Try Before You Buy

Download a free sample of any of our exam questions and answers

  • 24/7 customer support, Secure shopping site
  • Free One year updates to match real exam scenarios
  • If you failed your exam after buying our products we will refund the full amount back to you.
Free Download
  • Home
  • Articles
  • Get Instant Access to 1z0-997-22 Practice Exam Questions [Q15-Q35]

Get Instant Access to 1z0-997-22 Practice Exam Questions [Q15-Q35]

Share

Get Instant Access to 1z0-997-22 Practice Exam Questions

Reliable Study Materials & Testing Engine for 1z0-997-22 Exam Success!


To be eligible to take the Oracle 1z0-997-22 exam, candidates must have a solid understanding of cloud computing concepts, experience with Oracle Cloud Infrastructure services, and expertise in infrastructure architecture and design. The exam covers a wide range of topics, including designing and deploying highly available and scalable OCI solutions, optimizing OCI performance, and securing OCI deployments.

 

NEW QUESTION # 15
You are developing a Serverless function for your company's IoT project. This function should access Oracle Cloud Infrastructure (OCI) Object Storage to store some files. You choose Oracle Functions to deploy this function on OCI. However, your security team doesn't allow you to carry any API Token or RSA Key to authenticate the function against the OCI API to access the Object Storage.
What should you do to get this function to access OCI Object Storage without carrying any static authentication files? (Choose the best answer.)

  • A. Option C
  • B. Option A
  • C. Option D
  • D. Option B

Answer: B

Explanation:
https://blogs.oracle.com/cloud-infrastructure/getting-started-with-oracle-functions-and-object-storage


NEW QUESTION # 16
You are working as a solutions architect for an online retail store In Frankfurt which uses multiple compute instance VMs spread among three availability domains In the eu-frankfurt-1 region.
You noticed the website Is having very high traffic, so you enabled autoscaling to sun tee me no f your application but, you observed that one of the availability domains is not receiving any traffic.
What could be wrong In this situation?

  • A. Autoscaling only works with single availability domains.
  • B. Autoscaling can be enabled for multiple availability domains only in uk-london t region.
  • C. Autoscaling is using an Instance Pool configured to create instances in two availability Domains.
  • D. You have to manually acid all three availability domains to your load balancer configuration.
  • E. You forgot to attach a load balancer to your instance pool configuration.

Answer: C

Explanation:
Autoscaling lets you automatically adjust the number of Compute instances in an instance pool based on performance metrics such as CPU utilization. This helps you provide consistent performance for your end users during periods of high demand, and helps you reduce your costs during periods of low demand.
you can associate a load balancer with an instance pool. If you do this, when you add an instance to the instance pool, the instance is automatically added to the load balancer's backend set . After the instance reaches a healthy state (the instance is listening on the configured port number), incoming traffic is automatically routed to the new instance.
Instance pools let you provision and create multiple Compute instances based off the same configuration, within the same region.
By default, the instances in a pool are distributed across all fault Domains in a best-effort manner based on capacity. If capacity isn't available in one fault domain, the instances are placed in other fault domains to allow the instance pool to launch successfully.
In a high availability scenario, you can require that the instances in a pool are evenly distributed across each of the fault domains that you specify. When sufficient capacity isn't available in one of the fault domains, the instance pool will not launch or scale successfully, and a work request for the instance pool will return an "out of capacity" error. To fix the capacity error, either wait for capacity to become available, or use the UpdateInstancePool operation to update the placement configuration (the availability domain and fault domain) for the instance pool.
during create the instance pool you can select the location where you want to place the instances" In the Availability Domain list, select the availability domain to launch the instances in.
If you want the instances in the pool to be placed evenly in one or more fault domains, select the Distribute instances evenly across selected fault domains check box. Then, select the fault domains to place the instances in.


NEW QUESTION # 17
Which of the following is NOT a good use case for using the functionality available in the Oracle Cloud Infrastructure (OCI) Events service?

