Professional Documents
Culture Documents
2. Q2 Answer: B
A data analytics company has been building Its
1 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
now generation big data and analytics platform
on Oracle Cloud Infrastructure (OCI). They need
a storage service that provide the scale and per-
formance that their big data applications require
such as high throughput to compute nodes with
low latency file operations in addition, their data
needs to be stored redundantly across multiple
nodes In a single availability domain and allows
concurrent connections from multiple compute In-
stances hosted on multiple availability domains.
Which OCI storage service can you use to meet this
requirement?
A. Object Storage
B. File System Storage
C. Archive storage
D. Block Volume
3. Q3 Answer: A
You are working as a cloud engineer for an IoT
startup company which is developing a health
monitoring pet collar for dogs and cats. The compa-
ny collects biometric Information of the pet every
second and then sends it to Oracle Cloud Infra-
structure (OCI) Your task is to come up with an ar-
chitecture which will accept and process the moni-
toring data as well as provide complete trends and
health reports to the pet owners. The portal should
be highly available, durable, and scalable with an
additional feature for showing real time biomet-
ric data analytics. which architecture will help you
meet this requirement?
A. Use OCI Streaming Service to collect the incom-
ing biometric dat
B. Use Oracle Functions to process the date and
show the results on a real-time dashboard and
store the results lo OCI Object Storage Store the
data In OCI Autonomous Data warehouse (ADW) to
handle analytics.
C. Launch an open source Hadoop cluster to col-
2 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
lect the Incoming biometrics data Use an Open
source Fluentd cluster to analyze the- data me re-
sults to OCI Autonomous Transaction Processing
(ADW)to handle complex analytics
D. Create an OCI Object Storage bucket to collect
the incoming biometric data from the smart pet
collar Fetch the data horn OC\ Object storage to
OCI Autonomous Data Warehouse (ADW) every day
and run analytics Jobs with it
E. Use OCI Streaming Service to collect the incom-
ing biometric dat
F. Use an open source Hadoop cluster to analyze
the data horn streaming servic
G. Store the results to OCI Autonomous Data ware-
house (ADW) to handle complex analytics
4. Q4 Answer: A, B
Bot Management in OCI provides which of the fea-
tures? Select TWO correct answers.
A. Good Bot Allowlist
B. CAPTCHA Challenge
C. IP Prefix Steering
D. Bad Bot Denylist
5. Q5 Answer: D
Which AM policy should be created to give XYZ
the ability to list contents of a resource excluding
the f needs to authenticate in prod compartment?
Principle of least privilege should be used.
A. Allow group XYZ to read all resources in tenancy
where target.compartment.name I= prod
B. Allow group XYZ to use all resources in compart-
ment != prod
C. Allow group XYZ to manage all resources in
compartment I= prod
D. Allow group XYZ to inspect all resources in ten-
ancy where target.compartment.name I= prod
6. Answer: C
3 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
Q6
what is the use case for Oracle cloud infrastructure
logging analytics service?
A. automatically create instances to collect logs
analysis and send reports
B. labels data packets that pass through the inter-
net gateway
C. monitors, aggregates, indexes and analyzes all
log data from on-premises.
D. automatically and manage any log based on a
subscription model
7. Q7 Answer: C
Select the component that encompasses the over-
all configuration of your WAF service on OCI.
A. Protection rules
B. Bot Management
C. Web Application Firewall policy
D. Origin
8. Q8 Answer: C
As a solutions architect, you need to assist oper-
ations team to write an I AM policy to give users
in group-uat1 and group- uat2 access to manage
all resources in the compartment Uat. Which is the
CORRECT IAM policy?
A. Allow any-user to manage all resources in ten-
ancy where target. compartment= Uat
B. Allow group /group-uat*/ to manage all re-
sources in compartment Uat
C. Allow group group-uat1 group-uat2 to manage
all resources in compartment Uat
D. Allow any-user to manage all resources in com-
partment at where request.group=/group-uat/*
4 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
C. Compartments
D. Free-form tags
17. Answer: A
6 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
Q17
Which storage type is most effective when you
want to move some unstructured data, consisting
of images and videos, to cloud storage?
A. Object Storage
B. File Storage
C. Archive Storage
D. Block Volume
7 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
21. Q21 Answer: A
With regard to OCI Audit Log Service, which of the
statement is INCORRECT?
