This page was exported from Valid Premium Exam [ http://premium.validexam.com ] Export date:Fri Sep 20 1:02:51 2024 / +0000 GMT ___________________________________________________ Title: [Feb-2023] Oracle 1z0-1109-22 Official Cert Guide PDF [Q23-Q43] --------------------------------------------------- [Feb-2023] Oracle 1z0-1109-22 Official Cert Guide PDF Exam 1z0-1109-22: Oracle Cloud Infrastructure DevOps Professional - ValidExam Oracle 1z0-1109-22 Exam Syllabus Topics: TopicDetailsTopic 1Create and manage encryption keys and secrets in OCI Vault Track and report events with OCI Events serviceTopic 2Create and manage Artifacts for automated deployment Automate Software Development Life Cycle using OCI DevOps serviceTopic 3Provision, configure and manage infrastructure using code and templates Discuss DevOps solutions and toolsTopic 4Build and deploy microservices using containers and manage using container orchestration engine Explain and implement Microservices ArchitectureTopic 5Monitor and diagnose performance issues with OCI Application Performance Monitoring service Explain the concepts of DevOps measurementTopic 6Create and manage Kubernetes clusters with Oracle Container Engine for Kubernetes (OKE) Provision infrastructure as code with OCI Resource ManagerTopic 7Configure and manage Continuous Integration and Continuous Delivery (CICD) Configure and manage source code in Code RepositoriesTopic 8Monitor metrics with OCI Monitoring service Create and configure Build Pipelines Secure OKE and Functions environmentsTopic 9Create and manage logs with OCI Logging service Create and configure Deployment Pipelines Implement Monitoring and ObservabilityTopic 10Automate infrastructure configuration with OCI Anisble collection Explain the concepts of Infrastructure as codeTopic 11Configure and manage IAM policies and Dynamic Groups for DevOps resources Explain the Configuration Management process   Q23. What is a prerequisite for creating a secret in Oracle Cloud Infrastructure Vault service?  You must create a digest hash of the secret value.  You must unseal the Vault by using Shamir’s secret sharing  You must have a Vault managed key to encrypt the secret.  The user must create a compute instance to run the secret service. Q24. Which TWO components are optional while creating Monitoring Query Language (MQL) expressions in Oracle Cloud Infrastructure Monitoring service? (Choose two.)  Statistic  Dimensions  Interval  Metric  Grouping Function Q25. Your customer has deployed their microservices based application on Oracle Container Engine for Kubernetes (OKE) and they are using Oracle Cloud Infrastructure Registry (OCIR) service as their Docker image repository. They have deployed the OKE cluster using the ‘custom create’ option, and their Virtual Cloud Network (VCN) has three public subnets with associated route tables, security lists, and an internet gateway. They are facing an issue where their application containers are falling to deploy. Upon investigation, they learn that the images are not getting pulled from the designated OCIR repository. The YAML configuration has the correct path to the images. What is a valid concern that needs to be further investigated?  They need to add IAM credentials for each user that deploys applications to the OKE cluster.  The VCN hosting the OKE cluster worker nodes needs to have a NAT gateway to ac-cess OCIR repositories.  They need to add a security list rule for TCP port 22 to connect to the OCIR service.  The OKE cluster needs to have a secret with credentials of their OCIR repository and use that secret in the Kubernetes deployment manifest. Q26. A DevOps Engineer is tasked with providing a solution, which will help in easy management of deployed applications and troubleshoot them on the Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE). What are three actions the DevOps Engineer must perform to accomplish the given task? (Choose three.)  Create a service account and the clusterrolebinding, obtain an authentication token for the service account using kubectl command, and run a kubectl proxy command to enable the kubernetes dashboard  Manually deploy the Kubernetes dashboard on an existing cluster and access it using the URL: dashboard:/proxy/#!/login http://localhost:8001/api/vi/namespaces/kube-system/services/httpsikubernetes.  Automatically deploy the Kubernetes dashboard during cluster creation, create the cluster using the API and set the iskubernetesDashboardEnabled attribute to true and access it using the URL: http://localhost:8001/api/v1/namespaces/kube-dashboard/services/httparkubernetes dashboard:/proxy/’/login  Use the default dashboard that comes configured with the Kubernetes implementation on the Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE).Automatically deploy the Kubernetes dashboard during cluster creation, create the cluster using the API and set the iskubernetesDashboardEnabled attribute to true and access it using the http://localhost:8001/api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/#!/login  Manually deploy the Kubernetes dashboard on an existing cluster and access it using the URL: hs://localhost:8001/api/vi/namespaces/kube-dashboard/services/httparkubernete dashboard:/proxy/#!