• Home
  • Articles
  • [Oct-2022] 1z0-997-22 Exam Dumps Pass with Updated 2022 Oracle Cloud Infrastructure 2022 Architect Professional [Q53-Q72]

[Oct-2022] 1z0-997-22 Exam Dumps Pass with Updated 2022 Oracle Cloud Infrastructure 2022 Architect Professional [Q53-Q72]

Share

[Oct-2022] 1z0-997-22 Exam Dumps Pass with Updated 2022 Oracle Cloud Infrastructure 2022 Architect Professional

Free 1z0-997-22 Exam Dumps to Pass Exam Easily


Oracle 1z0-997-22 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Manage infrastructure using IaC, OCI CLI, APIs and SDKs
  • Design and implement hybrid network architectures to meet high availability, bandwidth and latency requirements
Topic 2
  • Design, implement and operate databases in OCI
  • Implement and operate solutions in OCI
  • Evaluate multi-cloud solution architectures
Topic 3
  • Implement solutions to meet business and technical requirements
  • Operate and troubleshoot solutions on OCI

 

NEW QUESTION 53
You are building a highly available and fault tolerant web application deployment for your company. Similar application delayed by competitors experienced web site attack including DDoS which resulted in web server failing.
You have decided to use Oracle Web Application Firewall (WAF) to implement an architecture which will provide protection against such attacks and ensure additional configuration will you need to implement to make sure WAF is protecting my web application 24×7.
Which additional configuration will you need to Implement to make sure WAF Is protecting my web application 24×7?

  • A. Configure Control Rules to send traffic to multiple web servers
  • B. Configure new rules based on now vulnerabilities and mitigations
  • C. Configure multiple origin servers
  • D. Configure auto scaling policy and it to WAF instance.

Answer: C

Explanation:
Origin Management
An origin is an endpoint (typically an IP address) of the application protected by the WAF. An origin can be an Oracle Cloud Infrastructure load balancer public IP address. A load balancer IP address can be used for high availability to an origin. Multiple origins can be defined, but only a single origin can be active for a WAF. You can set HTTP headers for outbound traffic from the WAF to the origin server. These name value pairs are then available to the application.
Oracle Cloud Infrastructure Web Application Firewall (WAF) is a cloud-based, Payment Card Industry (PCI) compliant, global security service that protects applications from malicious and unwanted internet traffic.
WAF can protect any internet facing endpoint, providing consistent rule enforcement across a customer's applications. WAF provides you with the ability to create and manage rules for internet threats including Cross-Site Scripting (XSS), SQL Injection and other OWASP-defined vulnerabilities. Unwanted bots can be mitigated while tactically allowed desirable bots to enter. Access rules can limit based on geography or the signature of the request.
Distributed Denial of Service (DDoS)
A DDoS attack is an often intentional attack that consumes an entity's resources, usually using a large number of distributed sources. DDoS can be categorized into either Layer 7 or Layer 3/4 (L3/4) A layer 7 DDoS attack is a DDoS attack that sends HTTP/S traffic to consume resources and hamper a website's ability to delivery content or to harm the owner of the site. The Web Application Firewall (WAF) service can protect layer 7 HTTP-based resources from layer 7 DDoS and other web application attack vectors.

 

NEW QUESTION 54
A data analytics company has been building Its now generation big data and analytics platform on Oracle Cloud Infrastructure (OCI). They need a storage service that provide the scale and performance that their big data applications require such as high throughput to compute nodes with low latency file operations in addition, their data needs to be stored redundantly across multiple nodes In a single availability domain and allows concurrent connections from multiple compute Instances hosted on multiple availability domains.
Which OCI storage service can you use to meet i his requirement?