  • A. Publish a notification when long lived tasks complete, such as OCI Autonomous Database backup completion.
  • B. Capture Monitoring Alarms and invoke Autoscaling of compute instances.
  • C. Publish all events in a specific compartment to Oracle Streaming service for later analysis.
  • D. Triggers Function using Oracle Functions when new files are uploaded in an OCI Object Storage bucket.
  • E. Trigger a notification when a function completes its execution.

Answer: B


NEW QUESTION # 18
You are a solution architect working with a startup that has decided to move their workload to Oracle Cloud Infrastructure. Since their workload is small, upon architecting, you decide its sufficient to use 8 compute instances to run their workload. The company wants to use a common storage for their instances. So, you propose the idea of attaching a block volume to multiple instances to provide a common storage.
Which of the below option is NOT true for such a solution?

  • A. If the block volume is already attached to an instance as read/write non-shareable you can't attach it to another instance until you detach it from the first instance.
  • B. You can delete a block volume from one instance without detaching it from all other instances there by keeping other instance's storage intact.
  • C. Block volumes attached as read-only are configured as shareable by default.
  • D. Once you attach a block volume to an instance as read-only, it can only be attached to other instances as read-only.

Answer: B


NEW QUESTION # 19
You are a cloud architect at a financial organization. The development team is tasked with creating a cloud native application to be hosted on Oracle Cloud Infrastructure (OCI). The development team has followed a microservices-based approach and created containerized images of the cloud-native application and pushed them to OCI Registry (OCIR).
How can you deploy a load balanced application to your OCI Container Engine for Kubernetes (OKE) cluster using these images?

  • A. Create a load balancer using the OCI load balancer service, add the load balancer service IP in the manifest file, add the location of the docker image to the manifest file, and deploy the manifest file.
  • B. Add the location of the docker image to the manifest file, deploy the manifest file. All applications are load-balanced by default in OKE
  • C. Create an auth token, add the auth token to the manifest file, add the location of the docker image to the manifest file, add the service of type LoadBalancer in the manifest file, and deploy the manifest file.
  • D. Create a named secret, add the secret to the manifest file, add the location of the docker image to the manifest file, add the service of type LoadBalancer in the manifest file, and deploy the manifest file.

Answer: A


NEW QUESTION # 20
You have two Virtual Cloud Networks (VCN) that need to be peered. The set up is as follows:
The VCNs are in different tenancies.
Peering has to be via Local Peering Gateway (LPG) because one of the VCNs needs to be added to an existing Hub and Spoke configuration that consists of a hub and two spokes.
There is a CIDR overlap. The VCN that serves as the Hub VCN has a 172.19.0.0/16 CIDR prefix. The other VCN to be added as a Spoke VCN has a 172.19.128.0/17 CIDR prefix.
The other two spokes have 10.0.0.0/16 and 192.168.0.0/16 prefixes, respectively.
What is a possible solution to this problem?

  • A. Use Dynamic Routing Gateway (DRG) instead.
  • B. Review the subnets in the hub VCN. If they all have the third octet above 128, change the VCN prefix to /17.
  • C. Review the subnets in the hub VCN. If they all have the third octet under 128, change the VCN prefix to /17.
  • D. Add another CIDR prefix to the VCN that is integrating with the Hub and Spoke and does not overlap. Use that CIDR for the LPG connection.
  • E. Review all subnets in the hub VCN. If one of them has the third octet at 128, change the VCN prefix to /17.

Answer: D


NEW QUESTION # 21
You are working as a solution architect for an online retail store to create a portal to allow the users to pay for their groceries using credit cards. Since the application is not fully compliant with the Payment Card Industry Data Security Standard (PCI DSS), your company is looking to use a third party payment service to process credit card payments.
The third party service allows a maximum of Spelunk IP addresses 5 public IP addresses at a time However, your website is using Oracle Cloud Infrastructure (OCI) Instance Pool Auto Scaling policy to create up to create up to 15 Instances during peak traffic demand, which are launched In VCN private in VCN private subnets and attached to an OCI public Load Balancer. Upon user payment, the portal connects to the payment service over the Interne! to complete the transaction What solution can you implement to make sure that all compute Instances can connect to the third party system to process the payments aw peak traffic demand?

