Valentine Day Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

1z0-1109-23 Exam Dumps - Oracle Cloud Infrastructure 2023 DevOps Professional

Question # 4

As a DevOps engineer working on managing clusters on the OCI platform for your organization, which statement is true about managing cluster add-ons in OCI OKE Cluster?

A.

When you disable a cluster add-on using the console, the add-on is completely removed from the cluster

B.

When creating a new cluster, essential cluster add-ons cannot be disabled.

C.

When creating a new cluster, essential cluster add-ons are set to manually update.

D.

When enabling a cluster add-on, you cannot configure the add-on by specifying one or more key/value pairs to pass as arguments to the cluster add-on.

Full Access
Question # 5

As a DevOps engineer, you are tasked with patching a server application running on 100 web Servers. How can Ansible help you accomplish this task and which Ansible element should you leverage?

A.

A playbook could be leveraged to perform ad hoc commands per server. Then, Ansible will automatically communicate with the servers and execute the ad hoc commands in the order defined.

B.

A playbook could be leveraged to explain the series of plays and tasks that need to be run per server. Then, Ansible would connect with and configure each server's infra-structure automatically using YAML.

C.

A playbook could be leveraged and executed against the group of web servers, as de-fined in the task list. Then, Ansible would connect to each server and apply the same set of commands.

D.

A playbook could be leveraged and executed against the group of web servers, as de-fined in the inventory. Then, Ansible would connect to each soever and apply the same set of configurations.

Full Access
Question # 6

A software development team is working on a prototype using Node.js and MongoDB as their programming language and database, respectively. They need to develop and test isolated web applications or RESTful APIs. They are looking for a simple, quick, and secure way to run containers without managing any servers. Which OCI service is best suited for this use case?

A.

Compute Instances

B.

OCI DevOps Project

C.

Container Engine for Kubernetes

D.

Container Instances

E.

OCI Functions

Full Access
Question # 7

Pods running in your Oracle Container Engine for Kubernetes (OKE) cluster often need to communicate with other pods in the cluster or with services outside the cluster. As the OKE cluster administrator, you have been tasked with configuring permissions to restrict pod-to-pod communications except as explicitly allowed. Where can you define these permissions?

A.

Security Lists

B.

RBAC Roles

C.

Network Policies

D.

IAM Policies

Full Access
Question # 8

You are part of the cloud DevOps team managing thousands of compute Instances running in Oracle Cloud Infrastructure (OCI). The OCI Logging service is configured to collect logs from these Instances using a Unified Monitoring Agent. A requirement has been created to archive logging data into OCI Object Storage. What OCI capability can help you achieve this requirement?

A.

IAM policy

B.

Logging Query

C.

Service Connector Hub

D.

ObjectCollectionRule

Full Access
Question # 9

Your customer has deployed their microservices based application on Oracle Container Engine for Kubernetes (OKE) and they are using Oracle Cloud Infrastructure Registry (OCIR) service as their Docker image repository. They have deployed the OKE cluster using the 'custom create' option, and their Virtual Cloud Network (VCN) has three public subnets with associated route tables, security lists, and an internet gateway. They are facing an issue where their application containers are falling to deploy. Upon investigation, they learn that the images are not getting pulled from the designated OCIR repository. The YAML configuration has the correct path to the images. What is a valid concern that needs to be further investigated?

A.

The OKE cluster needs to have a secret with credentials of their OCIR repository and use that secret in the Kubernetes deployment manifest.

B.

They need to add IAM credentials for each user that deploys applications to the OKE cluster.

C.

The VCN hosting the OKE cluster worker nodes needs to have a NAT gateway to access OCIR repositories.

D.

They need to add a security list rule for TCP port 22 to connect to the OCIR service.

Full Access
Question # 10

Your company is working on a high-profile project and any code push to production requires approvals. Your company is using Oracle Cloud Infrastructure (OCI) DevOps service for automating this process. You want to push an artifact to production and would like to add ap-provers to the approval workflow in the Deployment Pipeline. How can you add approvers?

A.

Manually add approvers names and email addresses in the Deployment Pipeline page.

B.

Add approvers to the buildspec file before pushing the code to the OCI Code Repository.

C.

Email approvers before you run the Deployment Pipeline.

D.

Add approvers to the Deployment Pipeline and give them access via OCI IAM policy.

Full Access
Question # 11

A fresher joined a company who made a mistake while ding yaria: to build_spec.yaml file. As a consequence, build pipelines started failing. What is the root cause for this error commited by the fresher? (Choose the best answer.)

A.

No errors. False alarm by OCI monitoring service

B.

Corrupt build_spec.yaml

C.

Multiple comment line in build_spec.yaml file

D.

Expected ion-exported variable of a build to be persistent throughout multiple pipeline

Full Access
Question # 12

As a DevOps Engineer you are tasked with securely storing and versioning your application and automatically build, test, and deploy your application to Oracle Cloud Infrastructure (OCl) are told to automate manual tasks and help software teams in managing complex environment. Which three OCI Services can you choose to accomplish these tasks?