  • A. Archive storage
  • B. Block Volume
  • C. Object Storage
  • D. File System Storage

Answer: D

Explanation:
Oracle Cloud Infrastructure File Storage service provides a durable, scalable, secure, enterprise-grade network file system. You can connect to a File Storage service file system from any bare metal, virtual machine, or container instance in your Virtual Cloud Network (VCN). You can also access a file system from outside the VCN using Oracle Cloud Infrastructure FastConnect and Internet Protocol security (IPSec) virtual private network (VPN).
Use the File Storage service when your application or workload includes big data and analytics, media processing, or content management, and you require Portable Operating System Interface (POSIX)- compliant file system access semantics and concurrently accessible storage. The File Storage service is designed to meet the needs of applications and users that need an enterprise file system across a wide range of use cases

 

NEW QUESTION 55
You are working as a security consultant with a global insurance organization which is using Microsoft Azure Active Directory (AD) as identity provided to manager user login/passwords. When a user logs in to Oracle Cloud infrastructure (OCI) console, it should get authenticated by Azure AD.
Which set of steps are required to configure at OCI side in order to get it enabled

  • A. Setup Azure AD as an Enterprise Application, configure OCI for single sign-on, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups
  • B. Setup Azure AD as an Enterprise Application, map Azure AD users and groups and policies to OCI groups and users
  • C. Setup Azure AD as an Identity Provider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups
  • D. Setup Azure AD as an Identity Provider, Import users and groups from Azure AD to OCI, set up IAM policies to govern access to Azure AD groups

Answer: C

Explanation:
Federating with Microsoft Azure Active Directory
To federate with Azure AD, you set up Oracle Cloud Infrastructure as a basic SAML single sign-on application in Azure AD. To set up this application, you perform some steps in the Oracle Cloud Infrastructure Console and some steps in Azure AD.
Following is the general process an administrator goes through to set up the federation. Details for each step are given in the next section.
In Oracle Cloud Infrastructure, download the federation metadata document.
In Azure AD, set up Oracle Cloud Infrastructure Console as an enterprise application.
In Azure AD, configure the Oracle Cloud Infrastructure enterprise application for single sign-on.
In Azure AD, set up the user attributes and claims.
In Azure AD, download the Azure AD SAML metadata document.
In Azure AD, assign user groups to the application.
In Oracle Cloud Infrastructure, set up Azure AD as an identity provider.
In Oracle Cloud Infrastructure, map your Azure AD groups to Oracle Cloud Infrastructure groups.
In Oracle Cloud Infrastructure, set up the IAM policies to govern access for your Azure AD groups.
Share the Oracle Cloud Infrastructure sign-in URL with your user

 

NEW QUESTION 56
You are trying to delete a compartment. The delete operation is falling and you need to troubleshoot the problem.
Which step should NOT be considered when troubleshooting this issue?

  • A. Make sure you have at least one more compartment in your tenancy other than the root compartment.
  • B. Search for resources in the compartment for each region that your tenancy is subscribed to.
  • C. Verify that you have removed all resources from the compartment.
  • D. Verify that there are no policies In the root compartment that reference the compartment you are trying to delete.

Answer: D

 

NEW QUESTION 57
As part of planning the network design on Oracle Cloud Infrastructure, you have been asked to create an Oracle Cloud Infrastructure Virtual Cloud Network (VCN) with 3 subnets, one in each Availability Domain. Each subnet needs to have a minimum of 64 usable IP addresses.
What is the smallest subnet and VCN size you should use to implement this design? The requirements are static, so no growth is expected.

  • A. 122 for the VCN; 124 for the subnets
  • B. /23 for the VCN; /25 for the subnets
  • C. /24 for the VCN; /24 for the subnets
  • D. /22 for the VCN; /25 for the subnets

Answer: B

 

NEW QUESTION 58
You are working as a cloud consultant for a major media company. In the US and your client requested to consolidate all of their log streams, access logs, application logs, and security logs into a single system.
The client wants to analyze all of their logs In real-time based on heuristics and the result should be validated as well. This validation process requires going back to data samples extracted from the last 8 hours.
What approach should you take for this scenario?

  • A. Create a bare-metal instance big enough to host a syslog enabled server to process the logs and store logs on the locally attached NVMe SSDs for rapid retrieval of logs when needed.
  • B. Set up an OCI Audit service and ingest all the API arils from Audit service pragmatically to a client side application to apply heuristics and save the result in an OCI Object storage.
  • C. Stream all the logs and cloud events of Events service to Oracle Streaming Service. Build a client process that will apply heuristics on the logs and store them in an Object Storage.
  • D. Create an auto scaling pool of syslog-enabled servers using compute instances which will store the logs In Object storage, then use map reduce jobs to extract logs from Object storage, and apply heuristics on the logs.

