Was :
$81
Today :
$45
Was :
$99
Today :
$55
Was :
$117
Today :
$65
Why Should You Prepare For Your Oracle Cloud Infrastructure 2023 Architect Associate With MyCertsHub?
At MyCertsHub, we go beyond standard study material. Our platform provides authentic Oracle 1z0-1072-23 Exam Dumps, detailed exam guides, and reliable practice exams that mirror the actual Oracle Cloud Infrastructure 2023 Architect Associate test. Whether you’re targeting Oracle certifications or expanding your professional portfolio, MyCertsHub gives you the tools to succeed on your first attempt.
Verified 1z0-1072-23 Exam Dumps
Every set of exam dumps is carefully reviewed by certified experts to ensure accuracy. For the 1z0-1072-23 Oracle Cloud Infrastructure 2023 Architect Associate , you’ll receive updated practice questions designed to reflect real-world exam conditions. This approach saves time, builds confidence, and focuses your preparation on the most important exam areas.
Realistic Test Prep For The 1z0-1072-23
You can instantly access downloadable PDFs of 1z0-1072-23 practice exams with MyCertsHub. These include authentic practice questions paired with explanations, making our exam guide a complete preparation tool. By testing yourself before exam day, you’ll walk into the Oracle Exam with confidence.
Smart Learning With Exam Guides
Our structured 1z0-1072-23 exam guide focuses on the Oracle Cloud Infrastructure 2023 Architect Associate's core topics and question patterns. You will be able to concentrate on what really matters for passing the test rather than wasting time on irrelevant content. Pass the 1z0-1072-23 Exam – Guaranteed
We Offer A 100% Money-Back Guarantee On Our Products.
After using MyCertsHub's exam dumps to prepare for the Oracle Cloud Infrastructure 2023 Architect Associate exam, we will issue a full refund. That’s how confident we are in the effectiveness of our study resources.
Try Before You Buy – Free Demo
Still undecided? See for yourself how MyCertsHub has helped thousands of candidates achieve success by downloading a free demo of the 1z0-1072-23 exam dumps.
MyCertsHub – Your Trusted Partner For Oracle Exams
Whether you’re preparing for Oracle Cloud Infrastructure 2023 Architect Associate or any other professional credential, MyCertsHub provides everything you need: exam dumps, practice exams, practice questions, and exam guides. Passing your 1z0-1072-23 exam has never been easier thanks to our tried-and-true resources.
Oracle 1z0-1072-23 Sample Question Answers
Question # 1
In which two ways can Oracle Security Zones assist with the cloud security shared responsibility model?
Encrypt storage resources with a customer-managed key. Allow access to an unsecured compartment, which is moved from a standard compartment. Deny public access to Oracle Cloud Infrastructure resources, such as databases and object storage
buckets. Add or move a standard compartment to a highly secured security zone compartment.
Explanation Encrypt storage resources with a customer-managed key: Security Zones require that all storage
resources, such as block volumes, boot volumes, file systems, and object storage buckets, are encrypted
with a customer-managed key from Vault. This ensures that you have full control over the encryption
and decryption of your data at rest
Deny public access to OCI resources, such as databases and object storage buckets: Security Zones
prevent you from creating or updating OCI resources that have public access enabled, such as databases
and object storage buckets that are accessible from the internet. This reduces the risk of unauthorized
access or data leakage.
Question # 2
Which statement is true about File System Replication in Oracle Cloud Infrastructure (OCI)?
You can replicate the data in one file system to another file system only in the same region. You can replicate the data in one file system to another file system in the same region or a different
region. Only a file system that has been exported can be used as a target file system. You cannot specify a replication interval when you create the replication resource.
Explanation You can replicate the data in one file system to another file system in the same region or a different region is a
true statement about File System Replication in OCI. File System Replication is a feature that allows users to
create a copy of a file system in another file system, either within the same region or across regions. This can
be useful for disaster recovery, data migration, or data distribution purposes. The other statements are false
about File System Replication in OCI. References: [File System Replication]
Question # 3
When defining a query for metric data in Monitoring, which field provides the time window for aggregating
metric data points plotted on the metric chart?
