Oracle Cloud Infrastructure Foundations 2021 Associate exam questions
Which key encryption algorithm is NOT supported by the Oracle Cloud Infrastructure (OCI) Vault service ?
JSON Web Algorithm (JWA)
Elliptic curve digital signature algorithm (ECDSA)
Advanced Encryption Standard (AES)
Rivest-Shamir-Adleman (RSA)
Question 3
Which capability can be used to protect against unexpected hardware or power supply failures within an Oracle Cloud Infrastructure Avaibility Domain ?
Top of Rack Switches
Compartments
Fault Domains
Power Distribution Units
Question 4
Which statement accurately describes an Oracle Cloud Infrastructure Region?
Each Availability Domain has three Fault Domains.
Each region has a single Fault Domain.
Each Availability Domain has a single Fault Domain.
Each Fault Domain has multiple Availability Domains.
Question 5
Which three statements correctly describe attributes of Oracle Cloud Infrastructure (OCI) compartments?
Your tenancy by default comes with a root compartment.
Compartments can have sub compartments.
Compartments can be used to logically separate OCI resources.
Compartments can be used to physically separate OCI resources.
Resources within one compartment cannot interact with resources in other compartments.
Question 6
Which statement correctly describes Oracle Cloud Manageability SLA?
Services consistently perform as expected.
100% availability to manage resources
Ability to manage, monitor, and modify OCI resources.
Services are in operation with uptime and connectivity requirements.
Question 7
Which three statements are correct about Oracle Cloud Infrastructure Compartments?
Compartments can have sub-compartments
Each compartment is local to a region
Compartments can be nested.
Compartments are logical entities
Compartments can be used for authentication services
Resources inside the compartments cannot be moved to another compartment.
Question 8
How will you configure high availability for an application in an Oracle Cloud Infrastructure region with a single Availability Domain?
Setup your application across multiple Virtual cloud Network (VCN)
Divide region into multiple subregions.
Setup your application across multiple compartments.
Setup your application across multiple Fault Domains.
Question 9
You want to provide restricted and time-limited access to databases that don't have public endpoints. Which OCI service should you use to achieve this?
Cloud Guard
Question 10
Which statement is true about Web Application Firewall (WAF) ?
It intercepts HTTP/S traffic and passes it through a set of rules.
It intercepts HTTP/S traffic only and filters it against the set rules applied.
It cannot protect web applications.
It blocks HTTPS requests only and responds with an error page.
Question 11
You want to use an orchestration service that can reduce time and cost to build modern cloud native applications. Which OCI service should you use for this?
API Gateway
Container Engine for Kubernetes (OKE)
Data Science
Question 12
Which statement is true about OCI (Oracle Cloud Infraestructure) and its core components?
Each availbility domain has three fault domains
All OCI regions have three availability domains.
Fault domains act as physical data centers within an availability domain.
Each fault domain has three availability domains.
Question 13
You have subscribed to an OCI region, which has one a single availability domain. You want to deploy a highly-available application with two web servers and a 2-Node database.
High availability is not possible because there is only one availability domain in the region.
Place the servers in one fault domain and the database nodes in another fault domain.
Place all the components in the same fault domain.
Place one server and a DB node in one fault domain, and the second server and DB node in another fault domain.
Question 14
How is a resource in OCI identified?
Tenancy ID
Compartment Name
Question 15
Which is NOT a valid method for authenticating a Principal in OCI Identity and Access Management (IAM) service?
API Signing Key
Auth Tokens
OCI Vault Master Encryption Keys
Console user name, Password
Question 16
Which statement is true about OCI Identity and Access Management (IAM)?
It is used to control access to resources
It enables only authorization for the tenancy
It enables bring-your-own-devices
It enables only authentication for the tenancy
Question 17
Which is NOT a valid statement regarding OCI Compartments?
Compartments are restricted to a single region
You can give group of users access to compartments by writing policies
Resources can interact with other resources in different compartments
Each resource belongs to a single compartment
Question 18
Which feature of OCI Identity and Access Management (IAM) service specifies authorization for various actions for authenticated Principals?