Answer: C

Explanation:
The Oracle Cloud Infrastructure Streaming service provides a fully managed, scalable, and durable storage solution for ingesting continuous, high-volume streams of data that you can consume and process in real time. Streaming can be used for messaging, ingesting high-volume data such as application logs, operational telemetry, web click-stream data, or other use cases in which data is produced and processed continually and sequentially in a publish-subscribe messaging model.
Streaming Usage Scenarios
Here are some of the many possible uses for Streaming:
Metric and log ingestion: Use the Streaming service as an alternative for traditional file-scraping approaches to help make critical operational data more quickly available for indexing, analysis, and visualization.
Messaging: Use Streaming to decouple components of large systems. Streaming provides a pull/bufferbased communication model with sufficient capacity to flatten load spikes and the ability to feed multiple consumers with the same data independently. Key-scoped ordering and guaranteed durability provide reliable primitives to implement various messaging patterns, while high throughput potential allows for such a system to scale well.
Web/Mobile activity data ingestion: Use Streaming for capturing activity from websites or mobile apps (such as page views, searches, or other actions users may take). This information can be used for realtime monitoring and analytics, as well as in data warehousing systems for offline processing and reporting.
Infrastructure and apps event processing: Use Streaming as a unified entry point for cloud components to report their life cycle events for audit, accounting, and related activities.

 

NEW QUESTION 59
A telecom company has an application running in Oracle Cloud Infrastructure (OCI) Germany Central (eu-frankfurt-1) region. They want to configure Disaster Recovery (DR) site in the OCI UK South (uk-london-1) region. Which is the most cost effective option to help set up application and persistence layers in the DR site?

  • A. Application layer: configure Traffic Management steering policy with Load Balancing policy between servers in eu-frankfurt-1 and uk-london-1 regions.
    Persistence layer: set up policy to schedule cross-region automated backups of block volumes between eu-frankfurt-1 and uk-london-1 regions.
  • B. Application layer: configure events service rule in eu-frankfurt-1 region to filter Health Checks event failure and route traffic to uk-london-1 region in the event of a disaster.
    Persistence layer: set up policy to schedule cross-region automated backups of block volumes between eu-frankfurt-1 and uk-london-1 regions.
  • C. Application layer: configure Traffic Management steering policy with Failover policy between servers in eu-frankfurt-1 and uk-london-1 regions.
    Persistence layer: set up policy to schedule cross-region automated backups of file systems in File Storage service between eu-frankfurt-1 and uk-london-1 regions.
  • D. Application layer: Set us a public laod balancerin the eu-frankfurt-1 region. Create a backend set with instances running in bothuk-frankfurt-1 and uk-london-1 regions.
    Persistence layer: Set up OCI Object Storage replication from eu-frankfurt-1 region to uk-london-1 region.

Answer: A

 

NEW QUESTION 60
A new international hacktivist group, based in London, launched wide scale cyber attacks including SQL Injection and Cross-Site Scripting (XSS) across multiple websites which are hosted in Oracle Cloud Infrastructure (OCI). As an IT consultant, you must configure a Web Application Firewall (WAF) to protect these websites against the attacks.
How should you configure your WAF to protect the website against those attacks? (Choose the best answer.)

  • A. Enable an Access Rule to block the IP Address range from London.
  • B. Enable a Protection Rule to block the attacks based on HTTP Headers that contain XSS and SQL strings.
  • C. Enable a Protection Rule that contains XSS Filters Categories and SQL Filters Categories.
  • D. Enable an Access Rule that contains XSS Filters Categories and SQL Filters Categories.
  • E. Enable a Protection Rule to block requests that came from London.

Answer: C

Explanation:
https://www.ateam-oracle.com/using-oci-waf-web-application-firewall-with-oracle-e-business-suite#:~:text=The%20protection%20rules%20can%20be,achieved%20by%20enabling%20corresponding%20rules.