Dimension Namespace Statistic Interval
Explanation Interval is the field that provides the time window for aggregating metric data points plotted on the metric
chart. Interval is a parameter that specifies how often metric data points are collected and aggregated by the
Monitoring service. For example, an interval of 5 minutes means that metric data points are aggregated every 5
minutes and displayed on the chart. The other options are not fields that provide the time window for
aggregating metric data points, but rather other parameters that define the metric query. References: [Interval]
Question # 4
You plan to upload a large file (3 TiB) to Oracle Cloud Infrastructure (OCI) Object Storage. You would like to
minimize the impact of network failures while uploading, and therefore you decide to use the multipart upload
capability. Which TWO statements are true about performing a multipart upload using the Multipart Upload API?
You do not need to split the object into parts. Object Storage splits the object into parts and uploads all
of the parts automatically. While a multipart upload is still active, you can keep adding parts as long as the total number is less than
10,000. You do not have to commit the upload after you have uploaded all the object parts. When you split the object into individual parts, each part can be as large as 50 GiB.
Explanation While a multipart upload is still active, you can keep adding parts as long as the total number is less than
10,000. When you split the object into individual parts, each part can be as large as 50 GiB. The explanation is
that a multipart upload allows you to upload a large object in parts, which can improve performance and
reliability. You need to split the object into parts yourself and upload each part separately using the Multipart
Upload API. You can add parts to an active multipart upload until you reach the maximum number of 10,000
parts per upload. Each part can range from 10 MiB to 50 GiB in size, except for the last part, which can be any
size.
Question # 5
You create a file system and then add a 2 GB file. You then take a snapshot of the file system.What would be the total meteredBytes shown by the File Storage service after the hourly update cycle is complete?
3 GB 2.5 GB 4 GB 2 GB
Explanation The total meteredBytes shown by the File Storage service after the hourly update cycle is complete would be 2
GB. This is because snapshots do not consume any additional storage space unless there are changes made to
the file system after taking the snapshot. Since no changes were made in this scenario, the snapshot would not
add any extra storage cost. References: [Snapshots and MeteredBytes]
Question # 6
You have a block volume created in the US West (Phoenix) region. You enabled Cross Region Replication for
the volume and selected US West (San Jose) as the destination region. Now, you would like to create a new
volume from the volume replica in the US West (San Jose) regionWhat should you do?
Activate the replica. Trigger the replica. No action required. By default, the replica is available as a block volume. Initiate the replica.
Explanation The explanation is that when you enable Cross Region Replication for a block volume, Object Storage creates
a replica of the volume in another region of your choice. The replica is not available as a block volume until
you activate it. To activate a replica, you need to select the replica from the Block Storage console and click
Activate Replica. This will create a new block volume from the replica in the destination region.
Question # 7
Which TWO components are optional while creating the Monitoring Query Language (MQL) expressions in
the Oracle Cloud Infrastructure (OCI) Monitoring service?
Interval Statistic Dimensions Grouping Function Metric
Explanation Dimensions and Grouping Function are two optional components while creating the Monitoring Query
Language (MQL) expressions in the OCI Monitoring service. Dimensions are key-value pairs that provide
additional information about a metric, such as region, compartment, or resource type. Grouping Function is a
function that aggregates metric data across one or more dimensions, such as sum, count, or average. The other
options are required components for MQL expressions. References: [Dimensions], [Grouping Function]
Question # 8
You need to set up instance principals so that an application running on an instance can call Oracle Cloud
Infrastructure (OCI) public services, without the need to configure user credentials. A developer in your team has already configured the application built using an OCI SDK to authenticate using
the instance principals provider.Which is NOTa necessary step to complete this set up?
Create a dynamic group with matching rules to specify which instances can make API calls against
services. Generate Auth Tokens to enable instances in the dynamic group to authenticate with APIs. Create a policy granting permissions to the dynamic group to access services in your compartment or tenancy.
Deploy the application and the SDK to all the instances that belong to the dynamic group.
Explanation Generating Auth Tokens to enable instances in the dynamic group to authenticate with APIs is not a necessary
step to complete this set up. This is because Auth Tokens are used to authenticate users, not instances, when
making API calls to OCI services. Instance principals are a feature that allows instances to authenticate
themselves using certificates, without requiring user credentials or Auth Tokens. The other options are
necessary steps to complete this set up, as they enable instances in the dynamic group to make API calls
against services using instance principals and IAM policies. References: [Instance Principals], [Auth Tokens]
Question # 9
You just got a last minute request to create a set of instances in Oracle Cloud Infrastructure (OCI). The configuration and installed software are identical for every instance, and you already have a running instance
in your OCI tenancy. Which image option allows you to achieve this task with the least amount of effort?
