Was :
$81
Today :
$45
Was :
$99
Today :
$55
Was :
$117
Today :
$65
Why Should You Prepare For Your Oracle Cloud Infrastructure 2022 Architect Associate With MyCertsHub?
At MyCertsHub, we go beyond standard study material. Our platform provides authentic Oracle 1z0-1072-22 Exam Dumps, detailed exam guides, and reliable practice exams that mirror the actual Oracle Cloud Infrastructure 2022 Architect Associate test. Whether you’re targeting Oracle certifications or expanding your professional portfolio, MyCertsHub gives you the tools to succeed on your first attempt.
Verified 1z0-1072-22 Exam Dumps
Every set of exam dumps is carefully reviewed by certified experts to ensure accuracy. For the 1z0-1072-22 Oracle Cloud Infrastructure 2022 Architect Associate , you’ll receive updated practice questions designed to reflect real-world exam conditions. This approach saves time, builds confidence, and focuses your preparation on the most important exam areas.
Realistic Test Prep For The 1z0-1072-22
You can instantly access downloadable PDFs of 1z0-1072-22 practice exams with MyCertsHub. These include authentic practice questions paired with explanations, making our exam guide a complete preparation tool. By testing yourself before exam day, you’ll walk into the Oracle Exam with confidence.
Smart Learning With Exam Guides
Our structured 1z0-1072-22 exam guide focuses on the Oracle Cloud Infrastructure 2022 Architect Associate's core topics and question patterns. You will be able to concentrate on what really matters for passing the test rather than wasting time on irrelevant content. Pass the 1z0-1072-22 Exam – Guaranteed
We Offer A 100% Money-Back Guarantee On Our Products.
After using MyCertsHub's exam dumps to prepare for the Oracle Cloud Infrastructure 2022 Architect Associate exam, we will issue a full refund. That’s how confident we are in the effectiveness of our study resources.
Try Before You Buy – Free Demo
Still undecided? See for yourself how MyCertsHub has helped thousands of candidates achieve success by downloading a free demo of the 1z0-1072-22 exam dumps.
MyCertsHub – Your Trusted Partner For Oracle Exams
Whether you’re preparing for Oracle Cloud Infrastructure 2022 Architect Associate or any other professional credential, MyCertsHub provides everything you need: exam dumps, practice exams, practice questions, and exam guides. Passing your 1z0-1072-22 exam has never been easier thanks to our tried-and-true resources.
Oracle 1z0-1072-22 Sample Question Answers
Question # 1
You have been notified of an application failure indicating that one or more of the Oracle Cloud Infrastructure (OCI) resources have become unavailable. After scanning the Compute and Database consoles, you notice that one of the DB Systems is missing. What would you do to identify the reason for this missing resource?
A. Navigate to the Auditconsole and search the previous 24 hours for allDELETErequest actions to get a list of any resource that was deleted in the past 24 hours. B. Navigate to the Audit console and search the previous 24 hours for all theGETrequest actions to get a list ofevery event that occurred in the past 24 hours. C. View the service limits associated with your account to ensure that you have not exceeded the allowable number of DB Systems in your tenancy. D. Create a serial console connection to the DB System that does not appear in the management console. Connect to the serial console connection, and then review the system logs under/var/log/messages.
Answer: A
Explanation:
You can filter results by request actions to zero in on only the events with operations that interest you. For example, say that you only want to know about instances that were deleted during a specific time frame. Select a delete request action filter to see only the events with delete operations Reference:https://docs.cloud.oracle.com/en-us/iaas/Content/GSG/Tasks/usingaudit.htm
Question # 2
A customer has launched a compute Instance in the Virtual Cloud Network (VCN), which hasan Internet gateway, a service gateway, a default security lists and a default route table.Customer has opened up Port 22 in the security lists attached to the compute instance subnet, however is still unable to connect to compute instances using ssh. Which option would remedy this situation?
A. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Internet Gateway (IGW) B. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful egress rule to allow icmp traffic in addition to the port 22. C. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Dynamic Routing Gateway (DRG) D. Modify the route table associated with the VCN subnet in which the instance resides. Add a following route to the route table. Destination CIDR: 0.0.0.0/0 Target: Service Gateway (SGW)
Answer: A
Explanation:
You create an internet gateway in the context of a specific VCN. In other words, the internet gateway is automatically attached to a VCN. However, you can disable and reenable the internet gateway at any time. For traffic toflow between a subnet and an internet gateway, you must create a route rule accordingly in the subnet's route table (for example, destination CIDR = 0.0.0.0/0 and target = internet gateway). If the internet gateway is disabled, that means no traffic will flow to or from the internet even if there's a route rule that enables that traffic. For the purposes of access control, you must specify the compartment where you want the internet gateway to reside. If you're not sure which compartment to use, put theinternet gateway in the same compartment as the cloud network.
Question # 3
D18912E1457D5D1DDCBD40AB3BF70D5D You are a system administrator of your company and you are asked to manage updates and patches across all your compute instances running Oracle Linux in Oracle CloudInfrastructure (OCI). As part of your task, you need to apply all the latest kernel security updates to all instances. Which OCI service will allow you to complete this task?
A. Resource Manager B. OS Management C. Storage Gateway D. Streaming E. Registry
You are deploying a highly available web application InOracle Cloud Infrastructure and have decided to use a public load balancer. The back-end web servers will be distributedacross all three availability domains (ADs). How many subnets should you create to deliver a secure, highly available application?
A. two subnets in total; one regional private subnet to host your back-end web servers and one regional public subnet to host your public load load balancer. B. two subnets in total; one regional public subnet to host your back-end web servers and one regional private subnet to host your public load load balancer. C. three subnets in total; one regional public subnet to host your back-end web servers and two AD specific private subnets to host your private load load balancer. D. one subnet in total; one regional private subnet to host your back-end web servers and your public load balancer.
Answer: A
Explanation: To accept traffic from the internet, you create a public load balancer. The service assigns it a public IP address that serves as the entry point for incoming traffic. You can associate the public IP address with a friendly DNS name through any DNS vendor. A public load balancer is regional in scope. If your region includes multiple availability domains, a public load balancer requires either a regional subnet (recommended) or two availability domain-specific (AD-specific) subnets, each in a separate availability domain. With a regional subnet, the Load Balancing service creates a primary load balancer and a standby load balancer, each in a different availabilitydomain, to ensure accessibility even during an availability domain outage. If you create a load balancer in two AD-specific subnets, one subnet hosts the primary load balancer and the other hosts a standby load balancer. If the primary load balancer fails,the public IP address switches to the secondary load balancer. The service treats the two load balancers as equivalent and you cannot specify which one is "primary". Whether you use regional or AD-specific subnets, each load balancer requires one privateIP address from its host subnet. The Load Balancing service supplies a floating public IP address to the primary load balancer. The floating public IP address does not come from your backend subnets. You cannot specify a private subnet for your public load balancer. The backend servers (Compute instances) associated with a backend set can exist anywhere, as long as the associated network security groups (NSGs), security lists, and route tables allow the intended traffic flow. Oracle recommends that you create your load balancer in a regional subnet. Oracle recommends that you distribute your backend servers across all availability domains within the region.
Question # 5
You are about to upload log file (5 TiB size) to Oracle Cloud Infrastructure object storage and have decided to use multipart upload capability for a more efficient and resilientupload.Which two statements are true about multipart upload? (Choose two.)
