A retail company runs their online shopping platform entirely on Oracle cloud Infrastructure (OCI). This is a 3-tier web application that Includes a Mbps Load Balancer. Virtual Machine Instances for web and an Oracle DB Systems Virtual Machine Due to unprecedented growth, they noticed an Increase in the Incoming traffic to their website and all users start getting 503 (Service Unavailable) errors. What is the potential problem in this scenario?
A. The Load Balancer health check status Indicates critical situation for half of the backend webservers
B. All the web servers are too busy and not able to answer any request from users.
C. The Database Is down hence users can not access the web site
D. The Traffic Management Policy is not set to load Balancer the traffic to the web servers.
E. You did not configure a Service Gateway to allow connection between web servers and load Balance
Multiple departments In your company use a shared Oracle Cloud Infrastructure (OCI) tenancy to Implement their projects. You are in charge of managing the cost of OCI resources in the tenancy and need to obtain better Insights Into department's usage. Which three options can you implement together to accomplish this?
A. Create a budget that matches your commitment amount and an alert at 100 percent of the forecast
B. Set up a consolidated budget tracking lags to analyze costs in ,1 granular manner
C. Set up different compartments for each department then track and analyze cost per compartment
D. Use the billing cost tracking report to analyze costs
E. Set up a tag default that automatically applies tags to all specified resources created In a compartment then use these tags for cost analysis.
A company has an urgent requirement to migrate 300 TB of data to Oracle Cloud Infrastructure (OCI) In two weeks. Their data center has been recently struck by a massive hurricane and the building has been badly damaged, although still operational. They have a 100 Mbps Internet line but the connection is Intermittent due to the damages caused to the electrical grid in this scenario, what is the most effective service to use to migrate the data to OCI given the time constraints?
A. Setup a OCI Storage Gateway to connect your data center and your VCN. Once the connection has been established, upload all data to OCI using OCI Storage Gateway Cloud Sync tool.
B. Setup a hybrid network by launching aIGbpsFastConnect virtual circuit between your data center and OCI. Use OCI Object storage multipart upload tool to automate the migration of your data to OCI.
C. Use multiple OCI Data Transfer Appliances to transfer data to OCI.
D. Upload the data to OCI using OCI Object Storage multipart upload tool.
E. Storage Gateway to connect your data center and your VCN. Once the connection has been established, upload all data to OCI.
An Oracle Cloud Infrastructure (OCI) Public Load Balancer's SSL certificate is expiring soon. You noticed
the Load Balancer is configured with SSL Termination only. When the certificate expires, data traffic can
be interrupted and security compromised.
What steps do you need to take to prevent this situation?
A. Add the new SSL certificate to the Load Balancer, update backend servers to work with a new certificate and edit listeners so they can use the new certificate bundle.
B. Add the new SSL certificate to the Load Balancer, update listeners and backend sets so they can use the new certificate bundle.
C. Add the new SSL certificate to the Load Balancer and implement end to end SSL so it can encrypt the traffic from clients all the way to the backend servers.
D. Add the new SSL certificate to the Load Balancer and update backend servers to use the new certificate bundle.
E. Add the new SSL certificate to the Load Balancer and update listeners to use the new certificate bundle.
A new international hacktivist group, based in London, launched wide scale cyber attacks including SQL Injection and Cross-Site Scripting (XSS) across multiple websites which are hosted in Oracle Cloud Infrastructure (OCI). As an IT consultant, you must configure a Web Application Firewall (WAF) to protect these websites against the attacks. How should you configure your WAF to protect the website against those attacks? (Choose the best answer.)
A. Enable an Access Rule that contains XSS Filters Categories and SQL Filters Categories.
B. Enable a Protection Rule to block the attacks based on HTTP Headers that contain XSS and SQL strings.
C. Enable a Protection Rule that contains XSS Filters Categories and SQL Filters Categories.
D. Enable an Access Rule to block the IP Address range from London.
E. Enable a Protection Rule to block requests that came from London.
You are working as a security consultant with a global insurance organization which is using Microsoft Azure Active Directory (AD) as identity provided to manager user login/passwords. When a user logs in to Oracle Cloud infrastructure (OCI) console, it should get authenticated by Azure AD. Which set of steps are required to configure at OCI side in order to get it enabled?