  • A. Route credit card payment request from the compute instances through the NAT Gateway. On the third-party services, whitelist the public IP associated with the NAT Gateway.
  • B. Route payment request from the compute instances through the OCI Load Balancer, which will then be routed to the third party service.
  • C. Create an OCI Command Line Interface (CLI) script to automatically reserve public IP address for the compute instances. On the third-party services, whitelist the Reserved public IP.
  • D. Whitelist the Internet Gateway Public IP on the third party service and route all payment requests through the Internet Gateway.

Answer: A

Explanation:
https://docs.oracle.com/en-us/iaas/Content/Balance/Concepts/balanceoverview.htm


NEW QUESTION # 22
Your organization is planning on using Oracle Cloud Infrastructure (OCI) File Storage Service (FSS). You will be deploying multiple compute instance in Oracle Cloud Infrastructure(OCI) and mounting the file system to these compute instances.
The file system will hold payment data processed by a Database instance and utilized by compute instances to create a overall inventory report. You need to restrict access to this data for specific compute instances and must be allowed/blocked per compute instance's CIDR block.
Which option can you use to secure access?

  • A. Create a new VCN security list, choose SOURCE TYPE as Service and SOURCE SERVICE as FSS. Add stateless ingress and egress rules for specific IP address and CIDR blocks.
  • B. Use stateless Security List rule to restrict access from known IP addresses only.
  • C. Create and configure OCI Web Application Firewall service with built in DNS based intelligent routing.
  • D. Use 'Export option' feature of FSS to restrict access to the mounted file systems.

Answer: D


NEW QUESTION # 23
A company runs a public-facing application that uses a Java-based web service via a RESTful API in their on-premises data center. Use of the API is expected to double with a new product launch. The business wants to migrate their application to Oracle Cloud Infrastructure (OCI) to meet the scale and reliability requirements. In order to achieve this, they will divert only 40% of the traffic to the new Apache Tomcat web servers running on OCI and serve the remaining 60% traffic through their on-premises infrastructure. Once the migration is complete and application works fine, they will divert all traffic to OCI. How can these requirements be met with the LEAST amount of effort?

  • A. Use OCI Traffic management service with failover steering policy and distribute the traffic between OCI and on premises infrastructure.
  • B. Use VPN connectivity between on premises Infrastructure and OCI and create routing tables to distribute the traffic between them.
  • C. Use OCI Traffic management service with Load Balancing steering policy and distribute the traffic between OCI and on premises infrastructure.
  • D. Use an OCI load Balancer and distribute the traffic between OCI and on premises infrastructure.

Answer: C


NEW QUESTION # 24
An online registration system Is currently hosted on one large Oracle Cloud Infrastructure (OCT) Bare metal compute Instance with attached block volume to store of the users' dat a. The registration system accepts the Information from the user, Including documents and photos then performs automated verification and processing to check it the user is eligible for registration.
The registration system becomes unavailable at tunes when there is a surge of users using the system the existing architecture needs improvement as it takes a long time for the system to complete the processing and the attached block volumes are not large enough to use data being uploaded by the users.
Which Is the most effective option to achieve a highly scalable solution?

  • A. Attach more Block volumes as the data volume increase, use Oracle Notification Service (ONS) to distribute tasks to a pool of compute instances working In parallel, and Auto Scaling to dynamically size the pool of Instances depending on the number of notifications received from the Notification Service. Use Resource Manager stacks to replicate your architecture to another region.
  • B. Upgrade your architecture to use more Block volumes as the data volume Increases. Replace the single bare metal instance with a group of compute instances with Auto Scaling to dynamically increase or decrease the compute instance pools depending on the traffic.
  • C. Upgrade your architecture to use a pool of Bare metal servers and configure them to use their local SSDs for faster data access Set up Oracle Streaming Service (OSS) to distribute the tasks to the pool of Bare metal Instances with Auto Scaling to dynamically increase or decrease the pool of compute instances depending on the length of the Streaming queue.
  • D. Change your architecture to use an OCI Object Storage standard tier bucket, replace the single bare metal instance with a Oracle Streaming Service (OSS) to ingest the Incoming requests and distribute the tasks to a group of compute Instances with Auto Scaling

