Provide Oracle 1z0-1104-22 Dumps Updated Dec 18, 2023 With 95 QA's
Latest 1z0-1104-22 Dumps for Success in Actual Oracle Certified
NEW QUESTION # 55
Which is NOT a part of Observability and Management Services?
- A. OCI Management Service
- B. Logging
- C. Event Services
- D. Logging Analytics
Answer: A
Explanation:
https://www.oracle.com/in/manageability/
NEW QUESTION # 56
Bot Management in OCI provides which of the features? Select TWO correct answers.
- A. Good Bot Allowlist
- B. CAPTCHA Challenge
- C. IP Prefix Steering
- D. Bad Bot Denylist
Answer: A,B
Explanation:
NEW QUESTION # 57
Which Cloud Guard component identifies issues with resources or user actions and alerts you when an issue is found?
- A. Responders
- B. Problems
- C. Detectors
- D. Targets
Answer: C
Explanation:
Detector
Performs checks to identify potential security problems based on activities or configurations. Rules followed to identify problems are the same for all compartments in a target.
https://docs.oracle.com/en-us/iaas/cloud-guard/using/part-start.htm
NEW QUESTION # 58
What is the matching rule syntax for a single condition?
- A. Option C
- B. Option A
- C. Option B
- D. Option D
Answer: A
Explanation:
NEW QUESTION # 59
Which of these protects customer data at rest and in transit in a way that allows customers to meet their security and compliance requirements for cryptographic algorithms and key management?
- A. Data encryption
- B. Identity Federation
- C. Security controls
- D. Customer isolation
Answer: A
Explanation:
DATA ENCRYPTION
Protect customer data at-rest and in-transit in a way that allows customers to meet their security and compliance requirements for cryptographic algorithms and key management.
https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_overview.htm
NEW QUESTION # 60
Select the component that encompasses the overall configuration of your WAF service on OCI.
- A. Web Application Firewall policy
- B. Protection rules
- C. Origin
- D. Bot Management
Answer: A
Explanation:
WAF Policy Management
Provides an overview of web application firewall (WAF) policies, including their creation, updating, and deletion.
WAF policies encompass the overall configuration of your WAF service, including access rules, rate limiting rules, and protection rules.
https://docs.oracle.com/en-us/iaas/Content/WAF/Policies/waf-policy_management.htm
NEW QUESTION # 61
Cloud Guard detected a risk score of zero in the dashboard, what does this mean ?
- A. No problem detected for any resource
- B. Larger number of problems that have high risk levels ( HIGH or CRITICAL )
- C. LOW or MINOR issues
- D. Risk score doesn't say anything. These are just numbers
Answer: A
Explanation:
NEW QUESTION # 62
Which WAF service component must be configured to allow, block, or log network requests when they meet specified criteria?
- A. Web Application Firewall policy
- B. Protection rules
- C. Origin
- D. Bot Management
Answer: B
Explanation:
Protection rules
Protection rules can be configured to either allow, block, or log network requests when they meet the specified criteria of a protection rule. The WAF will observe traffic to your web application over time and suggest new rules to apply.
https://www.oracle.com/security/cloud-security/what-is-waf/
NEW QUESTION # 63
Which volume type contains the image used to boot a compute instance?
- A. Init 6 volume
- B. Block volume
- C. Boot volume
- D. Startup volume
Answer: C
Explanation:
Boot Volumes
When you launch a virtual machine (VM) or bare metal instance based on a platform image or custom image, a new boot volume for the instance is created in the same compartment. That boot volume is associated with that instance until you terminate the instance. When you terminate the instance, you can preserve the boot volume and its data
https://docs.oracle.com/en-us/iaas/Content/Block/Concepts/bootvolumes.htm
NEW QUESTION # 64
Which OCI service can index, enrich, aggregate, explore, search, analyze, correlate, visualize and monitor data?
- A. Data Guard
- B. Data Safe
- C. WAF
- D. Logging Analytics
Answer: D
Explanation:
NEW QUESTION # 65
How can you establish private connectivity over two VCN within same OCI region without traversing the traffic over public internet ?
- A. Data Guard
- B. Local VCN Peering
- C. NAT Gateway
- D. Remote VCN Peering
Answer: B
Explanation:
NEW QUESTION # 66
your company has hired a consulting firm to audit your oracle cloud infrastructure activity and configuration you have created a set of users who will be performing the audit, you assigned these user to the orgauditgrp group. the auditor required the ability to see the configuration of all resources within tenant and you have agreed to exempt the dev compartment from the audit.
which IAM policy should be created to grant the orgauditgrp the ability to look at configuration for all resources except for those resources inside the dev compartment?
