Scribd Logo
Upload

Welcome to Scribd!

  • Free Torrent: Free and Valid Exam Torrent Helps You To Pass The Exam With High Score

    Uploaded by

    acs_sp
    32 views4 pages
    OCI Security 2021 Associate - free QA

    Original Title

    1z0-1104-21

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    OCI Security 2021 Associate - free QA

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    32 views4 pages

    Free Torrent: Free and Valid Exam Torrent Helps You To Pass The Exam With High Score

    Uploaded by

    acs_sp
    OCI Security 2021 Associate - free QA

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    Free4Torrent

    http://www.free4torrent.com
    Free and valid exam torrent helps you to pass the exam with high score
    1z0-1104-21 free reference & Oracle 1z0-1104-21 valid practice torrent are available, no waiting
    IT Certification Guaranteed, The Easy Way!

    Exam : 1z0-1104-21

    Title : Oracle Cloud Infrastructure


    Security 2021 Associate

    Vendor : Oracle

    Version : DEMO

    1z0-1104-21 free practice material, Oracle 1z0-1104-211valid exam torrent, 1z0-1104-21 training torrent
    https://www.free4torrent.com/1z0-1104-21-braindumps-torrent.html
    1z0-1104-21 free reference & Oracle 1z0-1104-21 valid practice torrent are available, no waiting
    IT Certification Guaranteed, The Easy Way!

    NO.1 Which statement is true about Oracle Cloud Infrastructure (OCI) Object Storage server-side
    encryption?
    A. Customer-provided encryption keys are never stored in OCI Vault service.
    B. Encryption is not enabled by default.
    C. All the traffic to and from object storage is encrypted by using Transport Layer Security.
    D. Each object in a bucket is always encrypted with the same data encryption key.
    Answer: C

    NO.2 A number of malicious requests for a web application is coming from a set of IP addresses
    originating from Antartic a.
    Which of the following statement will help to reduce these types of unauthorized requests ?
    A. Delete NAT Gateway from Virtual Cloud Network
    B. Use WAF policy using Access Control Rules
    C. Change your home region in which your resources are currently deployed
    D. List specific set of IP addresses then deny rules in Virtual Cloud Network Security Lists
    Answer: B

    NO.3 Which WAF service component must be configured to allow, block, or log network requests
    when they meet specified criteria?
    A. Origin
    B. Web Application Firewall policy
    C. Bot Management
    D. Protection rules
    Answer: D
    Explanation:
    Protection rules
    Protection rules can be configured to either allow, block, or log network requests when they meet
    the specified criteria of a protection rule. The WAF will observe traffic to your web application over
    time and suggest new rules to apply.
    https://www.oracle.com/security/cloud-security/what-is-waf/

    NO.4 which three resources are required to encrypt a block volume with the customer managed
    key?
    A. IAM Policy Allowing Block Storage to Use Keys
    B. MAXIMUM SECURITY ZONE
    C. OCI VAIRT
    D. SYMMETRIC MASTER KEY ENCRYPTlON KEY
    E. BLOCK KEY
    F. Secrets
    Answer: A,C,F
    Explanation:
    https://docs.oracle.com/en-us/iaas/Content/SecurityAdvisor/Tasks/creatingsecureblockvolume.htm

    NO.5 You want software that can automatically collect and aggregate log data generated throughout

    1z0-1104-21 free practice material, Oracle 1z0-1104-212valid exam torrent, 1z0-1104-21 training torrent
    https://www.free4torrent.com/1z0-1104-21-braindumps-torrent.html
    1z0-1104-21 free reference & Oracle 1z0-1104-21 valid practice torrent are available, no waiting
    IT Certification Guaranteed, The Easy Way!

    your organization's infrastructure, analyze it, and send alerts if it detects a deviation from the norm.
    Which software must you use?
    A. Security Information Management (SIM)
    B. Security Information and Event Management (SIEM)
    C. Security Integration Management (SIM)
    D. Security Event Management (SEM)
    Answer: B

    NO.6 You want to make API calls against other OCI services from your instance without configuring
    user credentials. How would you achieve this?
    A. Create a dynamic group and add your instance.
    B. Create a group and add a policy.
    C. Create a dynamic group and add a policy.
    D. No configuration is required for making API calls.
    Answer: C
    Explanation:
    DYNAMIC GROUP
    Dynamic groups allow you to group Oracle Cloud Infrastructure instances as principal actors, similar
    to user groups. You can then create policies to permit instances in these groups to make API calls
    against Oracle Cloud Infrastructure services. Membership in the group is determined by a set of
    criteria you define, called matching rules. https://docs.cloud.oracle.com/en-
    us/iaas/Content/Identity/Tasks/callingservicesfrominstances.htm

    NO.7 Which statement is not true about Cloud Security Posture?


    A. Problems contain data about the specific type of issue that was found.
    B. Problems are defined by the type of detector that creates them: activity or configuration.
    C. Problems are created when Cloud Guard discovers a deviation from a responder rule.
    D. Problems can be resolved, dismissed, or remediated.
    Answer: C
    Explanation:
    https://www.oracle.com/security/cloud-security/what-is-cspm/

    1z0-1104-21 free practice material, Oracle 1z0-1104-213valid exam torrent, 1z0-1104-21 training torrent
    https://www.free4torrent.com/1z0-1104-21-braindumps-torrent.html

    You might also like