OCI Devops 2023

Dump 2.
md 8/5/2023
OCI DevOps Professional (2023) 1Z0-1109-23

A team of developers wants to implement workloads for data science in an OCI Container Engine for
Kubernetes (OKE) cluster. Their requirements include strong isolation, cost-effectiveness, and the control
plane and data plane of Oracle-managed clusters. Which solution is most appropriate for their needs?
A: Self-managed nodes in OKE

B: Container instances in OCI
C: Virtual nodes in OKE
D: Managed nodes in OKE
Answer: D
A fully qualified path to a particular image in a registry is given as
iad.ocir.io/ansh81vru1zp/project01/acme-web-app:version2.0.test
Identify the two options with correct terms and their associated values.
A: ansh81vru1zp/project01/acme-web-app represents
B: version2.0.test represents
C: ansh81vru1zp/project01/acme-web-app:version2.0.test represents
D: iad represents
E: iad.ocir.io/ansh81vru1zp represents
Answer: B, D
You are using OCI DevOps to automate your application deployment for frequent releases. In one of your
automation steps, you create a deployment pipeline. What does this deployment pipeline do in OCI DevOps?
A: It is a sequence of steps for delivering and deploying your artifacts to a target environment.
B: It is a set of stages in your build process for building, testing, and compiling software artifacts.
C: It is used to store, manage, and develop source code with OCI DevOps Code Repositories.
D: It takes a commit ID from your source code repositories and uses that source code to run your build
instructions.
Answer: A
A team has put in place an automated pipeline for software development that builds and tests code with each
commit. Upon completion of the build and test phases, the code is subsequently deployed to a staging
environment. However, the team lead must give permission before the deployment can be made to the
production environment. Which particular DevOps technique fits this situation?
A: Continuous Development
This study source was downloaded by 100000829724757 from CourseHero.com on 08-08-2023 09:07:10 GMT -05:00
B: Continuous Testing
/
https://www.coursehero.com/file/209481917/OCI-DevOps-Pro-2pdf/
Dump 2.md 8/5/2023
C: Continuous Monitoring
D: Continuous Delivery
Answer: D
Your team is responsible for deploying a new version of a critical application in the production environment of
your company's e-commerce website. To minimize downtime and ensure a smooth deployment, you decide
to use the Blue-Green deployment strategy in OCI DevOps service. What is the purpose of the Blue-Green
traffic shift stage in this scenario?
A: To invoke a custom function that tests the new version of the application in the standby environment,
ensuring that it is working properly before shifting the production traffic
B: To shift 100% of the production traffic from the current active environment to the standby environment that
is running the validated new version of the application, ensuring a seamless transition with minimal downtime
C: To select the two environments (for instance, group or OKE) along with the artifacts to be deployed,
ensuring a smooth deployment process
D: To add a manual approval step to approve the deployment in the standby environment before shifting the
production traffic, ensuring that the new version has been properly validated
Answer: B
A developer is creating an application with the Oracle Cloud Infrastructure (OCI) DevOps service. They are
actively putting together the necessary infrastructure with the tools at their disposal.
What are the two main differences between Ansible and Terraform?
A: Terraform is not an open-source tool, but Ansible is.

B: Ansible focuses on infrastructure provisioning; Terraform specializes in configuration management.
C: Ansible uses a procedural approach; Terraform is declarative in nature.
D: Ansible automates software installation and application deployment; Terraform manages infrastructure as
code.
E: Ansible works via API calls; Terraform works using SSH.
Answer: C, D
As a Security Administrator, you have been asked to manage the secrets stored in the OCI Vault. Which
statement about configuring rules for secrets is FALSE?
A: You cannot choose whether secret reuse rules apply even to deleted secret versions.
B: You can create a Secret Reuse Rule to prevent the reuse of secret contents across different versions of a
secret.
C: You can create a Secret Expiry Rule to restrict how long the secret contents of a particular secret version can
remain in use.
D: No mechanism exists to update the secret contents. You must rotate the secret version manually.
Answer: A
/
Dump 2.md 8/5/2023
A company is looking to improve their software development process and is considering using Oracle Cloud
Infrastructure (OCI) DevOps. Which of the following benefits can OCI DevOps offer to help achieve this goal?
A: OCI DevOps helps ensure rapid and continuous integration and delivery of code through CI/CD pipelines,
reducing deployment delays.
B: OCI DevOps integrates automated JIRA notifications to improve security and prevent potential security
issues.
C: OCI DevOps includes Anomaly Detection, Monitoring services, and Cloud Analytics to identify and address
high failure rates and outages.
D: OCI DevOps provides shared repositories and operational feedback loops to enable speedy code execution
and resolve erratic code issues.
Answer: A
You made a mistake adding variables to your build_spec.yaml file, which caused the build pipeline to fail.
What could have possibly gone wrong?
A: You defined a field such as type: DOCKER_IMAGE in the outputArtifacts: section to specify the docker image
produced by the Build stage.
B: You defined parameters such as the ${VARIABLE_NAME} file and later assigned their values on the
Parameters tab of the build pipeline.
C: You defined all the variables as vaultVariables to make them available in subsequent stages of the same
pipeline. D: You defined variables as vaultVariables to hold the OCID of the secret from the vault. The value for
these variables is retrieved from the vault.
Answer: C
Which three are NOT required by the Oracle Cloud Infrastructure Vault service to create a secret?
A: You must have the required permissions to create and manage secrets in the Vault service.
B: You must have an auth token to encrypt the secret. C: You must create a compute instance to run the secret
service. D: You must have a Vault-managed key to encrypt the secret. E: You must first create a hash digest of
the secret value.
Answer: B, C, E
Which service of the OCI Observability platform allows you to monitor REST API actions executed by any OCI
resource?
A: Monitoring
B: Cloud Guard
C: Application Performance Monitoring
D: Audit
Answer: D
/
Dump 2.md 8/5/2023
Which DevSecOps best practice should XYZ Corp. adopt to ensure that credentials and identity accounts are
securely managed in their code?
A: Segment networks.
B: Enforce policy and governance.
C: Control, monitor, and audit access with privileged access management.
D: Secure access with DevOps secrets management.
Answer: D
You are working on a project to deploy a multi-tier application on Oracle Cloud Infrastructure (OCI) using
Resource Manager. As part of the deployment, you are creating a Schema Document to define the input
parameters and variable definitions for the stack.
While creating the Schema Document for OCI Resource Manager, what CANNOT be specified?
A: Permissions for which OCI users may provision the template