- A. allow group orgauditgrp to read all-resources in compartment !=dev
- B. allow group orgauditgrp to inspect all-resources in compartment !=dev
- C. allow group orgauditgrp to read all-resources in tenancy where target.compartment.name !=dev
- D. allow group orgauditgrp to inspect all-resources in tenancy where target compartment.name !=dev
Answer: D
NEW QUESTION # 67
Which Oracle Cloud Service provides restricted access to target resources?
- A. Load balancer
- B. Internet Gateway
- C. SSL certificate
- D. Bastion
Answer: D
Explanation:
Bastion
Oracle Cloud Infrastructure Bastion provides restricted and time-limited access to target resources that don't have public endpoints.
https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_features.htm
NEW QUESTION # 68
Which storage type is most effective when you want to move some unstructured data, consisting of images and videos, to cloud storage?
- A. Block volume
- B. File storage
- C. Archive storage
- D. Standard storage
Answer: D
Explanation:
Use Oracle Cloud Infrastructure Object Storage for data to which you need fast, immediate, and frequent access. Data accessibility and performance justifies a higher price point to store data in the Object Storage tier.
The Object Storage service can store an unlimited amount of unstructured data of any content type, including analytic data and rich content, like images and videos.
https://docs.oracle.com/en/solutions/learn-migrate-app-data-to-cloud/considerations-object-storage.html#GUID-AC192B08-5160-4DA7-B43E-001753D99CF1
NEW QUESTION # 69
A company needs to have some buckets as public in the compartment. You want Cloud Guard to ignore the problem associated with public bucket. Select TWO correct answers
- A. Make the bucket private so that Cloud Guard won't detect it
- B. First make the bucket private and after few days make the bucket public again
- C. Dismiss the issues associated with these resources
- D. Configure Conditional groups for the detector to fix base line
Answer: C,D
NEW QUESTION # 70
you want to create a stateless rule for SSH in security list and the ingress role has already been properly configured what combination should you use on the engress role what commination should you use on the egress rule?
- A. select tcp for protocol: enter 22 for source port" and 22 for destination port
- B. select tcp for protocol: enter 22 for source port" and all for destination port
- C. select udp for protocol: enter 22 for source port" and all for destination port
- D. select tcp for protocol: enter all for source port" and 22 for destination port.
Answer: D
NEW QUESTION # 71
Which security issues can be identified by Oracle Vulnerability Scanning Service? Select TWO correct answers
- A. Distributed Denial of Service (DDoS)
- B. SQL Injection
- C. CIS published Industry-standard benchmarks
- D. Ports that are unintentionally left open can be a potential attack vector for cloud resources
Answer: C,D
Explanation:
NEW QUESTION # 72
Which resources can be used to create and manage from Vault Service ? Select TWO correct answers
- A. Cloud Guard
- B. Secret
- C. IAM
- D. Keys
Answer: B,D
Explanation:
NEW QUESTION # 73
When using Management Agent to collect logs continuously, which is the required configuration for OCI Logging Analytics to retrieve data from numerous logs for an instance?
- A. Entity - Source Association
- B. Agent - Entity Association
- C. Entity - Agent Association
- D. Source-Entity Association
Answer: D
Explanation:
NEW QUESTION # 74
Which OCI cloud service lets you centrally manage the encryption keys that protect your data and the secret credentials that you use to securely access resources?
- A. Cloud Guard
- B. Data Guard
- C. Data Safe
- D. Vault
Answer: D
Explanation:
Oracle Cloud Infrastructure Vault is a managed service that lets you centrally manage the encryption keys that protect your data and the secret credentials that you use to securely access resources. Vaults securely store master encryption keys and secrets that you might otherwise store in configuration files or in code. Specifically, depending on the protection mode, keys are either stored on the server or they are stored on highly available and durable hardware security modules (HSM) that meet Federal Information Processing Standards (FIPS) 140-2 Security Level 3 security certification.
https://docs.oracle.com/en-us/iaas/Content/KeyManagement/Concepts/keyoverview.htm
NEW QUESTION # 75
What are the security recommendations and best practices for Oracle Functions?
- A. Define a policy statement that enables access to functions for requests coming from multiple IP addresses.
- B. Ensure that functions in a VCN have restricted access to resources and services.
- C. Add applications to network security groups for fine-grained ingress/egress rules.
- D. Grant privileges to UID and GID 1000, such that the functions running within a container acquire the default root capabilities.
Answer: C
Explanation:
https://docs.oracle.com/en-us/iaas/Content/Network/Concepts/securitylists.htm
NEW QUESTION # 76
......
Changing the Concept of 1z0-1104-22 Exam Preparation 2023: https://www.free4torrent.com/1z0-1104-22-braindumps-torrent.html
Getting 1z0-1104-22 Certification Made Easy: https://drive.google.com/open?id=19gPTH-g-xVtU7yaj9xI1n6NPfvXZcj_B