A. Audit Events gets collected when modification
within objects stored in an Object Storage bucket
B. Retention period for audit events cannot be mod-
ified
C. Events logged by the Audit service can be
viewed by using the Console, API, or the SDK for
Java
D. REST API calls can be recorded by Audit service
8 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
A. Data
B. Guest OS
C. Infrastructure
D. Network
9 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
sources in corporate network?
A. Create an IAM policy and add a network source
B. Make OCI resources private instead of public
C. Create an IAM policy and create WAF rules
D. Create PAR to restrict access the access
11 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
automated backups?
A. Launch a compute instance and run an NGINX
server to host the application. Deploy a 2 node
VM DB Systems with Oracle RAC enabled. Import
the on-premises database to OCI VM DB Systems
using Oracle Data Pump and then enable automatic
backups.
B. Launch a compute instance for both the NGINX
application server and the database server. Attach
block volumes on the database server compute
instance and enable backup policy to backup the
block volumes.
C. Launch a compute instance and run an NGINX
server to host the application. Deploy a 2 node
VM DB Systems with Oracle RAC enabled. Setup
Oracle GoldenGate to synchronize data from their
on-premises database to OCI VM Database. Export
and Import the on-premises database to OCI VM
DB Systems using Oracle Data Pump, apply the
GoldenGate trail files to sync up the OCI database
with the on-premises database. Enable automatic
backups for the OCI VM database and then cut over
the application from on-premises to OCI
D. Launch a compute instance and run an NG-
INX server to host the application. Deploy Exadata
Quarter Rack, enable automatic backups and im-
port the database using Oracle Data Pump
36. Answer: D
12 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
Q36
Cloud Guard detected a risk score of zero in the
dashboard, what does this mean ?
A. Risk score doesn't say anything. These are just
numbers
B. LOW or MINOR issues
C. Larger number of problems that have high risk
levels ( HIGH or CRITICAL )
D. No problem detected for any resource
38. Q38
How can you establish private connectivity over
two VCN within same OCI region without traversing
the traffic over public internet ?
A. NAT Gateway
B. Data Guard
C. Remote VCN Peering
D. Local VCN Peering'
Answer: D
13 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
B. Ports that are unintentionally left open can be a
potential attack vector for cloud resources
C. SQL Injection
D. CIS published Industry-standard benchmarks
14 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
43. Q43 Answer: B, D
You know that a few buckets in your compartment
should stay public, and you do not want Cloud
Guard to detect these as problems. In which two
ways would you handle this?
A. A public bucket is a security risk, so Cloud Guard
will keep detecting it
B. Fix the base line by configuring the Conditional
groups for the detector
C. Resolve or remediate those problems and you
should not see Cloud Guard triggering on these
resources ever again
D. Dismiss the problems associated those re-
sources
15 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
46. Q46 Answer: A
Which of the following is NOT a good use case
for the Oracle Cloud Infrastructure (OCI) Streaming
service?
A. Meeting compliance requirements for data to
remain unchanged over a long time, so that it can
be retrieved for audit purposes
B. Ingesting metric and log data to help make crit-
ical operational data more quickly available for in-
dexing, analysis, and visualization.
C. Messaging with a pull-based communication
model and the ability to feed multiple consumers
with the same data independently.
D. Providing a unified entry point for cloud com-
ponents to report their life cycle events for audit,
accounting, and related activities
Listener 1
Virtual hostname: none
Default backend set: A
Path route set: PathRouteSet1
Listener 2
Virtual hostname: captive.com
Default backend set: B
Path route set: PathRouteSet1
Listener 3
Virtual hostname: wild.com
Default backend set: C
Path route set: PathRouteSet1
{"code":"FunctionInvokeImageNotAvail-
able","message":"Failed to pull function image"}
18 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
schedule, which of the following two are valid con-
siderations for your backup plan? (Choose Two)
A. Governance: Tagging of backups so you can
capture backup related API calls through the Audit
service.
B. Location: Determine the Object Store Bucket
where the backups will be stored.
C. Number of stored backups: How many backups
you need to keep available and the deletion sched-
ule for those you no longer need
D. Encryption: Whether to use your own key to
encrypt your volume backups.
