New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70special

Oracle 1z0-1084-24 Oracle Cloud Infrastructure 2024 Developer Professional Exam Practice Test

Page: 1 / 10
Total 100 questions

Oracle Cloud Infrastructure 2024 Developer Professional Questions and Answers

Testing Engine

  • Product Type: Testing Engine
$37.5  $124.99

PDF Study Guide

  • Product Type: PDF Study Guide
$33  $109.99
Question 1

You have created a repository in Oracle Cloud Infrastructure Registry (OCIR) in the us-ashburn-1 (iad) region in your tenancy with the heyoci namespace. Which three are valid tags for an image named myapp? (Choose three.)

Options:

A.

iad.ccir.io/heyoci/myapp:latest

B.

iad.ocir.io/heyoci/myapp:0.0.2-beta

C.

iad.ocir.io/heyoci/myproject/myapp:0.0.1

D.

us-ashburn-1.ocir.io/myproject/heyoci/myapp:latest

E.

us-ashburn-1.ocir.io/heyoci/myapp:0.0.2-beta

F.

us-ashburn-1.ocir.io/heyoci/myproject/myapp:0.0.2-beta

Question 2

You are creating an API deployment in Oracle Cloud Infrastructure (OCI) API Gateway and you want to configure request policies to control access. Which is NOT available in OCI API Gateway?

Options:

A.

Controlling access to the backend OCI resources.

B.

Limiting the number of requests sent to the backend services.

C.

Enabling Cross-Origin Resource Sharing (CORS) support.

D.

Providing authentication and authorization.

Question 3

You want to push a new image in the Oracle Cloud Infrastructure (OCI) Registry. Which TWO actions would you need to perform? (Choose two.)

Options:

A.

Generate an API signing key to complete the authentication via Docker CLI.

B.

Generate an auth token to complete the authentication via Docker CLI.

C.

Assign an OCI defined tag via OCI CLI to the image.

D.

Assign a tag via Docker CLI to the image.

E.

Generate an OCI tag namespace in your repository.

Question 4

Which feature is typically NOT associated with Cloud Native?

Options:

A.

Immutable Infrastructure

B.

Declarative APIs

C.

Containers

D.

Application Servers

E.

Service Meshes

Question 5

Assuming that your function does NOT have the --provisioned-concurrency option enabled, which parameter is used to configure the time period during which an idle function will remain in memory before Oracle Functions removes its container image from memory?

Options:

A.

timeout

B.

access-timeout

C.

idle-timeout

D.

None, as this time is not configurable.

Question 6

As a Cloud Native developer, you develop two services in Node.js and deploy them to two different Container Engine for Kubernetes (OKE) clusters that use the same Virtual Cloud Network (VCN). Your security team wants to analyze the network communication between them. How can this requirement be met in the most cost-effective way?

Options:

A.

Rewrite the application and send the application logs to an outside log aggregator.

B.

Deploy a third-party logging service and aggregate the network flow logs.

C.

Use the OCI Logging service and enable VCN flow logs.

D.

Deploy Wireshark and intercept the packets.

Question 7

Your company has recently deployed a new web application that uses Oracle Functions. Your manager instructs you to implement monitoring metrics to manage your systems more effectively. You know that Oracle Functions automatically monitors functions on your behalf and reports metrics via Oracle Cloud Infrastructure (OCI) Monitoring. Which TWO metrics are collected and made available by this feature? (Choose two.)

Options:

A.

Amount of CPU used by a function

B.

Length of time a function runs

C.

Number of times a function Is removed

D.

Amount of RAM used by a function

E.

Number of times a function is invoked

Question 8

Which one of the following is NOT a valid backend-type supported by Oracle Cloud Infrastructure (OCI) API Gateway?

Options:

A.

STOCK_RESPONSE_BACKEND

B.

HTTP BACKEND

C.

ORACLE_FUNCTIONS_BACKEND

D.

ORACLE_STREAMS_BACKEND

Question 9

Which two "Action Type" options are NOT available in an Oracle Cloud Infrastructure (OCI) Events rule definition? (Choose two.)

Options:

A.

Email

B.

Streaming

C.

Slack

D.

Functions

E.

Notifications

Question 10

When developing microservices, each one can be developed in the language of choice. Which term describes this type of development? (Choose the best answer.)

Options:

A.

Agile

B.

DevOps

C.

Distributed

D.

Polyglot

Question 11

Kubernetes includes various elements such as compute, network, and storage. Compute is essentially CPU (units) and memory (bytes). Within an OKE cluster, what is considered to be the smallest unit of deployment with respect to compute?

Options:

A.

Container

B.

Service

C.

Pod

D.

Namespace

E.