A. Setup Azure AD as an Enterprise Application, map Azure AD users and groups and policies to OCI groups and users
B. Setup Azure AD as an Identity Provider, Import users and groups from Azure AD to OCI, set up IAM policies to govern access to Azure AD groups
C. Setup Azure AD as an Enterprise Application, configure OCI for single sign-on, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups
D. Setup Azure AD as an Identity Provider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups
You are part of a project team working in the development environment created in OCI. You have realized that the CIDR block specified for one of the subnet in a VCN is not correct and want to delete the subnet. While deleting you are getting an error indicating that there are still resources that you must delete first. The error includes the OCID of the VNIC that is in the subnet. Which of the following action you will take to troubleshoot this issue?
A. Use OCI CLI to call "GetVnic" operation to find out the parent resource of the VNIC
B. Copy and Paste OCID of the VNIC in the search box of the OCI Console to find out the parent resource of the VNIC
C. Use OCI CLI to delete the VNIC first and then delete the subnet
D. Use OCI CLI to delete the subnet using --force option
You want to automate the processing of new image files to generate thumbnails. The expected rate is 10
new files every hour.
Which of the following is the most cost effective option to meet this requirement in Oracle Cloud
Infrastructure (OCI)?
A. Upload all files to an Oracle Streaming Service (OSS) stream. Setup a cron job to invoke a function in Oracle Functions to fetch data from the stream. Invoke another function to process the image files and generate thumbnails. Store thumbnails in another OSS stream.
B. Upload files to an OCI Object storage bucket. Every time a file is uploaded, an event is emitted. Write a rule to filter these events with an action to trigger a function in Oracle Functions. The function processes the image in the file and stores the thumbnails back in an Object storage bucket.
C. Build a web application to ingest the files and save them to a NoSQL Database. Configure OCI Events service to trigger a notification using Oracle Notification Service (ONS). ONS invokes a custom application to process the image files to generate thumbnails. Store thumbnails in a NoSQL Database table.
D. Upload files to an OCI Object storage bucket. Every time a file is uploaded, trigger an event with an action to provision a compute instance with a cloud-init script to access the file, process it and store it back in an Object storage bucket. Terminate the instance using Autoscaling policy after the processing is finished.
You have been asked to implement a bespoke financial application in Oracle Cloud Infrastructure using virtual machine instances controlled by Autoscaling across multiple Availability Domains. The application stores transaction logs, intermediate transaction data, and audit data and needs to store this on a persistent, durable data store accessible from all of the application servers. The application requires the file system to be mounted in the /audit folder on the Linux file system. The system needs to tolerate the failure of two or more Fault Domains and still maintain data integrity. The solution should be as low maintenance as possible. What storage architecture should you suggest?
A. Use locally attached NVMe instances and configure RAID 0 replication between servers.
B. Implement a single instance and install an NFS server, configure and create an NFS share, and mount this as /audit on the application instances.
C. Store the data on Oracle Object Storage mounted at the /audit mount point on all the Linux instances using the default mount options.
D. Use File Storage Service(FSS). Configure FSS to operate from all Availability Domains the application servers operate in and mount the file system in the /audit folder.
You notice that a majority of your Oracle Cloud Infrastructure (OCI) resources like compute instances, block volumes, and load balancers are not tagged. You have received a mandate from your CIO to add a predefined set of tags to identify owners for respective OCI resources. E.g. if Chris and Larry each create compute instances in a compartment, the instances that Chris creates include tags that contain his name as the value, while the instances that Larry creates have his name. Which option is the simplest way to implement this new tagging requirement?
A. Create a default tag for each compartment, which ensure that appropriate tags are applied at the time of resource creation.
B. Create an OCI Identity and Access Management policy requiring users to tag resources with their user name.
C. Create an OCI Identity and Access Management policy to automatically tag a resource with the user name.
D. Create tag variables to automatically tag a resource with the user name.