B: Information about the application, such as its name, description, and version
C: Dependency relationships between variables
D: Pattern validations for string-type variables
Answer: A
John is a developer who has integrated Application Dependency Management (ADM) in his DevOps pipeline.
Which stage does John need to configure ADM in?
A: Managed Build Stage

B: Testing Stage
C: Control Stage
D: Deliver Artifact Stage
Answer: A
You are a DevOps lead and are in charge of updating the Terraform template definition to easily create newer
resources and manage OCI resources for your project. Which statement is true?
A: Using Terraform, Resource Manager helps you install, configure, and manage resources through the
infrastructure-as-code model.
B: You can use resource discovery to scan the Project compartment and create ansible playbooks and tasks,
introducing automation to manage cloud resources.
C: Using Resource Manager to share and manage infrastructure configurations and state files across multiple
teams is not possible.
D: HashiCorp Configuration Language is the only format supported for Terraform configuration files.
Answer: A
/
Powered by TCPDF (www.tcpdf.org)
Dump 1.md 8/4/2023

A company wants to implement CI/CD automation process on Oracle Cloud Infrastructure (OCI) DevOps. An
automatic trigger is created in such a way that when someone pushes the code from a Git repository to the
OCI Code Repository, it trigger builds all the way to the deployment pipeline. Which DevOps IAM policy
statements are required for this automation?
A: Code Repo: Allow dynamic group <Code Repository> to manage all resources in
compartment <Compartment Name>
Build Pipeline: Allow dynamic-group <BuildPipeline> to manage all-resources in
B: Code Repo: Allow dynamic-group <Code Repository> to manage all-resources in

compartment <compartment name>
Build Pipeline: Allow dynamic-group <BuildPipelines> to manage all-resources in
Compartment <compartment name>
Deployment Pipeline: Allow dynamic-group <Deployment Pipeline> to manage all
resources in compartment <Compartment Name>
C: Build Pipeline: Allow dynamic-group <BuildPipeline> to manage all-resources in

D: No DevOps IAM policy statement is required.
Answer: B
Explanation The correct DevOps IAM policy statements required for the CI/CD automation process are:
Code Repo: Allow dynamic-group <Code Repository> to manage all resources in
Build Pipeline: Allow dynamic-group <BuildPipeline> to manage all resources in
Deployment Pipeline: Allow dynamic-group <Deployment Pipeline> to manage all
resources in compartment <compartment name>
These policy statements ensure that the specified dynamic groups have the necessary permissions to
manage all resources within the specified compartments. The Code Repository dynamic group should
have permissions to manage resources in the Code Repository compartment, the BuildPipeline
dynamic group should have permissions to manage resources in the Build Pipeline compartment, and
the Deployment Pipeline dynamic group should have permissions to manage resources in the
Deployment Pipeline compartment. This allows for the automation process to trigger builds and
deployments as code is pushed to the Code Repository.
Which statement is true regarding the Oracle Cloud Infrastructure (OCI) DevOps service?
A: Users can avoid downtime during deployments and automate the complexity of updating applications
B: Users can migrate workloads from on-premises, but not from other cloud platforms.
/
https://www.coursehero.com/file/209450801/OCI-DevOps-Profession-1pdf/
Dump 1.md 8/4/2023
C: Users can view limited lifecycle phases as needed to assess application performance.
D: Users can only store code on public repositories and cannot access internal code repositories.
Answer: A
A development team leveraging the Oracle Cloud Infrastructure DevOps service is having trouble getting their
build pipeline to complete successfully. Which two situations might be the problem? (Choose two.)
A: They forgot to export a required variable in the build_spec.yaml file
B: The did not export a vault variable in the vaultVariable section of the build_spec.yaml
C: The build_spec.yaml file is in the root directory of their Git repository, and they didn't specify a path to it.
D: Their build specification file is available in a different directory of their Git repository, and there is no
reference to its location.
E: Their source code and Kubernetes manifest are in different Git repositories.
Answer: B, D
Explanation The two situations that might be causing the problem with the build pipeline in the Oracle
Cloud Infrastructure DevOps service are: They did not export a vault variable in the vaultVariables
section of the build_spec.yaml file. When using vault variables in the build specification file
(build_spec.yaml), it is necessary to export the vault variables in the vaultVariables section of the file. If
this step is missed, the pipeline may fail due to missing or inaccessible vault variables. Their build
specification file is available in a different directory of their Git repository, and there is no reference to
its location. The build specification file (build_spec.yaml) should be properly referenced in the pipeline
configuration. If the file is located in a different directory than the default location or if its location is
not specified correctly in the pipeline configuration, the pipeline may fail to find and execute the build
specification, leading to a failure. To resolve these issues, the development team should ensure that
they export the required vault variables in the build specification file and correctly reference the
location of the build specification file in the pipeline configuration.
You are part of the cloud DevOps team managing thousands of compute Instances running in Oracle Cloud
Infrastructure (OCI). The OCI Logging service is configured to collect logs from these Instances using a Unified
Monitoring Agent. A requirement has been created to archive logging data into OCI Object Storage. What OCI
capability can help you achieve this requirement?
A: Service Connection Hub
B: Logging Query
C: ObjectColltionRule
D: IAM Policy
Answer: A
/
Dump 1.md 8/4/2023
Which is NOT a valid log category for the Oracle Cloud Infrastructure Logging service?
A: Audit Logs
B: Custom Logs
C: Hybrid Logs
D: Service Logs
Answer: C
You are a developer and have been asked to develop an e-commerce website for your organization. It must
support a variety of clients including desktop browsers, mobile browsers and native mobile applications.
Which two approaches can you use to build the application to achieve deployment independence, easier
technology upgrades, and resiliency to architecture changes? (Choose two.)
A: Build the application as a single unit and use container technology to deploy it.
B: Implement each module as an independent service/process which can be replaced, updated, or deleted
without disrupting the rest of the application.
C: Use monolithic approach as it makes it easier to incrementally adapt to newer technology.
D: Choose monolithic approach over microservices as it has better fault isolation capability
E: Use monolithic approach as it allows you to easily redeploy your application to perform frequent updates.
F: Use microservices architecture as it eliminates any long term commitment to a technology stack
Answer: B, F
A developer has certain expectations around using Configuration Management (CM) and how it helps the
Oracle Cloud Infrastructure (OCI) DevOps process. What is a reasonable expectation for CM as it pertains to
applications?
A: Consistency in performance, function, design, and implementation
B: Orchestration of implementation, integration, deployment, and infrastructure
C: Uniformity in function, automation, testing and implementation
D: Reliability in performance, lifecycle infrastructure, and design
E: Efficiency in design, implementation, integration, and function
Answer: A
Explanation A reasonable expectation for Configuration Management (CM) as it pertains to