 

NEW QUESTION 61
Which of the following features is NOT supported by Oracle Cloud Infrastructure Multi-factor authentication (MFA)?

  • A. Users can disable MFA for their own accounts.
  • B. Members of the Administrators group can disable MFA for other users.
  • C. Members of the Administrators group can enable MFA for other users.
  • D. Only the user can enable MFA for their own account.

Answer: C

 

NEW QUESTION 62
You are working as a solution architect for an online retail store to create a portal to allow the users to pay for their groceries using credit cards. Since the application is not fully compliant with the Payment Card Industry Data Security Standard (PCI DSS), your company is looking to use a third party payment service to process credit card payments.
The third party service allows a maximum of Spelunk IP addresses 5 public IP addresses at a time However, your website is using Oracle Cloud Infrastructure (OCI) Instance Pool Auto Scaling policy to create up to create up to 15 Instances during peak traffic demand, which are launched In VCN private in VCN private subnets and attached to an OCI public Load Balancer. Upon user payment, the portal connects to the payment service over the Interne! to complete the transaction What solution can you implement to make sure that all compute Instances can connect to the third party system to process the payments aw peak traffic demand?

  • A. Create an OCI Command Line Interface (CLI) script to automatically reserve public IP address for the compute instances. On the third-party services, whitelist the Reserved public IP.
  • B. Route credit card payment request from the compute instances through the NAT Gateway. On the third-party services, whitelist the public IP associated with the NAT Gateway.
  • C. Route payment request from the compute instances through the OCI Load Balancer, which will then be routed to the third party service.
  • D. Whitelist the Internet Gateway Public IP on the third party service and route all payment requests through the Internet Gateway.

Answer: B

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Balance/Concepts/balanceoverview.htm

 

NEW QUESTION 63
A company has an application that processes confidential dat
a. The data is currently stored in an on-premises data center. A solution architect needs to move this data to Oracle Cloud Infrastructure (OCI) Object Storage and ensure data is encrypted in-transit to OCI.
Which two steps should the solution architect perform to set up the most cost-effective connection between on-premises data center and OCI?

  • A. Set up private end point for accessing Object Storage.
  • B. Configure a private peering connection on the Oracle FastConnect
  • C. Set up an IPsec tunnel between the customer equipment and software VPN on an oci instance
  • D. Set up VPN Connect between the customer equipment and the Dynamic Routing Gateway.
  • E. Configure a service gateway accessing Object Storage.
  • F. Attach an Internet Gateway to Virtual Cloud network(VCN).

Answer: D,E

 

NEW QUESTION 64
You are advising the database administrator responsible for managing non-production environment for Oracle Autonomous Database running on Oracle Cloud Infrastructure. You need to help the database administrator ensure that the non-production environments have a copy of the current data from the production environment in a manner that is most time-efficient.
Which method should you recommend? (Choose the best answer.)

  • A. Take a full database backup of the production Autonomous database and create the non-production database from it.
  • B. Create a full clone of the production Autonomous Database and create the non-production database from it.
  • C. Create a metadata clone of the production Autonomous Database and create the non-production database from it.
  • D. Take a Data Pump export of the production Autonomous database and import into the non-production database.

Answer: B

Explanation:
https://www.oracle.com/database/technologies/datawarehouse-bigdata/adb-faqs.html

 

NEW QUESTION 65
To serve web traffic for a popular product, your cloud engineer has provisioned four BM.Standard2.52 instances, event spread across two availability domains in the us-asburn-1 region: LoadBalancer is used to deliver the traffic across instances.
After several months, the product grows even more popular and you need additional compute capacity. As a result, an engineer provisioned two additional VM.Standard2.8 instances.
You register the two VM. Standard2. 8 Instances with your load Balancer Backend sot and quickly find that the VM Standard2.8 Instances running at 100% of CPU utilization but the BM.Standard2 .52 instances have significant CPU capacity that's unused.
Which option is the most cost effective and uses instances capacity most effectively?