Compartment
Question 19
Which TWO statements correctly describe Oracle Cloud Infrastructure Service Level Agreements?
Financially backed commitment to provide a minimum level of service to customers
defined as a number of nines for a month and a percentage credit
defined as a number of nines for a week and a percentage credit
Defined as a number o eights for a week and a percentage credit
Financially backed commitment to provide a maximum level of service to customers
Defined as a number of eights for a month and a percentage credit
Question 20
Your client needs to move their Extract-Transform-Load (ETL) process to Oracle Cloud Infrastructure (OCI). They want to take a no-code approach. Which OCI service should you recommend?
Data Catalog
Data Integration
Data Science
Analytics Cloud
Question 21
Which two Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) firewall features can be used to control traffic?
Network Security Groups
VCN Flow Logs
VNIC Metrics
Security Lists
Question 22
Which Oracle Cloud Infrastructure service should you use to manage metadata support data governance?
Data Science
Data Integration
Data Catalog
Question 23
What is NOT a primary use case for the Oracle Cloud VMware Solution?
Data Center Extension
Hyper-V Workloads
Disaster Recovery
Cloud Migration
Question 24
Which three are benefits of Oracle Cloud VMware Solution?
VMware workloads are refactored for migration
Customers can leverage same set of tools and processes used on-premises
Customers can choose their own data center hardware
Runs the certified VMware product stack in the cloud
Provides full administrative control to customers
Question 25
Which statement is true about a Virtual Cloud Network (VCN) ?
Subnets can only be public
Subnets can only be private
A subnet for a VCN can be reagional
A subnet for a VCN can only be availability domain specific
Question 26
Which statement is true about the Oracle Cloud Infrastructure Compute service?
When you stop a compute instance, all data on the boot volume is lost
You can launch either virtual machines or bare metal instances
You cannot attach a block volume to a compute instance
You can attach a maximum of one public IP to each compute instance
Question 27
Which type of data transfer incur costs within Oracle Cloud Infrastructure?
Data transfer from one instance to another access-different AD in a region
Data ingress from the internet
Data transfer from one instance to another within the same AD
Data egress to the internet
Question 28
Which is an open-source system for automating deployment, scaling, and management of containerized applications?
Kubernetes
Question 29
Which is NOT a valid statement regarding OCI compartments?
Resources can interact with other resources in different compartments
Each resource belongs to a single compartment
You can give group of users access to compartments by writing policies.
Compartments are restricted to a single region.
Question 30
Which two statements are correct regarding OCI Fault Domains?
Fault domains are logical data centers with availability domains
Fault domains are physical data centers with availability domains
Fault domains are used to mitigate hardware failures
Fault domains are physical data centers within regions
Fault domains are logical data center within regions
Question 31
Which two statements are true regarding Oracle Cloud Infrastructure Regions?
Some regions provide multiple availability domains.
Some regions provide a single availability domain.
Some regions provide multiple subregions.
Some regions provide a single fault domain.
Some regions only provide test/dev environments.
Question 32
What two types of encryption keys are recognized by the Oracle Cloud Infrastructure (OCI) Vault service?
Data Encryption keys
Alias keys
Wrapper keys
Auth Tokens
Master Encryption keys
Question 33
Which capability enables you to search, purchase, and start using software in your Oracle Cloud Infrastructure (OCI) tenancy?
Marketplace
Resource Manager
Container Registry
OS Management
Question 34
Which TWO features can be used to manage cost in an Oracle Cloud Infrastructure (OCI) tenancy?
Compartment Quotas
Account Controller
Health Checks
Service Logs
Question 35
Which feature of Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) service specifies authorization for various actions for authenticated Principals?
Compartment
Question 36
Which is a valid syntax for an Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) Policy?
Allow user to in tenancy
Deny group to in tenancy
Deny user to in tenancy
Allow group to in tenancy
Question 37
Which Oracle offering lets a customer provision Oracle Cloud Infrastructure (OCI) services into their own data centers in a self-contained model, achieving the same architecture, billing and operational processes of the OCI public cloud?