applications in the Oracle Cloud Infrastructure (OCI) DevOps process is consistency in performance,
function, design, and implementation. Configuration Management ensures that the application's
configuration, settings, and dependencies are managed consistently across different environments and
/
Dump 1.md 8/4/2023
deployments. It helps maintain the desired state of the application and ensures that it behaves
consistently in terms of performance, functionality, design, and implementation. By using CM practices,
developers can ensure that the application's configurations and dependencies are accurately managed
and deployed, minimizing variations and inconsistencies that could lead to unexpected behavior or
performance issues. This helps maintain a consistent experience for users and facilitates smooth and
reliable operation of the application.
In OCI Secret management within a Vault, you have created a secret and rotated the secret one time. The
current version state shows: Version Number Status 2 (latest) Current 1 Previous In order to rollback to version
1, what should the Administrator do?
A: Create a new secret version 3 Pending Copy the contents of Version 1 into version 3
B: From the version menu, select "Promote to current"
C: From the version 2 latest menu, select Road and select version when given the option
D: Deprecate version 2 (latest), Create a new secret version 3, create soft link for version 3 to version 1
Answer: B
In the DevOps lifecycle, what is the difference between continuous delivery and continuous deployment?
A: Continuous delivery involves automation of developer tasks, while continuous deployment involves manual
operational tasks.
B: Continuous delivery utilizes automatic deployment to a development environment, while continuous

deployment involves automatic deployment to a production environment.
C: Continuous delivery requires more automatic linting, while continuous deployment testing must be run
manually
D: Continuous delivery is a process that initiates deployment manually, while continuous deployment is based
on automating the deployment process.
Answer: D
Pods running in your Oracle Container Engine for Kubernetes (OKE) cluster often need to communicate with
other pods in the cluster or with services outside the cluster. As the OKE cluster administrator, you have been
tasked with configuring permissions to restrict pod-to-pod communications except as explicitly allowed.
Where can you define these permissions?
A: IAM Policies
B: Network Policies
C: RBAC Policies
D: Security Lists
/
Dump 1.md 8/4/2023
Answer: B
As a developer working on the Oracle Cloud Infrastructure (OCI) DevOps service, you are creating a build spec
yaml file to be used in the build pipeline. Which two actions are part of the proper creation of the file?
(Choose two.)
A: Enter the vault secrets needed for the deployment pipeline into the exportedVariables section
B: Enter the details for binaries used in later pipeline stages into the outputArtifacts section
C: Enter the artifacts the build pipeline should permanently save into the storeArtifacts section
D: Enter the variables you would like to use in later build steps into the localVariables section
F: Enter the necessary vault secret variable OCIDs into the vaultVariables section
Answer: B, E
You have just run the managed build stage of an Oracle Cloud Infrastructure (OCI) DevOps Build Pipeline. The
pipeline failed, because the code repository could not be accessed. What might the problem be?
A: More than one code repository was assigned to the DevOps project
B: An administrator created the code repository policy in the parent compartment rather than the main
working compartment.
C: A vault secret has an incorrect OCID assigned to it
D: A deployment Dynamic Group was assigned an incorrect OCID for its compartment.
Answer: C
You are using the Oracle Cloud Infrastructure (OCI) DevOps service and you have successfully built and tested
your software applications in your Build Pipeline. The resulting output needs to be stored in a container
repository. Which stage should you add next to your Build Pipeline?
A: Export packages
B: Deliver artifacts
C: Managed build
D: Trigger deployment
Answer: B
You are a Site Reliability Engineer (SRE) and are new to Oracle Cloud Infrastructure (OCI) DevOps. You need
help tracking the performance of your cloud native applications. Which group of OCI services can help you
get application insights?
A: OCI Resource Manager, Logging, and Cloud Guard

/
Dump 1.md 8/4/2023
B: OCI Service Connector Hub, API Management, Application Performance Advisor
C: OCI Logging Monitoring and Application Performance Monitoring (APM)
D: Oracle Container Engine for Kubernetes (OKI), Instance Groups, and Functions
Answer: C
You are a developer who has made a mistake when adding variables to your build_spec.yaml file. This mistake
resulted in a failed build pipeline. Which is a possible error you could have made?
A: Exported a vaultVariable by creating another variable to export, then transferred the values over during a
build stage
B: Assumed a non-exported variable would be persistent across multiple stages of a build pipeline
C: Defined parameters such as $(VARIABLE_NAME) that you later assigned in the Parameters tab when you ran
tha build pipeline
D: Used vaultVariable to hold the content of the vault secrets in OCID format
Answer: B
A company is building an application and the team decides to deploy on Oracle Cloud Infrastructure (OCI)
DevOps. They want to automate infrastructure and configure OCI resources. To achieve this, which tool should
they use and why?
A: Terraform CLI - In OCI, Terraform is a configuration management tool that manages enterprise-scale server
infrastructure with minimal human intervention using Infrastructure as Code (IaC)
B: Ansible - In OCI, the "Ansible Collection" automates infrastructure provisioning and configuring of OCI
resources, such as Compute, Load Balancing, and Database services.
C: Chef With the OCI DevOps service, users can manage OCI resources using the Chef Knife Plug-in, a CLI tool
that provides help with managing repositories and automating infrastructure
D: Jenkins - In OCI, Jenkins is an automated tool for configuration management that focuses on automating
delivery and management of entire IT infrastructure stacks.
Answer: B
What is a prerequisite for creating a secret in Oracle Cloud Infrastructure Vault service?
A: You must have a Vault managed key to encrypt the secret
B: The user must create a compute instance to run the secret service
C: You must create a digest hash of the secret value
D: You must unseal the Vault by using Shamir's secret sharing