Deployment resource

Question 12

You have been asked to update an OKE cluster to a network configuration that has the least attack surface while the deployed applications are still directly available for access from the Internet. Which is a valid OKE cluster network configuration that meets this requirement? (Choose the best answer.)

Options:

A.

Private subnets for nodes, the Kubemetes API endpoint, and load balancers

B.

Private subnets for nodes; public subnets for the Kubemetes API endpoint and load balancers

C.

Private subnets for nodes and the Kubemetes API endpoint; public subnets for load balancers

D.

Private subnet for the Kubemetes API endpoint; public subnets for nodes and load balancers

Question 13

Which TWO statements are correct regarding Docker images and containers? (Choose two.)

Options:

A.

Only one container can be spawned from a given image at a time.

B.

An image is a collection of immutable layers whereas a container is a running instance of an image.

C.

If multiple containers are spawned from the same image, then they all use the same copy of that image in memory.

D.

Writing and building a new Dockerfile is the only way you can create new Docker images.

E.

A container can exist without an image but an image cannot exist without a container.

Question 14

Your organization has deployed their e-commerce application on Oracle Container Engine for Kubernetes (OKE) and they are using the Oracle Cloud Infrastructure Registry (OCIR) service as their Docker image repository. They have deployed the OKE cluster using the 'custom create' option, and their Virtual Cloud Network (VCN) has three public subnets with associated Route Tables, Security Lists, and Internet Gateway. However, their application containers are failing to deploy. On investigation, they discover that the images are not being pulled from the designated OCIR repository, even though the YAML configuration has the correct path to the images. What is a valid concern here that needs to be further investigated?

Options:

A.

Security List rule for TCP port 22 needs to be added to connect to the OCIR service.

B.

VCN hosting the OKE cluster worker nodes needs to have a NAT gateway to access OCIR repositories.

C.

Identity and Access Management (IAM) credentials need to be added for each user that deploys applications to the OKE cluster.

D.

OKE cluster needs to have a secret with the credentials of their OCIR repository and use that secret in the Kubernetes deployment manifest.

Question 15

You have two microservices, A and B, running in production. Service A relies on APIs from service B. You want to test changes to service A without deploying all of its dependencies, which include service B. Which approach should you take to test service A?

Options:

A.

Test using API mocks.

B.

Test the APIs in private environments.

C.

Test against production APIs.

D.

There is no need to explicitly test APIs.

Question 16

A company is developing a new application that needs to process transactions in real time. The company wants to ensure that all transactions are processed in order and that no transaction is lost. Which of these is a correct strategy for leveraging OCI Queue in this scenario?

Options:

A.

Use a separate queue for each type of transaction.

B.

Use a single queue to process all transactions.

C.

Use a separate queue for each application instance.

D.

Use a priority queue to prioritize requests.

Question 17

Who is responsible for patching, upgrading, and maintaining the worker nodes in Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE)? (Choose the best answer.)

Options:

A.

Oracle Support

B.

It is automated

C.

The user

D.

Independent Software Vendors

Question 18

Which option best defines microservices?

Options:

A.

A statically typed and compiled language.

B.

An open-source system for automating deployment, scaling, and management of containerized applications.

C.

A finely tuned piece of software that performs a single or small collection of tasks.

D.

An organized collection of structured information or data, typically stored electronically in a computer system.

Question 19

Which TWO statements accurately describe an Oracle Functions application? (Choose two.)

Options:

A.

A common context to store configuration variables that are available to all functions in the application. A Docker image containing all the functions that share the same configuration.

B.

An application based on Oracle Functions, Oracle Cloud Infrastructure (OCI) Events, and OCI API Gateway services.

C.

A small block of code invoked in response to an OCI Events service.

A logical group of functions.

D.

A Docker image containing all the functions that share the same configuration.

Question 20

Which is NOT a valid use case for leveraging the Oracle Cloud Infrastructure (OCI) Events service?

Options:

A.

Capturing the OCI Monitoring service alarms and invoking autoscaling of compute instances.

B.

Publishing a notification when long-lived tasks complete, such as an OCI Autonomous Database backup completion.

C.

Triggering a notification action when a function completes its execution.

D.

Triggering a function deployed in Oracle Functions when new files are uploaded to an OCI Object Storage bucket.

E.

Publishing all the OCI resource events in a specific compartment to the OCI Streaming service for later analysis.

Question 21

A developer has created another version of a microservice and wants 10% of the traffic to flow towards it for testing purposes. The application is already configured using OCI (Oracle Cloud Infrastructure) Service Mesh. Which of the following steps is the right approach to achieve this goal?

Options:

A.

Create a new Kubernetes deployment for the new version of the microservice and set the traffic splitting percentage to 10% in the Kubernetes service manifest.

B.