Bring your own image and use it as a template for the new instances. Select an image from the OCI Marketplace. Use Oracle-provided images and customize the installation using a third-party tool. Create a custom image and use it as a template for the new instances.
Explanation Creating a custom image and using it as a template for the new instances is the option that allows you to
achieve this task with the least amount of effort. A custom image is a copy of an existing instance that you can
use to launch other instances with the same configuration and installed software. The other options are not
suitable for this scenario, as they would require more time and effort to create and customize the instances.
References: [Custom Images]
Question # 10
You are part of an organization with thousands of users accessing Oracle Cloud Infrastructure (OCI). An
unknown user action was executed resulting in configuration errors. You are tasked to quickly identify the
details of all users who were active in the last six hours along with any REST API calls that were executed.Which OCI service would you use?
Notifications Service Connectors Notifications Logging Audit
Explanation Audit is the OCI service that would help identify the details of all users who were active in the last six hours
along with any REST API calls that were executed. Audit is a service that records all API calls and other
actions taken by or on behalf of users in OCI. It can be used to track user activity, monitor compliance, and
troubleshoot issues. The other options are not suitable for this task. References: [Audit]
Question # 11
In which TWO ways does Cloud Guard help improve the overall security posture for your tenancy?
Monitors unauthorized or suspicious user activity. Allows you to centrally manage encryption keys. Prevents you from creating misconfigurations on your resources in Oracle Cloud Infrastructure (OCI). Masks sensitive data and monitors security controls on your Oracle databases. Helps detect misconfigured resources, such as publicly accessible Object Storage buckets, instances, and
restricted ports on security lists.
Explanation According to the Oracle Cloud Guard documentation1, Cloud Guard is a cloud native service that helps customers monitor, identify, achieve, and maintain a strong security posture on Oracle Cloud. Use the service
to examine your Oracle Cloud Infrastructure resources for security weakness related to configuration, and your
Oracle Cloud Infrastructure operators and users for risky activities. Upon detection, Cloud Guard can suggest,
assist, or take corrective actions, based on your configuration. Therefore, option A and option E are correct ways that Cloud Guard helps improve the overall security posture
for your tenancy. Option B is incorrect because Cloud Guard does not allow you to centrally manage
encryption keys. That is the function of the Vault service2. Option C is incorrect because Cloud Guard does
not prevent you from creating misconfigurations on your resources in OCI. It only detects and reports them,
and optionally takes corrective actions. Option D is incorrect because Cloud Guard does not mask sensitive
data and monitor security controls on your Oracle databases. That is the function of the Data Safe service3.
Question # 12
As a solution architect, you are showcasing the Oracle Cloud Infrastructure (OCI) Object Storage feature
about Object Versioning to a customer. Which statement is true regarding OCI Object Storage Versioning?
Objects are physically deleted from a bucket when versioning is enabled. Object Versioning is disabled on a bucket by default. A bucket that is versioning-enabled can and will always have the latest version of the object in the
bucket. Object Versioning does not provide data protection against accidental or malicious object update,
overwrite, or deletion.
Explanation Object Versioning is disabled on a bucket by default is a true statement regarding OCI Object Storage
Versioning. Object Versioning is a feature that allows users to preserve, retrieve, and restore every version of
every object stored in a bucket. Object Versioning is disabled on a bucket by default, but can be enabled or
suspended by the user at any time. The other statements are false regarding OCI Object Storage Versioning.
References: [Object Versioning]
Question # 13
Which of the following statements is true about cloning a volume in the Oracle Cloud Infrastructure (OCI)
Block Volume service?
You need to detach a volume before cloning it. Creating a clone takes longer than creating a backup of a volume. You can clone a volume to another region. You can change the block volume size when cloning a volume.
Explanation You can change the block volume size when cloning a volume. The explanation is that cloning a volume is a
way of creating an exact copy of an existing volume without creating a backup first. Cloning a volume is faster
and cheaper than creating a backup and restoring it to a new volume. When you clone a volume, you can
change the block volume size, performance, encryption settings, and tags of the new volume. You do not need
to detach a volume before cloning it, as cloning does not affect the source volume or its attachments. You
cannot clone a volume to another region, as cloning only works within the same region and availability domain. Creating a clone usually takes less time than creating a backup of a volume, as cloning does not
involve transferring data to Object Storage.