A. Individual object parts can be as small as 10 MiB or as large as 50 GiB B. While a multipart upload is still active, you cannot add parts even if the total number of parts is less than 10,000 C. The maximum size for an uploaded object is 10 TiB D. You do not have to commit the upload after you have uploaded all the object parts
Answer: A,C
Explanation: With multipart upload, you split the object you want to upload into individual parts. Individual parts can be as large as 50 GiB or as small as 10 MiB. (Object Storage waives the minimum part size restriction for the last uploaded part.) Decide what part number you want to use for each part. Part numbers can range from 1 to 10,000. You do notneed to assign contiguous numbers, but Object Storage constructs the object by ordering part numbers in ascending order. The maximum size for an uploaded object is 10 TiB While a multipart upload is still active, you can keep adding parts as long as thetotal number is less than 10,000. https://docs.cloud.oracle.com/en-us/iaas/Content/Object/Tasks/usingmultipartuploads.htm
Question # 6
Which ofthe following statements is true about the Oracle Cloud Infrastructure (OCI) Object Storage serverside encryption?
A. Encryption of data encryption keys with a master encryption key is optional. B. Customer-provided encryption keys are always stored inOCI Vault service. C. Encryption is enabled by default and cannot be turned off. D. Each object in a bucket is always encrypted with the same data encryption key.
Which two statements are true about restoring a volume from a block volume backup in Oracle Cloud Infrastructure Block Volume service?
A. You can restore a volumefrom any full volume backup but not from an Incremental backup. B. You can only restore a volume to the same availability domain in which the original block volume resides. C. You can restore a block volume backup to a larger volume size. D. You can restore a volume to any availability domain within the same region where the backup is stored. E. You can restore only one volume from a manual block volume backup.
You developed a microservices based application that runs on Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE). You want to provide access to this clustertoother team members. What should you do to provide access to this cluster using as fewest steps as possible?
A. Create a group in OCI Infrastructure Access Management (IAM). Create a policy to grant access to the OKE cluster. Other team members shoulduse OCI Cloud Shell to generate the kubeconfig into their own cloud shell environment and access the cluster using kubectl from cloud shell. B. Create a group in OCI Infrastructure Access Management (IAM). Create a policy to grant access to the OKEcluster. Create individual users and access token for each team member. Other team members should use OCI Cloud Shell to generate the kubeconfig into their own cloud shell environment and access the cluster using kubectl from cloud shell. C. Create a groupin OCI Infrastructure Access Management (IAM). Create a policy to grant access to the OKE cluster. Create a cluster role and cluster role binding to provide accessto the cluster for each team member. Other team members should install oci cli and kubectllocally on their laptop. Use the oci cli to generate the kubeconfig and use kubectl to access the cluster. D. Create a group in OCI Infrastructure Access Management (IAM). Create a policy to grant access to the OKE cluster. Other team members should install oci cli and kubectl locally on their laptop. Use the oci cli to generate the kubeconfig and use kubectl to access the cluster.
Answer: B
Question # 9
Your company decided to move a few applications to Oracle Cloud Infrastructure (OCI)in the US West (us-phoenix-1) region. You need to design a cloud-based disaster recovery (DR) solution with a requirement to deploy the DR resources in the US East (us-ashburn-1) region to minimize network latency. What is the recommended deployment?
A. Deploy production and DR applications in two separate virtual cloud networks (VCNs), each in different regions, and then use VCN local peering gateways for connectivity. B. Deploy production and DR applications in two separate VCNs, each in different regions. Connect them using a VCN remote peering connection. C. Deploy production and DR applications in the same VCN. Create production subnets in one AD, and DR subnets in another AD (assume a multi-AD region). D. Deploy production and DR applications in twoseparate VCNs in different availability domains (ADs) within the primary region, and then use a VCN remote peering connection for connectivity.
Answer: A
Explanation:
Remote VCN peering is the process of connecting two VCNs in different regions The peering allows theVCNs' resources to communicate using private IP addresses without
routing the traffic over the internet or through your on-premises networ
Question # 10
You have created a virtual cloudnetwork (VCN) with three private subnets. Two of the subnets contain application servers and the third subnet contains a DB System. The application requires a shared file system so you have provisioned one using the file storage service (FSS). You also created the corresponding mount target in one of the application subnets. The VCN security lists are properly configured so that both application servers and the DB System can access the file system. The security team determines that the DB System should haveread-only access to the file system. What change would you make to satisfy this requirement?