E. Frequency: How often you want to back up your
data
19 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
stored procedures or views in the on-premises
databases
20 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
54. Q54 Answer: D
A company is running High Performance Comput-
ing workloads on Oracle Cloud Infrastructure and
are using OCI bare metal compute shape. They
have decided to create a custom image of the bare
metal instance's boot disk and use it to launch
other instances.
22 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
gion should access the application web servers
deployed in their own geographical OCI location.
23 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
of failure, the Recovery Time Objective (RTO) and
Recovery Point Objective (RPO) must be less than
2 hours.
24 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
an event every time an image is uploaded to an
OCI Object Storage bucket. You have also created a
function that is listening to the event and process-
es the image for face recognition.
27 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
Route. Use a Service Gateway in OCI Virtual Cloud
Network to provide connectivity to the Oracle ADW
instance for the application in Microsoft Azure VNet
D. Create a software VPN connection between Or-
acle Cloud Infrastructure (OCI) Virtual Cloud Net-
work (VCN) and Microsoft Azure Virtual Network
(VNet) and connect the application with Oracle
ADW instance
28 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
Destination CIDR: 0.0.0.0/0
Protocols: All Protocols
B. Add an internet gateway to your VCN and add a
route rule to your private subnet route table.
CIDR: 0.0.0.0/0
Target: Internet Gateway
C. Add a remote peering connection from your VCN
to the ATP VCN
D. Create a NAT Gateway and add the following
route rule to the route table of private subnet.
CIDR: 0.0.0.0/0
Target: NAT Gateway
71. Answer: D
31 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
Q72
An eCommerce company is running on Oracle
Cloud Infrastructure (OCI) and many compute in-
stances remain unused for the most part of the
year except during Black Friday and Christmas.
You suggest them to use OCIs Autoscaling feature
and present them a slide to showcase the features
of Autoscaling.
32 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
73. Q74 Answer: A
As per Oracle Cloud Architecture (OCI) Connectivi-
ty Redundancy recommendations, you have decid-
ed to deploy two 10 GB FastConnect Virtual Cir-
cuits going from on-premises to OCI. One of these
is active and the other is in stand-by mode. One
of the virtual circuits is provided by OCI FastCon-
nect partner A, while the other virtual circuit is
provided by OCI FastConnect partner B. Despite
implementing this recommended architecture, you
encounter complete unavailability of connectivity
between OCI and on-premises. What is the most
likely reason for this issue?
A. OCI partner B leases infrastructure from partner
A and both digital circuits run over the same phys-
ical line. Partner A went down
B. The 10 GB bandwidth was not sufficient for the
amount of traffic being sent, causing FastConnect
to overflow.
C. The Dynamic Routing Gateway on OCI froze,
bringing down both circuits.
D. The two edge routers on premises malfunctioned
simultaneously, causing both circuits to go down
33 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
plete, such as OCI Autonomous Database backup
completion
34 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
chronization to a cloud-based database and allow
clients to connect to either databases.
C. Use an on-premises database with one-way syn-
chronization to a cloud-based database and allow
clients to connect only to the on-premises data-
base until it is synchronized
D. Use an on-premises database with one-way syn-
chronization to a cloud-based database and allow
clients to connect only to the cloud database
35 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
ables to define conditions in the matching rules?
(Choose Two)
A. instance.compartment.id - the OCID of the com-
partment where the instance resides
B. instance.tenancy.id - the OCID of the tenancy
where the instance resides.
C. iam.policy.id - the OCID of the IAM policy to apply
to the group.
D. tag.<tagnamespace>.<tagkey>.value - the tag
namespace and tag key
36 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
ability Domain. Each subnet needs to have a mini-
mum of 64 usable IP addresses.
37 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
39 / 43
1Z0-997-22 - Architect Professional
Study online at https://quizlet.com/_cz149y
A. You are NOT using regional subnets in your
Virtual Cloud Network. With Availability Domain
(AD) specific subnet, the compute instances of the
backend service running in the subnet have issues
when the AD is down.
B. You are using OCI Domain Name System. You
have misconfigured the 'A' record with the wrong
IP address leading to requests not getting routed
correctly.
C. You are using iSCI for block volume attachment
to the compute instances in your backed HTTP
service. TCP/IP configuration of your block volume
attachment is not configured correctly, leading to
issues in your backend service.
D. You are running a TCP-level health check against
your HTTP service. The TCP handshake can suc-
ceed and indicate that the service is up even when
the HTTP service has issues
43 / 43