OCI Customer Region
OCI Private Region
Oracle Cloud VMware Solution
OCI Dedicated Region
Question 38
Which is NOT a valid compute shape option within the Oracle Cloud Infrastructure (OCI) compute service?
Bare Metal
Container Instance
Dedicated Virtual Machine Host
Virtual Machine
Question 39
Which Oracle Cloud Infrastructure (OCI) service leverages Terraform to configure infrastructure-as-code?
Resource Manager
Oracle Container Engine for Kubernetes (OKE)
Compartment Explorer
Question 40
Which statement is valid for Oracle Cloud Infrastructure Container Registry (OCIR)
You can create only public Docker repositories in OCIR.
You can create only private Docker repositories in OCIR.
A single registry can contain both private and public Docker repositories.
A single registry can only contain either private or public Docker repositories.
Question 41
Which service is NOT valid for OCI Data Migration Service?
Data transfer Disk
Data Transfer Appliance
NAT Gateway
Storage Gateway
Question 42
Which virtual cloud network (VCN) component blocks inbound traffic, but enables outbound traffic to the internet?
Internet Gateway
Dynamic Routing Gateway
NAT Gateway
Service Gateway
Question 43
Which statement is true about a virtual cloud network (VCN)?
A VCN can be used with only one instance
A VCN can only have one public subnet and only one private subnet
Each subnet in a VCN can exist in a single availability domain or across an entire region
A VCN can only have one public subnet and more than one private subnet
Question 44
Which components are created by default with the creation of a virtual cloud network (VCN)? (Choose three)
Dynamic Routing Gateway
Default route table, with no route rules
Local Peering Gateway
Default security list, with default security rules
Default set of DHCP options, with default values
Question 45
Which statements are true about the Oracle Cloud Infrastructure (OCI) Load Balancing service?
It works with public IP addresses only
It distributes traffic to different backend servers in a virtual cloud network (VCN)
It supports TCP and HTTP protocols only
It can span across OCI regions
Question 46
Which virtual cloud network (VCN) component enables both inbound and outbound traffic between a VCN and the internet?
Dynamic Routing Gateway
Service Gateway
NAT Gateway
Internet Gateway
Question 47
Which statement is true about OCI Compute Service?
It doesn’t support Windows workloads
It provides options to create Bare Metal or a Virtual Machine instance
It provides a single size for different types of workloads
It is used only for running databases
Question 48
You have a web application that receives 10X more traffic on the weekends than weekdays. You need to automatically match capacity to demand, keep the application always up and running, and save cost. Which OCI compute feature can be used to meet these requirements?
Autoscaling
Vertical Scaling
Parallel Scaling
Manual Scaling
Question 49
Which parameter is NOT modifiable? (Compute)
Primary Private IP address
Amount of Memory
Fault Domain
Number of OCPUs
Question 50
Which is a feature of the OCI OS Management Service?
Autoscaling
Disk Encryption
Automated Patch Management
Cost Management
Question 51
Which is NOT a valid compute shape option within the OCI compute service?
Virtual Machine
Container Instance
Dedicated Virtual Machine Host
Bare Metal
Question 52
Which statement is true about OCI File Storage?
It organizes files in a hierarchy of named directories.
It is supported by Linux operating systems only.
It is a local file system for a compute instance
It is supported by Windows operating system only
Question 53
You want to store the backup of a database in cloud storage for an extended period of time. Which type of storage should you configure for these files?
File Storage
Block Volume
Object Storage
Archive Storage
Question 54
Which statement is true about the OCI Block storage service?
It is only supported for Linux instances.
It can be attached to a compute instance.
It stores data in variable sized blocks.
It is not durable
Question 55
You store multiple versions of objects in a bucket, but your IT team has asked you to delete any previous object versions 120 days after the object version transitions from the latest version to a previous version. Which OCI Object Storage feature can be used for this purpose?