A. Create an NFS export option that allows READ_ONLY access where the source is the CIDR range of the DB System subnet. B. Connect via SSH to one of the application servers where the file system has been mounted. Use the Unix command chmod to change permissions on the file system directory, allowing the database user read only access. C. Modify the security list associated with the subnet where the mount target resides. Change the ingress rules corresponding to the DB System subnet to be stateless. D. Create an instance principal for the DB System. Write an Identity and Access Management (IAM) policy that allows the instance principal read-only access to the filestorage service.
Answer: A
Explanation:
NFS export options enable you to create more granular access control than is possible using just security list rules to limit VCN access. You can use NFS export options to specify access levels for IP addresses or CIDR blocks connecting to file systems through exports in a mount target.
Question # 11
You have an Oracle Cloud Infrastructure (OCI) load balancerdistributing traffic via an evenly-weighted round robin policy to your back-end web servers. You notice that one ofyour web servers is receiving more traffic than other web servers. How can you resolve this to make sure traffic is evenly distributed across all back-end webservers?
A. Disable cookie-based session persistence on your backend set. B. Change keep-alive setting between the load balancer and backend server. C. Disable SSL configuration associated with your backend set. D. Create separatelisteners for each backend web server.
You are managing a tier-1 OLTP application on an Autonomous Transaction Processing (ATP) database. Your business needs to run hourly batch processes on this ATP database that may consume more CPUs than what isavailable on the server. How can you limit these batch processes to not interfere with the OLTP transactions?
A. Configure ATP resource management rules to change CPU/IO shares for the consumer group of batch processes. B. Copy OLTP data into new tablesin a new table space and run batch processes against these new tables. C. Disable automated backup during the batch process operations. D. ATP is designed for OLTP workload only, you cannot run batch processes on ATP.
Answer: A
Explanation:
Autonomous TransactionProcessing comes with predefined CPU/IO shares assigned to different consumer groups. You can modify these predefined CPU/IO shares if your workload requires different CPU/IO resource allocations. By default, the CPU/IO shares assigned to the consumer groups TPURGENT, TP, HIGH, MEDIUM, and LOW are 12, 8, 4, 2, and 1, respectively. The shares determine how much CPU/IO resources a consumer group can use with respect to the other consumer groups. With the default settings the consumer group TPURGENT will be able to use 12 times more CPU/IO resources compared to LOW, when needed. The consumer group TP will be able to use 4 times more CPU/IO resources compared to MEDIUM, when needed.
Question # 13
Your company has been running several small applications in Oracle Cloud Infrastructure and is planning a proof-of-concept (POC) to deploy PeopleSoft. If your existing resources are being maintained in the root compartment, what is therecommended approach for defining security for the upcoming POC?
A. Create a new compartment for the POC and grant appropriate permissions to create and manage resources within the compartment. B. Provision all new resources into the root compartment. Grant permissions that only allow for creation and management of resources specific to the POC. C. Provision all new resources into the root compartment. Use defined tags to separate resources that belong to different applications. D. Create a new tenancy for the POC. Provision all new resources into the root compartment. Grant appropriate permissions to create and manage resources within the root compartment.
Answer: A
Question # 14
Which two statements below are correct with respect to adding secondary Virtual Network Interface Cards (VNICs) to an existing compute instance in Oracle Cloud Infrastructure? (Choose two.)
A. The secondaryVNIC is required to be in the same Virtual Cloud Network (VCN), but can be in different subnet, as the primary VNIC. B. The primary and secondary VNIC association can be in different virtual cloud networks (VCNs). C. You cannot assign an Ephemeral Public IP to a secondary VNIC. D. The primary and secondary VNIC association must be in the same availability domain. E. You can remove the primary VNIC after the secondary VNIC's attachment is complete.
Answer: B,D
Explanation: “You can add secondary VNICs to an instanceafter it’s launched. Each secondary VNIC can be in a subnet in the same VCN as the primary VNIC, or in a different subnet that is either in the same VCN or a different one. However, all the VNICs must be in the same availability domain as the instance.”