Question # 14
You are part of a team that manages a set of workload instances running in an on-premises environment. The Architect team is tasked with designing and configuring Oracle Cloud Infrastructure (OCI) Logging service to
collect logs from these instances. There is a requirement to archive Info-level logging data of these instances
into the OCI Object Storage.Which TWO features of OCI can help you achieve this?
Cloud Agent Plugin Grouping Function Service Connectors Agent Configuration ObjectCollectionRule
Explanation
Cloud Agent Plugin and Service Connectors are two features of OCI that can help collect logs from
on-premises instances and archive them into OCI Object Storage. Cloud Agent Plugin is a component of the
OCI Logging service that can be installed on any Linux or Windows instance to collect logs and send them to
OCI. Service Connectors are components of the OCI Service Connector Hub that can transfer data between
different OCI services, such as Logging and Object Storage. The other options are not relevant for this
requirement. References: [Cloud Agent Plugin], [Service Connectors]
Question # 15
You are responsible for creating and maintaining an enterprise application that consists of multiple storage
volumes across multiple compute instances in Oracle Cloud Infrastructure (OCI).The storage volumes include boot volumes and block volumes for your data storage. You need to create a
backup for the boot volumes that will be done daily and a backup for the block volumes that will be done
every six hours.How can you meet this requirement?
Create clones of all boot volumes and block volumes one at a time. Group the boot volumes into a volume group and create a custom backup policy. Group the block
volumes and create a custom backup policy. Create on-demand full backups of block volumes, and create custom images from the boot volumes. Use
a function to run at a specific time to start the backup process. Group multiple storage volumes in a volume group and create volume group backups.
Explanation
Group the boot volumes into a volume group and create a custom backup policy. Group the block volumes and
create a custom backup policy. The explanation is that volume groups are logical collections of block volumes
and boot volumes that can be backed up together as a consistent point-in-time snapshot. You can create a
custom backup policy for each volume group and specify the frequency and retention period of the backups.
This way, you can meet different backup requirements for different types of volumes.
Question # 16
Which statement accurately describes the key features and benefits of OCI Confidential Computing?
It encrypts and isolates in-use data and the applications processing that data, thereby preventing
unauthorized access or modification It optimizes network performance and reduces latency through advanced routing algorithms and caching
mechanisms. It enables users to securely store and retrieve data by using distributed file systems, ensuring high availability and fault tolerance. It provides automatic scalability and load balancing capabilities, which allow seamless integration with
other cloud providers.
Explanation It encrypts and isolates in-use data and the applications processing that data, thereby preventing unauthorized
access or modification is an accurate description of the key features and benefits of OCI Confidential
Computing. Confidential Computing is a feature that leverages hardware-based Trusted Execution
Environments (TEEs) to protect data and applications from unauthorized access or modification while they are
in use by the CPU or memory. This adds an extra layer of security to cloud computing, as it protects data not
only at rest and in transit, but also in use. The other options are not accurate descriptions of the key features
and benefits of OCI Confidential Computing. References: [Confidential Computing]
Question # 17
As your company’s cloud architect, you have been invited by the CEO to join his staff meeting. They want your input on interconnecting Oracle Cloud Infrastructure (OCI) to another cloud provider in London, with
some specific requirements:• They want resources in the other cloud provider to leverage OCI Autonomous Data Warehouse ML
capabilities.• The connection between OCI and the other cloud provider should be provisioned as quickly as possible.• The connection should offer high bandwidth and predictable performance.Which other cloud provider should you recommend to interconnect with OCI and meet the above
requirements?
IBM Cloud Google Cloud OCI Microsoft Azure Digital Ocean Amazon Web Services Alibaba Cloud
Explanation
The explanation is that Microsoft Azure is one of the cloud providers that has an interconnect location with
OCI in London. This means that you can use OCI FastConnect to establish a private and dedicated connection
between OCI and Azure in London, with high bandwidth and predictable performance. This connection can
also enable you to leverage OCI Autonomous Data Warehouse ML capabilities from Azure resources, as you
can access OCI services across regions using private IP addresses. The interconnect location can be
provisioned quickly using the OCI and Azure consoles or APIs.