A.

DevOps

B.

Resource Manager

C.

Oracle Cloud Infrastructure Registry

D.

Container Engine for Kubernetes

E.

Oracle APEX Application Development

F.

Oracle Cloud Logging Analytics

Full Access
Question # 13

As an engineer working on containerizing your application on the OCI platform, which two statements are true about OCI container instances?

A.

The amount of time the container instance waits for the OS to shut down before power-ing off is managed internally.

B.

The image source for a container instance can only be selected from Oracle Cloud Infrastructure Registry (also known as Container Registry), which is an Oracle-managed registry that enables you to store, share, and manage container images.

C.

While configuring container instances, you can set the environmental variables used by the container.

D.

You can configure the number of resources that the container consumes in absolutes or percentages.

E.

By default, the container can use only 50% of resources in the container instance.

Full Access
Question # 14

(OPT_MISS) You have just run the managed build stage of an Oracle Cloud Infrastructure (OCI) DevOps Build Pipeline. The pipeline failed, because the code repository could not be accessed. What might the problem be?

A.

A vault secret has an incorrect OCID assigned to it.

B.

A deployment Dynamic Group was assigned an incorrect OCID for its compartment.

C.

An administrator created the code repository policy in the parent compartment rather than the main working compartment.

D.

More than one code repository was assigned to the DevOps project

Full Access
Question # 15

An e-commerce company migrated from on-premises to OCI and want to leverage OCI DevOps service in a project. The company also wants to include Kubernetes cluster in the deployment architecture. Which TWO tools should you use? (Choose two.)

A.

Ansible Collection

B.

Compute Jenkins Plug-in

C.

Terraform Provider

D.

Chef Knife Plug-in ie

Full Access
Question # 16

You host your application on a stack in Oracle Cloud Infrastructure (OCI) Resource Manager. Due to recent growth in your user base, you decide to add a CIDR block to your VCN, add a subnet, and provision a compute instance in it. Which statement is true?

A.

You need to provision a new stack because Terraform uses immutable infrastructure.

B.

You can provision the new resources in the OCI console and add them to the stack with Drift Detection.

C.

You cannot provision the new resources in the OCI console first, then later add them to the Terraform configuration and state.

D.

You can make the changes to the Terraform code, run an Apply job, and Resource Manager will provision the new resources.

Full Access
Question # 17

Which two statements are INCORRECT with respect to a Dockerfile? (Choose two.)

A.

An ENV instruction sets the environment value to the key, and it is available for the subsequent build steps and in the running container as well.

B.

The RUN instruction will execute any commands in a new layer on top of the current image and commit the results.

C.

WORKDIR instruction sets the working directory for any RUN, CMD, ENTRY-POINT instructions and not for COPY and ADD instructions in the Dockerfile.

D.

If CMD instruction provides default arguments for the ENTRYPOINT instruction, both should be specified in JSON format.

E.

The COPY instruction copies new files, directories, or remote file URLS from and adds them to the filesystem of the image at the path .

Full Access
Question # 18

A DevOps team has 50 web servers under their preview and they want to patch a server application. Which element of Ansible can be leveraged for this task and how would it help?

A.

A playbook could be leveraged and executed against the group of web servers, as de-fined in the Inventory. Then, Ansible would connect to each server and apply the same set of configurations.

B.

A playbook could be leveraged to explain the series of plays and tasks that need to be run per server. Then, Ansible would connect with and configure each server's infra-structure automatically using YAML.

C.

A playbook could be leveraged and executed against the group of web servers, as de-fined in the task list. Then. Ansible would connect to each server and apply the same set of commands.

D.

A playbook could be leveraged to perform ad hoc commands per server. Then. Ansible will automatically communicate with the servers and execute the ad hoc commands in the order defined.

Full Access
Question # 19

A company uses OCI logging service to collect logs. You need to move the archive log data to OCI Object storage. Which OCI feature should you use to achieve the goal? (Choose two.)

A.

Oracle Digital Assistant

B.

Service connector hub

C.

Compartments

D.

IAM policy

Full Access
Question # 20

Which two are prerequisites for creating a secret in Oracle Cloud Infrastructure Vault service?

A.

The user must create a compute instance to run the secret service.

B.

You must have a Vault managed key to encrypt the secret.

C.

You must have the required permissions to create and manage secrets in the Vault service.

D.

You must first create a hash digest of the secret value.

E.

You must have an auth token to encrypt the secret.

Full Access
Question # 21

You are a DevOps engineer who has recently joined a new department. You have created 10 Terraform stacks using Oracle Cloud Infrastructure (OCI) Resource Manager. Each stack creates a different set of resources in OCI for your development team. What determines the cost of these Terraform stacks?

A.

Resource Manager stacks are free but you are charged for the resources they create.

B.

The cost depends on the number of lines of text in your Terraform configuration files.

C.

The cost for each stack will be higher for a Pay As You Go subscription than for monthly flex billing.

D.

The cost depends on the length of time it takes to build each resource using these Terraform stacks.

