Cisco®
Oracle
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
All Vendors
  2. Home
  3. Exams
  4. Oracle
  5. 1Z0-1072

Free Oracle 1Z0-1072 Exam Questions (page: 3)

Page 3 of 50
PDF with 197 Questions

You have two NFS clients running in two different subnets within the same Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN). You have created a shared file system for the two NFS clients who want to connect to the same file system, but you want to restrict one of the clients to have READ access while the other has READ/Write access. Which OCr feature would you leverage to meet this requirement?

  1. Use VCN security rules to control access for the NFS clients
  2. Use OCI Identity Access Management to control access for the NFS clients
  3. Use File Storage NFS Export Options to control access for the NFS clients
  4. Use NFS security to control access for the NES clients

Answer(s): C

Explanation:

Oracle Cloud Infrastructure File Storage service provides a durable, scalable, secure, enterprise-grade network file system. You can connect to a File Storage service file system from any bare metal, virtual machine, or container instance in your Virtual Cloud Network (VCN). You can also access a file system from outside the VCN using Oracle Cloud Infrastructure FastConnect and Internet Protocol security (IPSec) virtual private network (VPN).

EXPORT

Exports control how NFS clients access file systems when they connect to a mount target. File systems are exported (made available) through mount targets. Each mount target maintains an export set which contains one or many exports. A file system must have at least one export in one mount target in order for instances to mount the file system. The information used by an export includes the file system OCID, mount target OCID, export set OCID, export path, and client export options. For more information, see Managing Mount Targets.

EXPORT SET

Collection of one or more exports that control what file systems the mount target exports using NFSv3 protocol and how those file systems are found using the NFS mount protocol. Each mount target has an export set. Each file system associated with the mount target has at least one export in the export set.

EXPORT PATH

A path that is specified when an export is created. It uniquely identifies the file system within the mount target, letting you associate up to 100 file systems to a single mount target. This path is unrelated to any path within the file system itself, or the client mount point path.

EXPORT OPTIONS

NFS export options are a set of parameters within the export that specify the level of access granted to NFS clients when they connect to a mount target. An NFS export options entry within an export defines access for a single IP address or CIDR block range. For more information, see Working with NFS Export Options.



You have a shared file system between two web servers using File Storage Service (FSS) and you were tasked to create a backup plan for this environment to protect the data placed into the shared file system.

What is the recommended approach to create this backup using FSS features?

  1. Implement a backup policy to execute a snapshot of the shared volume.
  2. Implement a backup policy to copy data from the shared volume to object storage.
  3. Compress the data that is in the shared volume and copy it into a different folder on the boot volume disk.
  4. Use the rsync tool to send data from the shared volume to a boot volume disk.
  5. Use the rsync tool to send data from the shared volume to a block volume.

Answer(s): A



Which two statements are true about subnets within a VCN? (Choose two.)

  1. You can have multiple subnets in an Availability Domain for a given VCN.
  2. Private and Public subnets cannot reside in the same Availability Domain for a given VCN.
  3. Subnets can have their IP addresses overlap with other subnets in another network for a given VCN.
  4. Instances obtain their private IP and the associated security list from their subnets.

Answer(s): A,D


Reference:

https://cloud.oracle.com/en_US/bare-metal-network/vcn/faq



You have an instance running in a development compartment that needs to make API calls against other OCI services, but you do not want to configure user credentials or a store a configuration file on the instance. How can you meet this requirement?

  1. Create a dynamic group with matching rules to include your instance
  2. Instances can automatically make calls to other OCI services
  3. Instances are secure and cannot make calls to other OCI services
  4. Create a dynamic group with matching rules to include your instance and write a policy for this dynamic group

Answer(s): D

Explanation:

Dynamic groups allow you to group Oracle Cloud Infrastructure computer instances as "principal" actors (similar to user groups).

When you create a dynamic group, rather than adding members explicitly to the group, you instead define a set of matching rules to define the group members. For example, a rule could specify that all instances in a are launched and terminated in that compartment.

A dynamic group has no permissions until you write at least one policy that gives that dynamic group permission to either the tenancy or a compartment. When writing the policy, you can specify the dynamic group by using either the unique name or the dynamic group's OCID. Per the preceding note, even if you specify the dynamic group name in the policy, IAM internally uses the OCID to determine the dynamic group.



Viewing page 3 of 50



Post your Comments and Discuss Oracle 1Z0-1072 exam prep with other Community members:

1Z0-1072 Exam Discussions & Posts