Question # 18
company sells services to photographers where patrons can preview the photos that they want prints for. To avoid unauthorized copies, the sample photos have lower resolution and are watermarked. The photos are
processed after they are uploaded. The process is fast but not immediate. It creates samples and sends them to
storage outside of the instances. Which type of instance is ideal for a process like this; short lived and one that
keeps the cost low?
Explanation The explanation is that preemptible instances are VM instances that offer lower costs than regular instances
but can be reclaimed by OCI at any time due to capacity constraints or after running for a maximum of 24
hours. Preemptible instances are ideal for short-lived and stateless workloads that can tolerate interruptions
and do not require guaranteed availability or performance. Preemptible instances are billed by the second at a
fixed rate that is lower than regular instances.
Question # 19
Which THREE protocols are supported by the Oracle Cloud Infrastructure (OCI) Network Load Balancer?
HTTP UDP BGP TCP ICMP iSCSI
Explanation The explanation is that the OCI Network Load Balancer supports three protocols: UDP, TCP, and ICMP.
These protocols are used to distribute traffic across multiple backend servers based on different criteria, such
as source and destination IP addresses, ports, and ICMP types and codes.
Question # 20
You are using a custom application with third-party APIs to manage the application and data hosted in an
Oracle Cloud Infrastructure (OCI) tenancy. Although your third-party APIs do not support OCI’s
signature-basedauthentication, you want them to communicate with OCI resources. Which authentication option should you
use to ensure this?
Auth Tokens OCI Username and Password API Signing Key SSH Key Pair with 2048-bit algorithm
Explanation Auth Tokens is the authentication option that you should use to ensure that your custom application with
third-party APIs can communicate with OCI resources. Auth Tokens are tokens that can be used as an
alternative to passwords when making API calls to OCI services. Auth Tokens can be generated and revoked
by users in the OCI Console or CLI, and can be used with any API client that supports basic authentication.
The other options are not suitable for this scenario, as they either require OCI’s signature-based authentication
or are not applicable for API calls. References: [Auth Tokens]
Question # 21
You are using the Oracle Cloud Infrastructure (OCI) Vault service to create and manage Secrets. For your
database password, you have created a secret and rotated the secret one time. The secret versions are as
follows: Version Number | Status-----------------------------------------
2 (latest) | Current
1 | Previous
You later realize that you have made a mistake in updating the secret content for version 2 and want to
rollbackto version 1.What should you do to rollback to version 1?
Deprecate version 2 (latest). Create new Secret version 3. Create soft link from version 3 to version 1. Create a new secret version 3 and set to Pending. Copy the content of version 1 into version 3. From the version 2 (latest) menu, select "Rollback" and select version 1 when given the option. From the version 1 menu on the OCI console, select "Promote to Current".
Explanation From the version 1 menu on the OCI console, select “Promote to Current”. The explanation is that when you
promote a secret version to current, it becomes the latest version of the secret and is used by default when you
access the secret. This way, you can rollback to a previous version of the secret without creating a new
version.
Question # 22
As a network architect you have been tasked with creating a fully redundant connection from your
on-premises data center to your Virtual Cloud Network (VCN) in the us-ashburn-1 region.Which TWO
options will accomplish this requirement?
Configure two FastConnect virtual circuits to the us-ashburn-1 region and terminate them in diverse hardware on-premises. Configure a Site-to-Site VPN from a single on-premises CPE. Configure one FastConnect virtual circuit to the us-ashburn-1 region and the second FastConnect virtual
circuit to the us-phoenix-1 region. Configure one FastConnect virtual circuit to the us-ashburn-1 region and a Site-to-Site VPN to the
usashburn-1 region.
Explanation: Configure two FastConnect virtual circuits to the us-ashburn-1 region and terminate them in diverse hardware
on-premises. Configure one FastConnect virtual circuit to the us-ashburn-1 region and a Site-to-Site VPN to
the us-ashburn-1 region. The explanation is that FastConnect is a service that provides a private and dedicated
connection between your on-premises network and your VCN in OCI. FastConnect offers higher bandwidth,
lower latency, and more consistent network performance than public internet connections. To create a fully
redundant connection from your on-premises data center to your VCN in the us-ashburn-1 region, you can
either configure two FastConnect virtual circuits to the same region and terminate them in diverse hardware
on-premises, or configure one FastConnect virtual circuit to the region and a Site-to-Site VPN to the same
region as a backup option.
Feedback That Matters: Reviews of Our Oracle 1z0-1072-23 Dumps