/login Q27. You are part of the cloud DevOps team managing thousands of compute Instances running in Oracle Cloud Infrastructure (OCI). The OCI Logging service is configured to collect logs from these Instances using a Unified Monitoring Agent. A requirement has been created to archive logging data into OCI Object Storage. What OCI capability can help you achieve this requirement?  Service Connector Hub  IAM policy  ObjectCollectionRule  Logging Query Q28. Which statement is true regarding the Oracle Cloud Infrastructure (OCI) DevOps service?  Users can avoid downtime during deployments and automate the complexity of updating applications.  Users can view limited lifecycle phases as needed to assess application performance.  Users can only store code on public repositories and cannot access internal code reposi-tories.  Users can migrate workloads from on-premises, but not from other cloud platforms. Q29. In the DevOps lifecycle, what is the difference between continuous delivery and continuous deployment?  Continuous delivery requires more automatic linting, while continuous deployment testing must be run manually.  Continuous delivery utilizes automatic deployment to a development environment, while continuous deployment involves automatic deployment to a production environment.  Continuous delivery involves automation of developer tasks, while continuous deploy-ment involves manual operational tasks.  Continuous delivery is a process that initiates deployment manually, while continuous deployment is based on automating the deployment process. Q30. You are a developer and have been asked to develop an e-commerce website for your organi-zation. It must support a variety of clients including desktop browsers, mobile browsers and native mobile applications. Which two approaches can you use to build the application to achieve deployment independence, easier technology upgrades, and resiliency to architecture changes? (Choose two.)  Use monolithic approach to as it makes it easier to incrementally adapt to newer tech-nology.  Use monolithic approach, as it allows you to easily redeploy your applications to perform frequent updates.  Implement each module as an independent service/process which can be replaced, up-dated, or deleted without disrupting the rest of the application:  Build the application as a single unit and use container technology to deploy it.  Use microservices architecture as it eliminates any long term commitment to a tech-nology stack.  Choose monolithic approach over microservices as it has better fault isolation capability. Q31. A company is building an application and the team decides to deploy on Oracle Cloud Infra-structure (OCI) DevOps. They want to automate infrastructure and configure OCI resources. To achieve this, which tool should they use and why?  Ansible – In OCI, the “Ansible Collection” automates infrastructure provisioning and configuring of OCI resources, such as Compute. Load Balancing, and Database services.  Terraform CLI – In OCI, Terraform is a configuration management tool that manages enterprise-scale server infrastructure with minimal human intervention using Infra-structure as Code (laC)  Chef With the OCI DevOps service, users can manage OCI resources using the Chef Knife Plug-in, a CLI tool that provides help with managing repositories and automating infrastructure.  Jenkins-In OCI, Jenkins is an automation tool for configuration management that fo-cuses on automating delivery and management of entire IT infrastructure stacks. Q32. As a developer working on the Oracle Cloud Infrastructure (OCI) DevOps service, you are creating a build spec yaml file to be used in the build pipeline. Which two actions are part of the proper creation of the file? (Choose two.)  Enter the artifacts the build pipeline should permanently save into the storeArtifacts section.  Enter the necessary vault secret variable OCIDS into the vaultVariables section.  Enter the details for binaries used in later pipeline stages into the outputArtifacts sec-tion.  Enter the variables you would like to use in later build steps into the localVariables section.  Enter the vault secrets needed for the deployment pipeline into the exportedVariables section. Q33. Which two statements are INCORRECT with respect to a Dockerfile? (Choose two.)  WORKDIR instruction sets the working directory for any RUN, CMD, ENTRYPOINT instructions and not for COPY and ADD instructions in the Dockerfile.  The RUN instruction will execute any commands in a new layer on top of the current image and commit the results.  The COPY instruction copies new files, directories, or remote file URLS from <src> and adds them to the filesystem of the image at the path <dest>.  If CMD instruction provides default arguments for the ENTRYPOINT instruction, both should be specified in JSON format.  An ENV instruction sets the environment value to the key, and it is available for the subsequent build steps and in the running container as well. The WORKDIR command is used to define the working directory of a Docker container at any given time. The command is specified in the Dockerfile. Any RUN , CMD , ADD , COPY , or EN-TRYPOINT command will be executed in the specified working directory. Reference: https://www.geeksforgeeks.org/difference-between-the-copy-and-add-commands-in-a-dockerfile/Q34. Your company is working on a high-profile project and any code push to production requires approvals. Your company is using Oracle Cloud Infrastructure (OCI) DevOps service for au-tomating this process. You want to push an artifact to production and would like to add ap-provers to the approval workflow in the Deployment Pipeline. How can you add approvers?  