/
Dump 1.md 8/4/2023
Answer: A
You have migrated an on-premise application to Oracle Cloud Infrastructure (OCI) and have started using the
OCI DevOps service. You want to use Kubernetes cluster in your deployment architecture. Which two tools or
services should you use to do this? (Choose two.)
A: Compute Jenkins Plug-in
B: Chef Knife Plug-in
C: Ansible Collection
D: OCI Resource Manager
E: Terraform
Explanation To use a Kubernetes cluster in your deployment architecture on Oracle Cloud Infrastructure
(OCI) with OCI DevOps service, the two recommended tools or services are: Terraform: Terraform is a
widely used Infrastructure-as-Code (IaC) tool that allows you to define and manage your infrastructure
resources in a declarative way. You can use Terraform to define and provision your Kubernetes cluster
on OCI, including the necessary networking, compute resources, and container services. Ansible
Collection: Ansible is an open-source automation tool that helps with configuration management,
application deployment, and orchestration. The Ansible Collection for OCI provides modules and
playbooks specifically designed to manage and interact with OCI resources, including Kubernetes
clusters. You can use Ansible Collection to automate the deployment and management of your
Kubernetes cluster on OCI. The other options mentioned are not directly related to managing
Kubernetes clusters on OCI: Compute Jenkins Plug-in: Jenkins is a popular open-source automation
server used for Continuous Integration/Continuous Deployment (CI/CD) processes. The Compute
Jenkins Plug-in is specific to managing OCI compute resources using Jenkins but does not directly
address Kubernetes cluster deployment. Chef Knife Plug-in: Chef is a configuration management tool
that helps with managing infrastructure as code. The Chef Knife Plug-in is used to interact with the
Chef tool, but it does not directly address Kubernetes cluster deployment on OCI. OCI Resource
Manager: OCI Resource Manager is a service that helps you automate the process of deploying
infrastructure resources on OCI. While it can be used to manage various OCI resources, including
compute instances, it does not specifically focus on Kubernetes cluster deployment.
Answer: C, E
A company is having trouble keeping up with competitors and wants to know more about DevOps solutions.
What does Oracle Cloud Infrastructure (OCI) DevOps do that can help?
A: OCI DevOps helps with security issues and ensures integrated security through automated Jira notifications
B: OCI DevOps helps with erratic code issues by ensuring speedy code execution through shared repos and
tight operational feedback loops
C: OCI DevOps helps with deployment delays by ensuring rapid and continuous integration and delivery
through CI/CD pipelines.
/
Dump 1.md 8/4/2023
D: OCI DevOps assists with high failure rate and outages through Anomaly Detection, Monitoring Services and
Cloud Analytics
Answer: C
A developer is using the Oracle Cloud Infrastructure (OCI) DevOps service to build an application. They are
currently in the process of setting up the required infrastructure using the available tools. In which two ways
can you explain the difference between Ansible and Terraform? (Choose two.)
A: Ansible supports lifecycle management: Terraform lacks lifecycle management support.
B: Ansible uses declarative approach: Terraform is procedural in nature.
C: Ansible automates software installation and application deployment: Terraform manages infrastructure as
code.
D: Ansible is an OCI provided service for CM; Terraform is a third-party tool for infrastructure as code
E: Ansible focuses on infrastructure configuration: Terraform specializes in infrastructure provisioning.
Answer: C, E
/
OCI DevOps Pro 5.md 8/5/2023

You are tasked to troubleshoot failures seen with Build runs through the DevOps Project. What information
would be required to be checked first?
A: Unified Agent Logs