  • A. Configure LoadBalancer with two VM Standard2.8 instances and use Autoscalling Instant pool to add up to two additional VM instances. Shut off BM.Standard2.52 instances.
  • B. Configure your Load Balance, with weighted round robin policy to distribute traffic to the compute instances, with more weight assigned to bare metal instances.
  • C. Configure Autoscaling instance pool with LoadBalancer to add up to 3 more BM.Standard2.52 Instances when triggered. Shut off VM.Standard2.8 instances.
  • D. Route traffic to BM.Standard2.52 and VM Standard2.8 instances directly using DNS and Health Checks. Shut off the load Balances.

Answer: B

Explanation:
Customer have 4 BM.Standard2.52 and After several months he need additional compute capacity customer find The VM Standard2.8 Instances running at 100% of CPU utilization but the BM.Standard2 .52 instances have significant CPU capacity that unused.
so the customer need to check the Load balance policy to make sure the 4 BM and VM is utilize correctly

 

NEW QUESTION 66
As an administrator you want to give users of ObjectWriters group full access to bucket Bucket-A and its objects in compartment comp-images. You want users of ObjectWriters to not be able to access or modify properties of any other buckets and its objects in the compartment comp-images.
Select the statement(s) below that will best define your IAM policies.

  • A. Allow group ObjectWriters to mange buckets in compartment comp- images Allow group ObjectWriters to manage objects in compartment comp-images where target.bucket.name= 'Eucket-A'
  • B. Allow group ObjectWritexs to read buckets in compartmentcomp-images Allow group ObjectWriters to manage objects in compartment comp- images where target.bucket.name= 'Bucket-A'
  • C. Allow group ObjectWriters to manage buckets in compartment comp-images where target.bucket.name=' Bucket-A'
  • D. Allow group ObjectWriters to inspect buckets in compartment comp-images Allow group ObjectWriters to read buckets in compartment comp-images where target.bucket.name=' Bucket-A" Allow group ObjectWriters to manage objects in compartment comp-images where target.bucket.name=' Bucket-A'

Answer: D

 

NEW QUESTION 67
You are working as a solutions architect for an online retail store In Frankfurt which uses multiple compute instance VMs spread among three availability domains In the eu-frankfurt-1 region.
You noticed the website Is having very high traffic, so you enabled autoscaling to sun tee me no f your application but, you observed that one of the availability domains is not receiving any traffic.
What could be wrong In this situation?

  • A. Autoscaling is using an Instance Pool configured to create instances in two availability Domains.
  • B. Autoscaling can be enabled for multiple availability domains only in uk-london t region.
  • C. You have to manually acid all three availability domains to your load balancer configuration.
  • D. You forgot to attach a load balancer to your instance pool configuration.
  • E. Autoscaling only works with single availability domains.

Answer: A

Explanation:
Autoscaling lets you automatically adjust the number of Compute instances in an instance pool based on performance metrics such as CPU utilization. This helps you provide consistent performance for your end users during periods of high demand, and helps you reduce your costs during periods of low demand.
you can associate a load balancer with an instance pool. If you do this, when you add an instance to the instance pool, the instance is automatically added to the load balancer's backend set . After the instance reaches a healthy state (the instance is listening on the configured port number), incoming traffic is automatically routed to the new instance.
Instance pools let you provision and create multiple Compute instances based off the same configuration, within the same region.
By default, the instances in a pool are distributed across all fault Domains in a best-effort manner based on capacity. If capacity isn't available in one fault domain, the instances are placed in other fault domains to allow the instance pool to launch successfully.
In a high availability scenario, you can require that the instances in a pool are evenly distributed across each of the fault domains that you specify. When sufficient capacity isn't available in one of the fault domains, the instance pool will not launch or scale successfully, and a work request for the instance pool will return an "out of capacity" error. To fix the capacity error, either wait for capacity to become available, or use the UpdateInstancePool operation to update the placement configuration (the availability domain and fault domain) for the instance pool.
during create the instance pool you can select the location where you want to place the instances" In the Availability Domain list, select the availability domain to launch the instances in.
If you want the instances in the pool to be placed evenly in one or more fault domains, select the Distribute instances evenly across selected fault domains check box. Then, select the fault domains to place the instances in.