Answer: B


NEW QUESTION # 25
An insurance company is storing critical financial data in the OCI block volume. This volume is currently encrypted using oracle managed keys. Due to regulatory compliance, the customer wants to encrypt the data using the keys that they can control and not the keys which are controlled by Oracle.
What of the following series of tasks are required to encrypt the block volume using customer managed keys?

  • A. Create a vault, create a master encryption key in the vault, assign this master encryption key to the block volume D. Create a master encryption key, create a new version of the encryption key, decrypt the block volume using existing oracle managed keys and encrypt using new version of the encryption key
  • B. Create a master encryption key, create a data encryption key, decrypt the block volume using existing oracle managed keys, encrypt the block volume using the data encryption key
  • C. Create a vault, import your master encryption key into the vault, generate data encryption key, assign data encryption key to the block volume

Answer: A

Explanation:
Oracle Cloud Infrastructure Vault lets you centrally manage the encryption keys that protect your data and the secret credentials that you use to securely access resources. You can use the Vault service to create and manage the following resources:
Vaults
Keys
Secrets
Vaults securely store master encryption keys and secrets that you might otherwise store in configuration files or in code.
The Vault service lets you create vaults in your tenancy as containers for encryption keys and secrets. If needed, a virtual private vault provides you with a dedicated partition in a hardware security module (HSM), offering a level of storage isolation for encryption keys that's effectively equivalent to a virtual independent HSM.


NEW QUESTION # 26
A developer is using Oracle Functions to deploy her code as part of an event-driven solution in Oracle Cloud Infrastructure (OCI). When she invokes her function, Oracle Functions returns a FunctionlnvokelmageNotAvailable message and a 502 error:

Which of the following options is NOT a plausible reason for this error?

  • A. The VCN being used does not have an internet gateway or a service gateway configured for Oracle Functions to be able to access OCI Registry.
  • B. Missing or invalid IAM policy to give Oracle Functions read access to images stored for functions in repositories in OCI Registry.
  • C. The function does not exist in the specified location in OCI Registry.
  • D. OCI Events service rule is not configured with the correct location of the function in OCI Registry.

Answer: D


NEW QUESTION # 27
You are trying to delete a compartment. The delete operation is falling and you need to troubleshoot the problem.
Which step should NOT be considered when troubleshooting this issue?

  • A. Verify that you have removed all resources from the compartment.
  • B. Search for resources in the compartment for each region that your tenancy is subscribed to.
  • C. Verify that there are no policies In the root compartment that reference the compartment you are trying to delete.
  • D. Make sure you have at least one more compartment in your tenancy other than the root compartment.

Answer: D


NEW QUESTION # 28
A small business specializing in video processing wants to leverage cloud storage in order to lower its costs. They are looking to backup all video data generated, from an existing on-premises file server to Oracle Cloud Infrastructure (OCI). The requirement is to setup continuous data sync as changes are made to on- premises file server. What is the most cost effective solution for this scenario?

  • A. Set up a VPN connect connection and back up all videos to Object storage standard bucket. Create a lifecycle policy to move files older than 30 days to Archive Storage.
  • B. Set up file storage service on OCI and mount the file system to an instance running on-premises. Move all the data to this on-premises instance and then sync the videos to the shared file system.
  • C. Set up a Fastconnect virtual Circuit and nightly back up all videos to OCI Archive Storage.
  • D. Setup an on-premises OCI Storage Gateway Cloud Sync to back up videos to OCI Object Storage Archive tier.