B: Custom Logs
C: Service Logs
D: Service Connector Logs
Answer: C
Which of the following feature of Events Service is used to trigger an automated action when a specific event
occurs in a DevOps Project?
A: Topic
B: Functions
C: Alarms
D: Rules
Answer: D
You are part of a team working on a DevOps project. There is a requirement to provision an Object Storage
bucket whenever the Code Repository is updated. Which of the following could be used here?
A: Functions
B: Events Service
C: Streaming
D: Service Connector
Answer: A, B
An application is continuously logging sensitive information, which needs to be configured with restricted
access to this log data. Which of the following could be a solution?
A: By default, OCI Logging identifies and restricts access to any sensitive logs.
B: Configure Notifications Topic to alert when any sensitive data is logged in to Logging Service.
C: Transition all sensitive logs into Object Storage using Service Connector.
D: Choose separate logs group for sensitive logs and use IAM policies.
Answer: D
Which of the following service is integrated with OCI Monitoring that sends Alarms to a Slack channel?
A: DevOps Project
B: Vault
/
C: Events Service
D: Notifications
Answer: D
A business representative at Oracle is asked to describe OCI DevOps as a Service to a potential customer.
Specifically, they must describe what it is and what it does as succinctly as possible. Which description of the
OCI DevOps service is correct?
A. OCI DevOps as a Service is an automation service for DevOps teams; it uses pipelines to manage
infrastructure.
B. OCI DevOps as a Service is a CI/CD platform for developers; it automates the SDLC.
C. OCI DevOps as a Service is a configuration management service; it orchestrates deployments.
D. OCI DevOps as a Service is a cloud-based platform for engineers; it builds software.
Answer: B
A company is considering DevOps implementation in their current project. They are evaluating existing
processes and tools for quick releases. Can you help this company discern two primary offerings of DevOps
tools?
A. Automate the SDLC, which increases production speed and consistency.
B. Manage multiple repositories and track metrics, which helps system admins with accurate reporting.
C. Assist with build pipelines and team communication, which keeps the application life cycle running
smoothly.
D. Assist with coded infrastructure and security patching, which saves time and ensures data security.
E. Help in automation and integration between software development and IT teams.
Answer: A, E
Which statement correctly identifies the difference between play and playbook?
A. A play is a list of tasks and roles that should be run, whereas a playbook is the file that contains a list of
plays.
B. A play refers to the process of running a playbook, whereas a playbook is the file that contains a list of
tasks.
C. A playbook has the necessary privilege escalation options and the location of the inventory file, whereas a
play is the process of running the task.
D. A play is a collection of host machines, whereas a playbook is the file that contains a list of Ansible
modules.
/
Answer: A
As a DevOps Engineer, you are tasted with automating the process of provisioning your Oracle Cloud
Infrastructure resources for an upcoming project. Which two actions must you perform to accomplish a given
task?
A. Provide declarative files to the Resource Manager service to create stacks for provisioning and managing
OCI resources.
B. Provide Ansible Playbook as a configuration file to the Resource Manager service to create stacks for
provisioning and managing OCI resources.
C. Use Terraform configuration in either .yaml or .txt to define your Oracle Cloud Infrastructure (OCI)
resources, variable definitions, data sources, and a great deal more.
D. When creating a stack with Resource Manager, you can select your Terraform configuration only from
specific sources like local .zip file, local folder and source code control system such as Git.
E. Make use of Terraform built-in functions to modify strings, perform calculations against numeric values, and
manage collections.
Answer: A, E
As a DevOps Engineer, you are asked to manage the OCI Container Registry which hosts docker container
images. You are told to delete all images, within a region in a tenancy, that have not been pulled for the last
72 hours, as they are occupying unnecessary space and leading to unwanted bills for the storage space they
consume. What action would you perform to handle this scenario conveniently?
A. For each old, unused image, select Delete Image from the Actions menu and confirm that you want to
delete the image.
B. Set up local image retention policy to delete images automatically based on selection criteria.
C. Set up global image retention policy to delete images automatically based on selection criteria.
D. Periodically delete old, unused images using Docker CLI.
Answer: C
Which statements are invalid about Oracle Cloud Infrastructure Registry (OCIR)? Select two.
A. There is no limit to the number of repositories you can have in any given region in a tenancy.
B. When you delete a repository, it can take up to two days for the deletion to take effect and for storage to
be released.
C. Once deleted the image is permanently removed from Container Registry and connect be restored.
D. The docker tag command, renames the new image with fully qualified path to its destination, in the format
<region-key>.ocir.io/<tenancy-namespace>/<repo-name>:<tag>
/
Answer: A, C
If you're using Oracle Cloud Infrastructure (OCI) DevOps, which statement is false with respect to the
deployment pipeline?
A. You can bring a build stage into your deployment pipeline.
B. You can add multiple stages to your deployment pipeline.
C. You can add stages in a sequence or in parallel in your deployment pipeline.
D. You can remove any stage from your deployment pipeline.
Answer: A
Which statement is true about managing build pipelines in the Oracle Cloud Infrastructure DevOps service?
A. The Managed Build stage runs build instructions on a service managed build runner. You are not charged
for using the compute shape during the build run.
B. The build specification file, build_spec.txt contains build steps and settings that the build pipeline uses to
run a build.
C. The Deliver Artifacts stage can't be added as the first stage to a build pipeline.
D. The Trigger Deployment stage must be added as the first stage to a build pipeline.
Answer: C
Which statement is false regarding NetworkPolicy resources in Kubernetes?
A. All pods deployed to a Kubernetes cluster are non-isolated by default.
B. Network policies apply only to how groups of pods are able to communicate with other pods in the cluster.
C. A network plugin provider such as Calico must be installed in order to enforce network policies.
D. Once a network policy is applied and has a matching selector, the pod will reject all traffic that is not
explicitly permitted.
Answer: B
Your functions have been deployed to an Oracle Functions application that is assigned to only a private
subnet. Which statement is true concerning private network support for your functions?
A. You can add a Network Address Translation (NAT) gateway to the VCN associated with the Oracle Functions
application to facilitate ingress to your functions from clients in other virtual cloud networks (VCNs).
B. You can create an API Gateway in a public subnet and configure an API deployment using Oracle Functions
as the backend type to expose your function to external clients.
/
C. You must attach one or more network security groups to the Oracle Functions application in order to add
ingress and egress rules to your functions.
D. You should add a service gateway to the VCN associated with the Oracle Functions application to facilitate
access to your functions from other OCI services.
Answer: B
You are running multiple OCI compute instances and are required to apply filters to display CPU utilization of
a specific resource within the monitoring service. Which option will be selected while creating the monitoring
query to achieve this requirement?
A. Suppression
B. Grouping Function
C. Dimension
D. Comparison Operator
Answer: C
You are running a multi-tier application with your Web-App servers in an on-premises environment and
database instances in Oracle Cloud Infrastructure (OCI). There is a requirement for OCI logging service to
collect logs from Web-App servers including database instances running in OCI. Which two options would you
consider for configuring this requirement?
A. Unified Monitoring Agent
B. Agent Configurations
C. Metric Namespace
D. Service Connector
E. OCI Function
Answer: A, B
/
Dump 4.md 8/5/2023

Which two of the following OCI services can be integrated with OCI DevOps?
A: Oracle Cloud Infrastructure Logging Analytics

B: Oracle Cloud Infrastructure Data Flow
C: Oracle Cloud Infrastructure Registry
D: Oracle Cloud Infrastructure Events service
Answer: C, D
You are a Kubernetes administrator in charge of managing a cluster in OCI Container Engine for Kubernetes.
Your team is considering making some modifications to the cluster properties to optimize performance and
resource utilization. However, you are unsure about which modifications are possible and which are not.
Which two statements regarding modifying Kubernetes cluster properties are FALSE?
A: You can change the image and shape used by the existing worker nodes.
B: You can change the version of Kubernetes to run on control plane nodes and worker nodes.
C: You can change the number of node pools in a cluster by adding new node pools or deleting existing node
pools.
D: You can change the version of Kubernetes to run on control plane nodes but cannot change the version of
Kubernetes on worker nodes.
E: You can change the number of worker nodes in a node pool, and the availability domains and subnets in
which to place them.
Answer: A, D
Imagine you are a DevOps engineer working for a company that has an existing application hosted on servers
that are not managed by OCI. Your team is exploring the possibility of using OCI DevOps to automate the
deployment process. You are evaluating the capabilities of OCI DevOps and come across the following
options. Which of these actions is NOT an option in OCI DevOps?
A: You can create and run multiple stages in parallel during a build pipeline (for example, if you are building
multiple library files).
B: You can use an external continuous integration tool, such as Jenkins, with the OCI DevOps deployment
pipeline.
C: You can send your pipeline deployments to target environments on servers that are not owned or managed
by OCI. D: You can mirror your existing application code from an external GitHub or GitLab repository in the
OCI console.
Answer: C
"You can send your pipeline deployments to target environments on servers that are not owned or
managed by OCI" is not an option in OCI DevOps. OCI DevOps allows integration with various external
tools and repositories, such as GitHub and Bitbucket, and provides flexibility in the creating and
running stages during a build pipeline. However, sending pipeline deployments to target environments
/
Dump 4.md 8/5/2023
on servers not owned or managed by OCI is not an option since OCI DevOps is designed to manage
resources within the Oracle Cloud Infrastructure.
You are an Operations Manager who is new to OCI DevOps, and want a tool to help you track an application's
performance. Which tool would you use and why?
A: Ansible; it has an OCI plugin for managing infrastructure and configuring system analytics.
B: Grafana; it has an OCI plugin that allows users to visualize metrics using the OCI monitoring service.
C: Terraform; it has an OCI plugin that allows users to employ Infrastructure as Code (IaC) for performance
tracking.
D: Chef; it has an OCI plugin to leverage CLI for managing resources and local repos, and pulling performance
stats.
E: Nagios; it has an OCI plugin that allows users to monitor systems, applications, networks, and infrastructure.
Answer: B
What is the result of enabling a cluster to use its image verification policy but not specifying the master
encryption key(s) that must have been used to sign an image?
A: No images can be pulled from Oracle Cloud Infrastructure Registry.