You deployed an Oracle Cloud Infrastructure (OCI) compute instance (VM.Standard2.16) to run a SQL database. After a few weeks, you need to increase disk performance by usingNVMe disks but keeping the same number of CPUs. As a first step, you terminate the instance and preserve the boot volume. What is the next step?
A. Create a new instance using a VM.DenseIO2.16 shape using the preserved boot volume and move the SQL Database data to block volume B. Create a new instance using a VM.DenseIO2.8 shape using the preserved boot volume and move the SQL Database data to NVMe disks C. Create a new instance using a VM.Standard1.16 shape using the preserved boot volume and move the SQL Database data to NVMe disks D. Create a new instance using a VM.DenseIO2.16 shape using the preserved boot volume move the SQL Database data to NVMe disks
Answer: D
Explanation:
Question # 16
Which two methods are supportedfor migrating your on-premises Oracle database to an Oracle Autonomous Transaction Processing (ATP) database in Oracle Cloud Infrastructure? (Choose two.)
A. Load text files into ATP using SQL Developer. B. Use RMAN duplicate. C. Use Oracle Data Pump. D. Transfer the physical database files and re-create the database. E. Use database backup and restore.
Which two statements are true about Oracle Cloud Infrastructure storage services?
A. You can move Object Storage buckets, Block Volumes and File Storage mount targets between compartments. B. File storage mount target does not provide a private IP address, while the Object Storage bucket provides one. C. File Storage uses the network file system (NFS) protocol, whereas Block Volume uses ISCSI. D. Block Volume service scales to Exabytes per Instance, while File Storage service offers unlimited scalability. E. You can take Incremental snapshots of BlockVolumes, File Storage file systems and Object Storage buckets.
Answer: A,C
Question # 18
You created a public subnet and an internet gateway in your virtual cloud network (VCN) of Oracle Cloud Infrastructure. The public subnet has an associated route table and securitylist. However, after creating several compute instances in the public subnet, none can reach the Internet. Which two are possible reasons for the connectivity issue? (Choose two.)
A. The route table has no default route forrouting traffic to the internet gateway. B. There is no stateful egress rule in the security list associated with the public subnet. C. There is no dynamic routing gateway (DRG) associated with the VCN. D. There is no stateful ingress rule in the securitylist associated with the public subnet. E. A NAT gateway is needed to enable the communication flow to internet.
Answer: A,B
Explanation: An internet gateway as an optional virtual router that connects the edge of the VCN with the internet. To use the gateway, the hosts on both ends of the connection must have public IP addresses for routing. Connections that originate in your VCN and are destined for a public IP address (either inside or outside the VCN) go through the internet gateway. Connections that originate outside the VCN and are destined for a public IP address inside the VCN go through the internet gateway. Working with Internet Gateways You create an internet gateway in the context of a specific VCN. In other words, the internet gateway is automatically attached to a VCN. However, you can disable and reenable the internet gateway at any time. Compare this with a dynamic routing gateway (DRG), which you create asa standalone object that you then attach to a particular VCN. DRGs use a different model because they're intended to be modular building blocks for privately connecting VCNs to your on-premises network. For traffic to flow between a subnet and an internetgateway, you must create a route rule accordingly in the subnet's route table (for example, destination CIDR = 0.0.0.0/0 and target = internet gateway). If the internet gateway is disabled, that means no traffic will flow to or from the internet even if there's a route rule that enables that traffic. For more information, see Route Tables. For the purposes of access control, you must specify thecompartment where you want the internet gateway to reside. If you're not sure which compartment to use, put the internet gateway in the same compartment as the cloud network. For more information, see Access Control. You may optionally assign a friendly name to the internet gateway. It doesn't have to be unique, and you can change it later. Oracle automatically assigns the internet gateway a unique identifier called an Oracle Cloud ID (OCID). For more information, see Resource Identifiers. To delete an internet gateway, it does not have to be disabled, but theremust not be a route table that lists it as a target. AS per compute instances can connect to the Internet so you use egress no ingress
Question # 19
Which two statements are true when Oracle Data Guard is configured (usingthe Console) between two Virtual Machine DB Systems deployed in Oracle Cloud Infrastructure? (Choose two.)
