each policy statement.

Create a new compartment in OCI with the same name as the existing IDCS group. Create an IAM policy that references the new compartment and the name of the IDCS group.

Create a new IAM group in OCI and map it to the existing IDCS group. Create a new IAM policy and reference the name of the IAM group in each policy statement.

Full Access