B: Any signed image can be pulled from Oracle Cloud Infrastructure Registry, regardless of the master
encryption keys used to sign it.
C: Only images signed using the default master encryption key can be pulled from Oracle Cloud Infrastructure
Registry.
D: Any unsigned image can be pulled from Oracle Cloud Infrastructure Registry.
Answer: B
The correct option is "Any signed image can be pulled from Oracle Cloud Infrastructure Registry,
regardless of the master encryption keys used to sign it." When a cluster's image verification policy is
enabled but the master encryption key(s) that must have been used to sign an image are not specified,
any signed image can be pulled from Oracle Cloud Infrastructure Registry, regardless of the master
encryption keys used to sign it. Additionally, any unsigned image can be pulled from the registry. This
means that the image verification policy will not have any effect in this case and any image can be
deployed to the cluster. Therefore, it is important to specify the master encryption key(s) in the cluster's
image verification policy to enforce the use of suitably signed images.
As a DevOps engineer, you are tasked with creating a pipeline to deploy artifacts to an instance group
environment. Which of the following is a prerequisite for creating the pipeline?
A: A DevOps project, an instance group environment to deploy to, and a kubernetes manifest file
B: A DevOps project, artifacts, and an enabled plugin to download application packages from the specified
artifact registry
C: A DevOps project, an instance group environment to deploy to with the Compute Instance Run Command
plugin enabled, artifacts, and a build_spec file
D: A DevOps project, an instance group environment to deploy to with the Compute Instance Run Command
Thisplugin enabled,
study source artifacts,
was downloaded and a deployment
by 100000829724757 configuration
from CourseHero.com file 09:08:16 GMT -05:00
on 08-08-2023
/
Dump 4.md 8/5/2023
Answer: D
Despite offering valuable insights into system behavior, observability has certain limitations. Which task is
beyond the scope of observability alone?
A: Automating software deployments for streamlined processes

B: Optimizing resource utilization for better efficiency
C: Identifying performance bottlenecks in the infrastructure
D: Troubleshooting and diagnosing code-level issues
Answer: A
You are a software developer working on a project that requires containerization of your application using
Docker. Your company uses Oracle Cloud Infrastructure Registry to store and manage Docker images. What is
the prerequisite step you need to perform before pushing and pulling Docker images to and from OCI
Registry using Docker CLI?
A: SSH key pair

B: Docker registry secret
C: Auth token
D: Master Encryption Key in OCI Vault
Answer: C
You are an administrator of an OKE cluster and want to manage your own master encryption key for
encrypting Kubernetes Secrets in the cluster. Which of the following steps are required to achieve this?
A: Use the Quick Create workflow to create the cluster and select the option to manage the master encryption
key yourself.
B: Create a new policy authorizing the cluster to use the master encryption key.
C: Create a dynamic group in IAM that includes all clusters in the compartment, and create a policy
authorizing the group to use the master encryption key. Use the Custom Create workflow to create the cluster
and select the option to manage the master encryption key yourself.
D: Create a new compartment in the Vault service to store the master encryption key.
Answer: C
As a DevOps engineer at Ecommerce Corp, you are implementing automated deployments and CI/CD
processes. To trigger automated actions based on specific events, such as successful deployments or test
failures, which feature of OCI Events Service can you utilize?
A: Rules
B: Functions
C: Actions
D: Definitions
Answer: A
/
Dump 4.md 8/5/2023
Which two are NOT valid log categories for the Oracle Cloud Infrastructure Logging service?
A: Endpoint Logs
B: Service Logs
C: Execution Logs
D: Audit Logs
E: Custom Logs
Answer: A, C
As a DevOps engineer managing artifacts for a microservices application in OCI DevOps, which statement is
correct?
A: It is recommended that you make artifacts immutable to prevent any modifications after they are uploaded.
B: Artifacts can be directly used by OCI DevOps without needing to be located or mirrored in an OCI Artifact
or Container registry.
C: The name, type, and source of artifacts cannot be modified after they are created.
D: An OCI Function is needed to store Managed Build stage output artifacts in the build pipeline.
Answer: A
As a DevOps engineer, you are tasked with managing deployments on OCI Container Engine for Kubernetes
(OKE). Which step is NOT required for setting up cluster access using a local installation of kubectl?
A: Set up the kubeconfig file.

B: Install and configure the OCI CLI.
C: Generate an auth token from the OCI console to access the OKE cluster using kubectl.
D: Generate an API signing key pair (if you don't already have one) and upload the public key of the API
signing key pair.
Answer: C
A DevOps engineer is asked to work on creating Helm charts to share, package, and deploy software built for
Kubernetes. Which of these statements about Helm chart deployment using OCI DevOps is FALSE?
A: Helm charts contain Kubernetes YAML manifest files and values.yaml file both.
B: The values.yaml file is not specific to each deployment and can be shared.
C: Helm charts can be deployed to public and private OKE clusters.
D: Helm charts must be located in the OCI Artifact Registry for deployment.
Answer: D
Which Oracle Cloud Infrastructure service enables you to scan images in a repository for security
vulnerabilities published in the publicly available Common Vulnerabilities and Exposures (CVE) database?
A: Application Vulnerability Management (AVM)

B: Oracle Cloud Infrastructure Registry (Container Registry)
ThisC: Application
study Performance
source was downloaded Monitoring
by 100000829724757 (APM)
from CourseHero.com on 08-08-2023 09:08:16 GMT -05:00
/
Dump 4.md 8/5/2023
D: Oracle Cloud Infrastructure Artifact Registry

E: Application Dependency Management (ADM)
Answer: B
You can set up Oracle Cloud Infrastructure Registry (also known as Container Registry) to scan images
in a repository for security vulnerabilities published in the publicly available Common Vulnerabilities
and Exposures (CVE) database. You enable image scanning by adding an image scanner to a repository.
From then on, any images pushed to the repository are scanned for vulnerabilities by the image
scanner.
/
Dump 3.md 8/5/2023