Answer: D


NEW QUESTION # 29
A customer has a Virtual Machine instance running in their Oracle Cloud Infrastructure tenancy. They realized that they wrongly picked a smaller shape for their compute instance. They are reaching out to you to help them fix the issue.
Which of the below options is best recommended to suggest to the customer?

  • A. Change the shape of the virtual machine instance using the Change Shape feature available in the console.
  • B. OCI doesn't allow such an operation.
  • C. Delete the running instance and spin up a new instance with the desired shape.
  • D. Change the shape of instance without reboot, but stop all the applications running on instance beforehand to prevent data corruption.

Answer: A

Explanation:
You can change the shape of a virtual machine (VM) instance without having to rebuild your instances or redeploy your applications. This lets you scale up your Compute resources for increased performance, or scale down to reduce cost.
When you change the shape of an instance, you select a different processor, number of cores, amount of memory, network bandwidth, and maximum number of VNICs for the instance. The instance's public and private IP addresses, volume attachments, and VNIC attachments remain the same.


NEW QUESTION # 30
An insurance company is storing critical financial data in the OCI block volume. This volume is currently encrypted using oracle managed keys. Due to regulatory compliance, the customer wants to encrypt the data using the keys that they can control and not the keys which are controlled by Oracle.
What of the following series of tasks are required to encrypt the block volume using customer managed keys?

  • A. Create a master encryption key, create a data encryption key, decrypt the block volume using existing oracle managed keys, encrypt the block volume using the data encryption key
  • B. Create a vault, create a master encryption key in the vault, assign this master encryption key to the block volume
  • C. Create a vault, import your master encryption key into the vault, generate data encryption key, assign data encryption key to the block volume
  • D. Create a master encryption key, create a new version of the encryption key, decrypt the block volume using existing oracle managed keys and encrypt using new version of the encryption key

Answer: B

Explanation:
Explanation
Oracle Cloud Infrastructure Vault lets you centrally manage the encryption keys that protect your data and the secret credentials that you use to securely access resources. You can use the Vault service to create and manage the following resources:
Vaults
Keys
Secrets
Vaults securely store master encryption keys and secrets that you might otherwise store in configuration files or in code.
The Vault service lets you create vaults in your tenancy as containers for encryption keys and secrets. If needed, a virtual private vault provides you with a dedicated partition in a hardware security module (HSM), offering a level of storage isolation for encryption keys that's effectively equivalent to a virtual independent HSM.


NEW QUESTION # 31
You are part of a project team working in the development environment created in OCI. You have realized that the CIDR block specified for one of the subnet in a VCN is not correct and want to delete the subnet. While deleting you are getting an error indicating that there are still resources that you must delete first. The error includes the OCID of the VNIC that is in the subnet.
Which of the following action you will take to troubleshoot this issue?

  • A. Copy and Paste OCID of the VNIC in the search box of the OCI Console to find out the parent resource of the VNIC
  • B. Use OCI CLI to delete the VNIC first and then delete the subnet
  • C. Use OCI CLI to delete the subnet using --force option
  • D. Use OCI CLI to call "GetVnic" operation to find out the parent resource of the VNIC

Answer: D

Explanation:
VCN, it must first be empty and have no related resources or attached gateways To delete a VCN's subnets, they must first be empty.
Note: When you create one of the preceding resources, you specify a VCN and subnet for it. The relevant service creates at least one VNIC in the subnet and attaches the VNIC to the resource. The service manages the VNICs on your behalf, so they are not readily apparent to you in the Console. The VNIC enables the resource to communicate with other resources over the network. Although this documentation commonly talks about the resource itself being in the subnet, it's actually the resource's attached VNIC.
If the subnet is not empty, you instead get an error indicating that there are still resources that you must delete first. The error includes the OCID of a VNIC that is in the subnet (there could be more, but the error returns only a single VNIC's OCID).
You can use the Oracle Cloud Infrastructure command line interface (CLI) or another SDK or client to call the GetVnic operation with the VNIC OCID. The response includes the VNIC's display name. Depending on the type of parent resource, the display name can indicate which parent resource the VNIC belongs to. You can then delete that parent resource, or you can contact your administrator to determine who owns the resource. When the VNIC's parent resource is deleted, the attached VNIC is also deleted from the subnet. If there are remaining VNICs in the subnet, repeat the process of determining and deleting each parent resource until the subnet is empty. Then you can delete the subnet.
For example, if you're using the CLI, use this command to get information about the VNIC.
oci network vnic get --vnic-id <VNIC_OCID