A. Primary is a 1-node RAC DB system and Standby is a 2-node RAC DB system. B. Primary is a 2-node RAC DB system and Standby is a 2-node RAC DB system. C. Primary is a 1-node RAC DB system and Standby is a 1-node RAC DB system. D. Primary is a 2-node RAC DB system and Standby is a 1-node RAC DB system. E. Primary is a Bare Metal DB system and Standby is a 1-node RAC DB system.
You deployed a database on a Standard Compute instance in Oracle Cloud Infrastructure (OCI) due to cost concerns. The database requires additional storage with high I/O and youdecided to use OCI Block Volume service for it. With this requirement in mind, which elastic performance option should you choose for the Block Volume?
A. Balanced Performance B. Higher performance C. Extreme performance D. Lower cost
Which two statements about Oracle CloudInfrastructure File Storage Service are accurate? (Choose two.)
A. Customer can encrypt the communication to a mount target via export options. B. Mount targets use Oracle-managed keys by default. C. File systems use Oracle-managed keys by default. D. Customer can encrypt data in their file system using their own Vault encryption key. E. Communication with file systems in a mount target is encrypted via HTTPS.
Which two resources reside exclusively in a single Oracle Cloud Infrastructure Availability Domain? (Choose two.)
A. Identity and Access Management Groups B. Object Storage C. Web Application Firewall policy D. Block volume E. Compute instance
Answer: D,E
Explanation:
Availability Domain-Specific Resources DB Systems ephemeral public IPs instances: They can be attached only to volumesin the same availability domain. subnets: When you create a subnet, you choose whether it is regional or specific to an availability domain. Oracle recommends using regional subnets. volumes: They can be attached only to an instance in the same availability domain.
Question # 23
You have multiple applicationsinstalled on a compute instance and these applications generate a large amount of log files. These log files must reside on the boot volume for aminimum of 15 days and must be retained for at least 60 days. The 60-day retention requirement is causing an issue with available disk space. What are the two recommended methods to provide additional boot volume space for this compute instance? (Choose two.)
A. Terminate the instance while preserving the boot volume. Create a new instance fromthe boot volume and select a DenseIO shape to take advantage of local NVMe storage. B. Create an object storage bucket and use a script that runs daily to move log files older than 15 days to the bucket. C. Create and attach a block volume to the compute instance and copythe log files. D. Create a custom image and launch a new compute instance with a larger boot volume size. E. Write a custom script to remove the log files on a daily basis and free up the space on the boot volume.
Answer: B,D
Explanation:
These log files must resideon the boot volume for a minimum of 15 days so you have to increase the boot Volume
Question # 24
Which two statements are true about an Oracle Cloud Infrastructure (OCI) virtual cloud network (VCN)? (Choose two.)
A. To delete a VCN, its subnetsmust contain no resources. B. A VCN can have multiple CIDR blocks associated with it. C. In regions with multiple Availability Domains (AD), each AD should have their own VCN assigned to it. D. If you own a block of public IPs, you can assign it to one ofyour VCNs. E. A VCN covers a single, contiguous IPv4 CIDR block of your choice.
You are responsible for creating and maintaining an enterprise application that consists of multiple storage volumes across multiple compute instances in Oracle Cloud Infrastructure (OCI).The storage volumes include boot volumes and block volumes for your data storage. You need to create backups of these storage volumes in the most time-efficient manner.How can you meet this requirement?
A. Create clones of all boot volumes and block volumes one at a time. B. Create on-demand full backups of bootvolumes, and copy data in block volumes to Object Storage using OCI CLI. C. Create on-demand full backups of block volumes, and create custom images from the boot volumes. D. Group together multiple storage volumes in a volume group and create volume groupbackups.