As you automate software releases using the Oracle Cloud Infrastructure (OCI) DevOps service to enhance
frequent and error-free feature releases, you encounter a deployment stage failure while updating production.
What action should you take in your deployment pipeline?
A: Implement an automated backup and utilize the re-release stage in the deployment pipeline.
B: Include Rescue and Trigger stages to automatically trigger the failed deployment.
C: Utilize the OCI DevOps Trigger and Rerun tool to minimize downtime.
D: Roll back the pipeline's failed stage to the previous successfully released version.
Answer: D
Which two statements about a Dockerfile are false?
A: The WORKDIR instruction sets the working directory for any RUN, CMD, and ENTRYPOINT instructions and
not for the COPY and ADD instructions in the Dockerfile.
B: The RUN instruction executes any commands in a new layer on top of the current image and commits the
results.
C: If the COMMAND instruction provides default arguments for the ENTRYPOINT instruction, both should be
specified in JSON format.
D: The ENV instruction sets the environment value to the key, and it is available for the subsequent build steps
and in the running container as well.
E: The EXPOSE instruction maps a port into the container. The ports can be TCP or UDP, but by default, they
are TCP.
Answer: A, C
As an operations team member, you want to collect information about the severity of a software vulnerability
using the Common Vulnerability Scoring System (CVSS). Which service provides this information?
A: Application Dependency Management

B: Knowledge Base
C: National Vulnerability Database (NVD)
D: Vulnerability Audit
Answer: C
The correct response option is "National Vulnerability Database (NVD)". The National Vulnerability
Database (NVD) is a repository of standards-based vulnerability management data represented using
the Security Content Automation Protocol (SCAP). The NVD provides a variety of security-related
information, including the Common Vulnerability Scoring System (CVSS) scores for identified
vulnerabilities. The CVSS is a standard method for assessing and scoring the severity of security
vulnerabilities, providing a quantitative way to compare and prioritize security risks. Therefore, the NVD
is the most appropriate service to provide information on the severity of a software vulnerability using
the CVSS.
/
Dump 3.md 8/5/2023
A customer has deployed their microservices-based application on Oracle Container Engine for Kubernetes
(OKE) using the "custom create" option. The Virtual Cloud Network (VCN) hosting the OKE cluster has three
public subnets with associated route tables, security lists, and an internet gateway. However, they are facing
an issue where the application containers fail to deploy. The YAML configuration has the correct path to the
images in Oracle Cloud Infrastructure Registry (OCIR).
Which two are valid concerns that require further investigation?
A: They need to add a security list rule for TCP port 22 to connect to the OCIR service.
B: They need to use kubectl to create a Docker registry secret containing the Oracle Cloud Infrastructure
credentials to use when pulling the image.
C: The OKE cluster needs to have a secret with credentials of their OCIR repository and use that secret in the
Kubernetes deployment manifest.
D: They need to add IAM credentials for each user who deploys applications to the OKE cluster.
E: The VCN hosting the OKE cluster worker nodes needs to have a NAT gateway to access OCIR repositories.
Answer: B, C
Which two statements regarding key rotation in OCI Vault are true?
A: Customers can rotate their keys every 30 days. They can also enter a service request (SR) to request a
rotation sooner than 30 days since the last rotation.
B: You cannot re-encrypt previously encrypted objects with a newly rotated key version.
C: Cryptographic operations involving objects that were encrypted with the previous version of a key will
continue to use the older key version.
D: Customers can only have OCI rotate their keys once a year.
E: Customers can rotate their keys by creating a new key version.
Answer: C, E
Which statement about managing rules for OCI Events service is FALSE?
A: To create rules, the resources you want to monitor with the rule must emit events.
B: Rules apply to events in the compartment in which you create them and any child compartments.
C: The resources you specify for actions have to be in the same compartment as the rule.
D: You must have resources like topic, streams, and functions already set up to specify as an action.
Answer: C
Which feature of the OCI Resource Manager service will you use to differentiate between the real-world state
of your infrastructure and the stack's last executed configuration?
A: View State
B: Drift Detection
C: Diff Detection
D: Apply or Import State
Answer: B
/
Dump 3.md 8/5/2023
A company has a cloud-based application that is deployed and running on a server. The company wants to
ensure that the application is always up and running and that any issues are addressed quickly. To achieve
this, they set up a system that regularly checks the application's performance and sends alerts to the relevant
team members when performance drops below a certain threshold. Which DevOps practice does this scenario
best align with?
A: Continuous Monitoring
B: Continuous Delivery
C: Continuous Integration
D: Continuous Testing
Answer: A
ABC E-commerce is an online retail company that operates on a DevOps model, with constant releases to
their e-commerce platform. Their platform is built using various software packages and dependencies, some
of which may contain vulnerabilities. Recently, the company suffered a major security breach due to an
unpatched vulnerability in one of their dependencies. This resulted in a loss of customer data and a damaged
reputation. The DevSecOps team at ABC E-commerce want to prevent such incidents in the future by
identifying vulnerabilities in software packages and their dependencies early in the SDLC within their DevOps
pipeline. They want to integrate an OCI service that can help them achieve this goal. What OCI service should
they integrate with their DevOps project to achieve this?
A: OS Management
B: Application Vulnerability Management (AVM)
C: Application Dependency Management (ADM)
D: Application Performance Monitoring (APM)
Answer: C
The correct option is "Application Dependency Management (ADM)". ADM is the OCI service that
detects security vulnerabilities in application dependencies and helps teams answer questions such as
which dependencies contain known security vulnerabilities. Integrating ADM in the Managed Build
stage of the DevOps pipeline allows the detection of vulnerabilities early in the SDLC, which can be
critical for e-commerce applications that require constant releases. APM helps teams monitor and
diagnose performance issues in applications, OS Management is focused on managing the OS layer,
and AVM does not exist.
In the OCI DevOps service, you define the same parameter in both the build and deployment pipelines with
different values. You pass the parameter as an exported value to deploy and run the pipelines. Which of the
following statements is true?
A: The values set in the build pipeline and deployment pipeline are concatenated.
B: The value defined in the deployment pipeline takes precedence over the value defined in the build pipeline.
C: The value defined in the build pipeline takes precedence over the value defined in the deployment pipeline.
D: The deployment pipeline fails to run the build when it has a different value.
ThisAnswer: C was downloaded by 100000829724757 from CourseHero.com on 08-08-2023 09:07:48 GMT -05:00
study source
/
Dump 3.md 8/5/2023
You are a network administrator for an organization that uses OKE for managing Kubernetes clusters. You
need to ensure that the network communications within and outside the cluster are secured. What are the two
ways you should consider using to secure network communications for your OKE cluster?
A: Network Policies and Network Security Groups

B: Security Lists and Network Policies
C: Network Security Groups and Cloud Guard
D: Security Lists and Network Security Groups
Answer: B
What is the amount of Ephemeral Storage (in GB) available with each container instance shape,
CI.Standard.E3.Flex and CI.Standard.E4.Flex, respectively?
A: 20 and 15
B: 20 and 20
C: 15 and 15
D: 15 and 20
Answer: C
An operations team is exploring the use of OCI Container Instances to run their container workloads without
managing servers. Which two statements regarding the use of Container Instances are false?
A: Container Instances require manual scaling based on workload demands.