NEW QUESTION # 32
A large E-commerce company is looking to run seasonal workloads in Oracle Cloud Infrastructure. The Oracle database used by their E-commerce application can use up to 52 cores at peak workloads. Due to the seasonal nature of the business, the database will be not be used for 10 months in a year and can also be shut down during non-business hours.

  • A. Oracle Cloud Infrastructure Exadata DB Systems
  • B. Oracle Cloud Infrastructure Virtual Machine DB Systems
  • C. Oracle Cloud Infrastructure Bare Metal DB Systems
  • D. Autonomous Transaction Processing with shared Exadata infrastructure

Answer: D


NEW QUESTION # 33
You have deployed a multi-tier application with multiple compute instances in Oracle Cloud Infrastructure. You want to back up these volumes and have decided to use 'Volume Groups' feature. The Block volume and Compute instances exist in different compartments within your tenancy.
Periodically, a few child compartments are moved under different parent compartments, and you notice that sometimes volume group backup fails.
What could be the cause?

  • A. You have the same block volume attached to multiple compute instances; if these compute instances are in different compartments then all concerned compartments must be moved at the same time.
  • B. You are exceeding your volume group backup quota configured.
  • C. The Identity and Access Management policy allowing backup failed to move when the compartment was moved.
  • D. A compute instance with multiple block volumes attached cannot move when a compartment is moved.

Answer: C


NEW QUESTION # 34
Your team is conducting a root analysis (RCA) following a recent, unplanned outage. One of the block volumes attached to your production WebLogic server was deleted and you have tasked with identifying the source of the action. You search the Audit logs and find several Delete actions that occurred in the previous 24 hours. Given the sample of this event.

Which item from the event log helps you identify the individual or service that initiated the DeleteVolume API call?

  • A. eventId
  • B. eventource
  • C. principalld
  • D. requestOrigin
  • E. requestAgent

Answer: C

Explanation:
The Oracle Cloud Infrastructure Audit service automatically records calls to all supported Oracle Cloud Infrastructure public application programming interface (API) endpoints as log events. Currently, all services support logging by Audit.
Every audit log event includes two main parts:
Envelopes that act as a container for all event messages
Payloads that contain data from the resource emitting the event message The identity object contains the following attributes.
data.identity.authType The type of authentication used.
data.identity.principalId The OCID of the principal.
data.identity.principalName The name of the user or service. This value is the friendly name associated with principalId .


NEW QUESTION # 35
......

Validate your Skills with Updated 1z0-997-22 Exam Questions & Answers and Test Engine: https://www.dumptorrent.com/1z0-997-22-braindumps-torrent.html

Tested & Approved 1z0-997-22 Study Materials Download: https://drive.google.com/open?id=1XzvmQOwwVnltSNLeTNV_4Y_MuPyB8blC

Related Articles

more
Oracle 1z0-997-22 Certification Practice Exam

All Reliable Guide Torrent are edited by our professional education experts. If you choose to purchase our High-quality Exam Torrent and Valid Test Dumps, you will mostly pass the exams. No Pass No Pay.

Latest Exam Braindumps

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 DumpTorrent NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy

Disclaimer:
DumpTorrent doesn't offer Real CompTIA Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates
DumpTorrent material do not contain actual actual Oracle Exam Questions or material.
DumpTorrent doesn't offer Real Microsoft Exam Questions.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation
DumpTorrent Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
DumpTorrent.com does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. DumpTorrent does not own or claim any ownership on any of the brands.