 

NEW QUESTION 68
You have configured backups for your Oracle Cloud Infrastructure (OCI) 2-node RAC DB systems on virtual machines. In the console, the database backup displays a Failed status.
Which of the following options is the most likely reason for this backup issue?

  • A. The RMAN backup agent is not compatible with the version of database being used.
  • B. The master key stored in OCI Key Management for encryption and decryption of data in the database is not accessible to the backup service.
  • C. The allocated storage on the OCI File Storage service file system attached with the database is full.
  • D. The auth token being used by the Object Store Swift endpoint is incorrect.

Answer: D

 

NEW QUESTION 69
You are creating an Oracle Cloud Infrastructure Dynamic Group. To determine the members of this group you are defining a set of matching rules.
Which of the following are the supported variables to define conditions in the matching rules? (Choose Two)

  • A. instance.tenancy.id -the OCID of the tenancy where the instance resides.
  • B. instance.compartment.id -the OCID of the compartment where the instance resides.
  • C. tag.<tagnamespace>.<tagkey>.value -the tag namespace and tag key.
  • D. iam.policy.id - the OCID of the IAM policy to apply to the group.

Answer: B,C

 

NEW QUESTION 70
A company runs a public-facing application that uses a Java-based web service via a RESTful API in their on-premises data center. Use of the API is expected to double with a new product launch. The business wants to migrate their application to Oracle Cloud Infrastructure (OCI) to meet the scale and reliability requirements. In order to achieve this, they will divert only 40% of the traffic to the new Apache Tomcat web servers running on OCI and serve the remaining 60% traffic through their on-premises infrastructure. Once the migration is complete and application works fine, they will divert all traffic to OCI. How can these requirements be met with the LEAST amount of effort?

  • A. Use VPN connectivity between on premises Infrastructure and OCI and create routing tables to distribute the traffic between them.
  • B. Use OCI Traffic management service with failover steering policy and distribute the traffic between OCI and on premises infrastructure.
  • C. Use an OCI load Balancer and distribute the traffic between OCI and on premises infrastructure.
  • D. Use OCI Traffic management service with Load Balancing steering policy and distribute the traffic between OCI and on premises infrastructure.

Answer: D

 

NEW QUESTION 71
You are responsible for migrating your on-premises legacy databases on 11.2.0.4 version to Autonomous Transaction Processing - Dedicated (ATP-D) in Oracle Cloud Infrastructure (OCI). As a solution architect, you need to plan your migration approach.
Which three options do you need to implement together to migrate your on-premises databases to OCI?

  • A. Convert on-premises databases to PDB, upgrade to 19c, and encrypt.
  • B. Use Oracle GoldenGate replication to keep on-premises database online during migration.
  • C. Use Oracle Data Guard to keep on-premises database always active during migration.
  • D. Launch Autonomous Transaction Processing - Dedicated database in OCI.
  • E. Retain changes to Oracle shipped privileges, stored procedures or views in the on-premises databases.
  • F. Retain all legacy structures and unsupported features (e.g. legacy LOBs) in the on-premises databases for migration.

Answer: A,B,D

 

NEW QUESTION 72
......

1z0-997-22 Exam Dumps, 1z0-997-22 Practice Test Questions: https://www.troytecdumps.com/1z0-997-22-troytec-exam-dumps.html

Free 1z0-997-22 Study Guides Exam Questions and Answer: https://drive.google.com/open?id=1Nje8WxUTGutd-LWZXRS540Jpa2Bq_do_

Related Articles

more
Oracle 1z0-997-22 Certification Practice Exam

Copyright © 2026 TroytecDumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy

Disclaimer:
TroytecDumps doesn't offer Real CompTIA Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates
TroytecDumps material do not contain actual actual Oracle Exam Questions or material.
TroytecDumps doesn't offer Real Microsoft Exam Questions.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation
TroytecDumps Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
TroytecDumps.com does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. TroytecDumps does not own or claim any ownership on any of the brands.