Use Kubernetes HPA (Horizontal Pod Autoscaler) to scale the new version of the microservice to handle 10% of the traffic automatically.

C.

Create a new entry in the routeRules field of the ingress gateway route table manifest to configure traffic splitting between the old and new versions of the microservice and set the percentage to 10%.

D.

Create a new entry in the routeRules field of the virtual service route table manifest to configure traffic splitting between the old and new versions of the microservice and set the percentage to 10%.

Question 22

You have two microservices, A and B running in production. Service A relies on APIs from service B. You want to test changes to service A without deploying all of its dependencies, which includes service B. Which approach should you take to test service A?

Options:

A.

Test using a previous test version of service B.

B.

Test using an API mock of service B.

C.

Test using the current production version of service B.

D.

This is not possible because service B is a dependency.

Question 23

Which TWO are required to access the Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE) cluster from the kubectl CLI? (Choose two.)

Options:

A.

Tiller enabled on the OKE cluster.

B.

An SSH key pair with the public key added to the cluster worker nodes.

C.

Install and configure the OCI CLI.

D.

A configured OCI API signing key pair.

E.

OCI Identity and Access Management (IAM) Auth Token.

Question 24

You have a containerized application that requires access to an Autonomous Transaction Processing (ATP) Database. Which option is NOT valid when the container is deployed in an OKE cluster? (Choose the best answer.)

Options:

A.

Use Kubernetes secrets to configure environment variables on the container with ATP instance OCID, and OCI API credentials. Then use the CreateConnection API endpoint from the service runtime.

B.

Install the Oracle Cloud Infrastructure Service Broker on the Kubernetes cluster and deploy ServiceInstance and ServiceBinding resources for ATP. Then use the specified binding name as a volume in the application deployment manifest.

C.

Create a Kubernetes secret with contents from the instance Wallet files. Use this secret to create a volume mounted to the appropriate path in the application deployment manifest.

D.

Enable Oracle REST Data Services for the required schemas and connect via HTTPS.

Question 25

As a cloud-native developer, you are designing an application that depends on Oracle Cloud Infrastructure (OCI) Object Storage wherever the application is running. Therefore, provisioning of storage buckets should be part of your Kubernetes deployment process for the application. Which of the following should you leverage to meet this requirement? (Choose the best answer.)

Options:

A.

Oracle Functions

B.

OCI Service Broker for Kubernetes

C.

Open Service Broker API

D.

OCI Container Engine for Kubernetes

Question 26

Your team has chosen to use master encryption key (MEK) within an Oracle Cloud Infrastructure (OCI) Vault for encrypting Kubernetes secrets associated with your microservice deployments in OCI Container Engine for Kubernetes (OKE) clusters so that you can easily manage key rotation. Which of the following is NOT valid about rotating keys in the OCI Vault service?

Options:

A.

Once rotated, older key versions can be used for encryption until they are deleted.

B.

Both software and HSM-protected MEKS can be rotated.

C.

When you rotate an MEK, a new key version is automatically generated.

D.

Each key version is tracked internally with separate unique OCIDS.

Question 27

Which kubectl command syntax is valid for implementing a rolling update deployment strategy in Kubernetes? (Choose the best answer.)

Options:

A.

kubectl upgrade -c --image=image:v2

B.

kubectl update --image=image:v2

C.

kubectl rolling-update --image=image:v2

D.

kubectl update -c --iniage=image: v2

Question 28

What is the open source engine for Oracle Functions?

Options:

A.

Fn Project

B.

Apache OpenWhisk

C.

OpenFaas

D.

Knative

Question 29

From a DevOps process standpoint, it is a good practice to keep changes to an application under version control. Which of the following allows changes to a Docker image to be stored in a version control system?

Options:

A.

Updating docker-compose.yml

B.

Executing docker commit

C.

Executing docker save

D.

Updating Dockerfile

Question 30

Your organization has mandated that all deployed container images used for microservices must be signed by a specified master encryption key (MEK). You have appropriately signed the container images as part of your build process, but must now ensure that they are automatically verified when they are deployed to Oracle Cloud Infrastructure (OCI) Container Engine for Kubemetes (OKE) clusters. Which option should be used to mandate image verification when deploying to OKE clusters, assuming that MEK is already stored in an available OCI Vault? (Choose the best answer.)

Options:

A.

Enable image verification policies separately for each Kubemetes pod deployment because this is enforced at the pod level.

B.

Enable image verification policies separately for each node pool within each OKE cluster because this is enforced at the node pool level.

C.

Enable image verification policies separately for each OKE cluster because this is enforced at the cluster level.

(Correct)

D.

Enable Image verification policies for your OKE service control plane which will enforce this for all OKE clusters.

Page: 1 / 10
Total 100 questions