Email approvers before you run the Deployment Pipeline.  Manually add approvers names and email addresses in the Deployment Pipeline page.  Add approvers to the buildspec file before pushing the code to the OCI Code Reposi-tory.  Add approvers to the Deployment Pipeline and give them access via OCI IAM policy. Q35. Which is NOT a valid log category for the Oracle Cloud Infrastructure Logging service?  Audit Logs  Custom Logs  Service Logs  Hybrid Logs Q36. What is the correct approach to upgrade an Oracle Container Engine for Kubernetes (OKE) Cluster to a newer version of Kubernetes?  Initiate the control plane and node pool upgrades simultaneously.  Upgrade the node pools one at a time, then once all node pools are upgraded, upgrade the control plane.  Upgrade the control plane, then upgrade the node pools.  Initiate the automated upgrade process using the OCI Console. CLI, or API. Q37. You have been asked to provision a new production environment on Oracle Cloud Infrastruc-ture (OCI). After working with the solution architect you decide that you are going to automate this process. Which OCI service can help automate the provisioning of this new environment?  Oracle Functions  OCI Streaming Service  OCI Resource Manager  Oracle Container Engine for Kubernetes Q38. What are the two items required to create a rule for the Oracle Cloud Infrastructure Events Service? (Choose two.)  Rule Conditions  Install Key  Actions  Service Connector  Management Agent Cloud Service Q39. You as a DevOps Engineer are asked to manage an application to be deployed in Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE). This requires pulling images from Oracle Cloud Infrastructure Registry (OCIR) during deployment. Which three statements are true? (Choose three.)  Add an image section that specifies the name and location of the images you want to pull from OCIR along with other deployment details.  Add an imagePullSecrets section to the manifest file that specifies the name of the Docker secret you created to access OCIR  Use kubectl to create a Docker registry secret.  Add a containers section that specifies the name and location of the images you want to pull from OCIR. along with other deployment details.  Add an Auth section to the manifest file that specifies the name of the Docker secret you create using Auth Token to access OCIR. Q40. What cannot be specified in a Schema Document for Oracle Cloud Infrastructure (OCI) Re-source Manager?  pattern validations for string-type variables  information about the application such as its name, description, and version.  permissions for which OCI users may provision the template  a logo for the Resource Manager template  dependency relationships between variables. Q41. (CHK) You are a security administrator for your company’s Oracle Cloud Infrastructure (OCI) tenancy. Your storage administrator tells you that they cannot associate an encryption key from OCI Vault to an Object Storage bucket in a new compartment, what is the reason?  The storage administrator forgot to select “Oracle Managed” while creating the bucket.  The resource bucket policy lacks the necessary Access Control List (ACL).  There is no Identity and Access Management (IAM) policy allowing the Object Store service to use the Vault key.  The secret for the key was not created beforehand. Q42. A company wants to implement CI/CD automation process on Oracle Cloud Infrastructure (OCI) DevOps. An automatic trigger is created in such a way that when someone pushes the code from a Git repository to the OCI Code Repository, it trigger builds all the way to the de-ployment pipeline. Which DevOps IAM policy statements are required for this automation?  Code Repo: Allow dynamic group <Code Repository> to manage all resources in com-partment compartment name>; Build Pipeline: Allow dynamic-group <BuildPipeline> to manage all-resources in compartment compartment name>  No DevOps IAM policy statements are required.  Build Pipeline: allow dynamic-group <BuildPipeline> to manage all-resources in com-partment <compartment names> Code Repo: Allow dynamic-group <Code Repository> to manage all-resources in com-partment <compartment name>; Build Pipeline: Allow dynamic-group  <BuildPipelines to manage all-resources in Compartment compartment name>; Deployment Pipeline: allow dynamic-group <Deployment Pipeline> to manage all resources in compartment scompartment name>  Loading … Free 1z0-1109-22 Exam Dumps to Improve Exam Score: https://www.validexam.com/1z0-1109-22-latest-dumps.html --------------------------------------------------- Images: https://premium.validexam.com/wp-content/plugins/watu/loading.gif https://premium.validexam.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2023-02-17 14:57:43 Post date GMT: 2023-02-17 14:57:43 Post modified date: 2023-02-17 14:57:43 Post modified date GMT: 2023-02-17 14:57:43