B: The underlying infrastructure of Container Instances is fully managed and hardened by OCI, ensuring
reliability and security.
C: Container Instances provide a Serverless compute service for running containers, eliminating the need for
server management.
D: Container Instances require the team to perform provisioning, patching, and ongoing management of
servers.
E: Billing for Container Instances is based on the allocated CPU and memory resources for each container
instance.
Answer: A, D
If you're using OCI DevOps, which two statements about the deployment pipeline are FALSE?
A: You can add stages in a sequence or in parallel to your deployment pipeline.

B: You can remove any stage from your deployment pipeline.
C: You can bring a build stage into your deployment pipeline. D: You can add multiple stages to your
deployment pipeline. E: Control-Wait stage pauses the deployment for a specified duration for manual
decision from the approver.
Answer: C, E
/
Dump 3.md 8/5/2023
You can bring a build stage into your deployment pipeline. This is false because in OCI DevOps, build
stages are separate from deployment stages and are used to generate artifacts that are used in the
deployment pipeline. The Control-Wait stage in the deployment pipeline adds a specified delay
duration, which causes the deployment to pause. However, the pipeline will resume automatically once
the duration has elapsed, without requiring any manual intervention.
As a DevOps engineer, you are responsible for monitoring high-traffic web applications running on multiple
OCI resources, including virtual machines, load balancers, and databases. You want to set up alerts based on
the specific conditions and integrate with other OCI services. There are failures reported accessing one of the
OCI-based web application and suspected HTTP 5XX errors on the load balancer that need to be quickly
identified. Which feature can help you accomplish this task?
A: Use Custom Metrics of the Monitoring service to collect HTTP 5XX error rates from the load balancer and
set up Service Connectors with third-party services such as PagerDuty or Slack.
B: Use Metrics and Alarms of the Monitoring service to monitor the HTTP 5XX error rate on the load balancer
and set up notifications with OCI Notifications.
C: Use Event Rules to detect HTTP 5XX errors on the load balancer and trigger automated actions using OCI
Functions or API Gateway.
D: Use Metrics and Alarms of the Monitoring service with Container Engine for Kubernetes (OKE) to monitor
HTTP 5XX errors on Kubernetes resources and correlate them with other OCI resources.
Answer: B
/

OCI Devops 2023

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

OCI Devops 2023

Uploaded by

Copyright:

Available Formats

Dump 2.

OCI DevOps Professional (2023) 1Z0-1109-23

A: Self-managed nodes in OKE

A fully qualified path to a particular image in a registry is given as

A: Terraform is not an open-source tool, but Ansible is.

A: Permissions for which OCI users may provision the template

A: Managed Build Stage

OCI DevOps Professional (2023) 1Z0-1109-23

B: Code Repo: Allow dynamic-group <Code Repository> to manage all-resources in

C: Build Pipeline: Allow dynamic-group <BuildPipeline> to manage all-resources in

D: No DevOps IAM policy statement is required.

A: They forgot to export a required variable in the build_spec.yaml file

A: Service Connection Hub

C: Use monolithic approach as it makes it easier to incrementally adapt to newer technology.

A: Consistency in performance, function, design, and implementation

B: Orchestration of implementation, integration, deployment, and infrastructure

C: Uniformity in function, automation, testing and implementation

D: Reliability in performance, lifecycle infrastructure, and design

E: Efficiency in design, implementation, integration, and function

Explanation A reasonable expectation for Configuration Management (CM) as it pertains to

B: From the version menu, select "Promote to current"

B: Continuous delivery utilizes automatic deployment to a development environment, while continuous

C: A vault secret has an incorrect OCID assigned to it

A: OCI Resource Manager, Logging, and Cloud Guard

B: OCI Service Connector Hub, API Management, Application Performance Advisor

C: OCI Logging Monitoring and Application Performance Monitoring (APM)

A: You must have a Vault managed key to encrypt the secret

C: You must create a digest hash of the secret value

D: You must unseal the Vault by using Shamir's secret sharing

A: Compute Jenkins Plug-in

B: Chef Knife Plug-in

D: OCI Resource Manager

A: Ansible supports lifecycle management: Terraform lacks lifecycle management support.

B: Ansible uses declarative approach: Terraform is procedural in nature.

E: Ansible focuses on infrastructure configuration: Terraform specializes in infrastructure provisioning.

OCI DevOps Professional (2023) 1Z0-1109-23

A: Unified Agent Logs

C. OCI DevOps as a Service is a configuration management service; it orchestrates deployments.

D. OCI DevOps as a Service is a cloud-based platform for engineers; it builds software.

A. Automate the SDLC, which increases production speed and consistency.

E. Help in automation and integration between software development and IT teams.

D. Periodically delete old, unused images using Docker CLI.

A. You can bring a build stage into your deployment pipeline.

B. You can add multiple stages to your deployment pipeline.

C. You can add stages in a sequence or in parallel in your deployment pipeline.

D. You can remove any stage from your deployment pipeline.

Which statement is false regarding NetworkPolicy resources in Kubernetes?

A. All pods deployed to a Kubernetes cluster are non-isolated by default.

A. Unified Monitoring Agent

OCI DevOps Professional (2023) 1Z0-1109-23

A: Oracle Cloud Infrastructure Logging Analytics

A: No images can be pulled from Oracle Cloud Infrastructure Registry.

A: Automating software deployments for streamlined processes

A: SSH key pair

A: Set up the kubeconfig file.

A: Application Vulnerability Management (AVM)

D: Oracle Cloud Infrastructure Artifact Registry

OCI DevOps Professional (2023) 1Z0-1109-23

Which two statements about a Dockerfile are false?

A: Application Dependency Management

A: Network Policies and Network Security Groups

A: Container Instances require manual scaling based on workload demands.

A: You can add stages in a sequence or in parallel to your deployment pipeline.

You might also like