Full Access
Question # 22

Your organization needs to design and develop a containerized application that requires a connection to an Oracle Autonomous Transaction Processing (ATP) Database. As a DevOps engineer, you have decided to use Oracle Container Engine for Kubernetes (OKE) for the container app deployment and you need to consider options for connecting to ATP. Which connection option is NOT valid?

A.

Enable Oracle REST Data Services for the required schemas and connect via HTTPS.

B.

Create a Kubernetes secret with contents from the ATP instance Wallet files. Use this secret to create a volume mounted to the appropriate path in the application deployment manifest.

C.

Install the OCI Service Broker on the Kubernetes cluster and deploy serviceinstance and ServiceBinding resources for ATP. Then use the specified binding name as a volume in the application deployment manifest.

D.

Use Kubernetes secrets to configure environment variables on the container with ATP instance OCID and OCI API credentials. Then use the CreateConnection API endpoint from the service runtime.

Full Access
Question # 23

Which is NOT a valid log category for the Oracle Cloud Infrastructure Logging service?

A.

Custom Logs

B.

Hybrid Logs

C.

Audit Logs

D.

Service Logs

Full Access
Question # 24

A company is having trouble keeping up with competitors and wants to know more about DevOps solutions. What does Oracle Cloud Infrastructure (OCI) DevOps do that can help?

A.

OCI DevOps helps with security issues and ensures integrated security through auto-mated Jira notifications.

B.

OCI DevOps assists with high failure rate and outages through Anomaly Detection. Monitoring Services and Cloud Analytics

C.

OCI DevOps helps with deployment delays by ensuring rapid and continuous integration and delivery through CI/CD pipelines:

D.

OCI DevOps helps with erratic code issues by ensuring speedy code execution through shared repos and tight operational feedback loops

Full Access
Question # 25

A company is building an application and the team decides to deploy on Oracle Cloud Infra-structure (OCI) DevOps. They want to automate infrastructure and configure OCI resources. To achieve this, which tool should they use and why?

A.

Chef With the OCI DevOps service, users can manage OCI resources using the Chef Knife Plug-in, a CLI tool that provides help with managing repositories and automating infrastructure.

B.

Jenkins-In OCI, Jenkins is an automation tool for configuration management that focuses on automating delivery and management of entire IT infrastructure stacks.

C.

Ansible - In OCI, the "Ansible Collection" automates infrastructure provisioning and configuring of OCI resources, such as Compute. Load Balancing, and Database services.

D.

Terraform CLI - In OCI, Terraform is a configuration management tool that manages enterprise-scale server infrastructure with minimal human intervention using Infra-structure as Code (laC)

Full Access
Question # 26

A startup company wants to use DevOps tools and processes for fast releases in a project. What are the TWO offerings which DevOps tool can provide? (Choose two.)

A.

Integrates between development and IT teams to achieve automation

B.

Speeds up production consistency and speed by automating SDLC

C.

Helps cloud admins with reportings and track metrics

D.

Helps in security patching to ensure data security and saves time

Full Access
Question # 27

In OCI Secret management within a Vault, you have created a secret and rotated the secret one time. The current version state shows: Version Number Status 2 (latest) Current 1 Previous In order to rollback to version 1, what should the Administrator do?

A.

Create a new secret version 3 Pending Copy the contents of Version 1 Into version 3.

B.

From the version menu, select "Promote to current.

(Correct)

C.

From the version 2 latest menu, sect Road and select version when given the option.

D.

deprecate version 2 (latest), Create a new secret version 3, create soft link for version-3 to version 1.

Full Access
Question # 28

As an engineer building and deploying applications using an OCI DevOps project, which two capabilities can help ensure the security and reliability of the code in the build and deployment pipelines?

A.

Using third-party tools like Sonatype, SonarQube, or OverOps to analyze code for security defects or bugs in code quality.

B.

Pushing our container image to a third-party registry with the scanning capability enabled to check for vulnerabilities

C.

Using ADM to identify security weaknesses in software applications by checking their dependencies.

D.

Using JIRA to track user stories and bug fixes in the development process.

E.

Using version control tools like Git or SVN to track and manage changes in the code-base.

Full Access
Question # 29

How do OCI DevOps deployment pipelines reduce risk and complexity of production applications?

A.

By eliminating downtime of production applications

B.

By reducing change-driven errors introduced by manual deployments

C.

By working with existing Git repositories and Cl systems

D.

By scaling builds with service-managed build runners

Full Access
Question # 30

A developer is using the Oracle Cloud Infrastructure (OCI) DevOps service to build an application. They are currently in the process of setting up the required infrastructure using the available tools. In which two ways can you explain the difference between Ansible and Terraform? (Choose two.)

A.

Ansible uses declarative approach: Terraform is procedural in nature.

B.

Ansible is an OCI provided service for CM; Terraform is a third-party tool for infra-structure as code.

C.

Ansible focuses on infrastructure configuration: Terraform specializes in infrastructure provisioning

D.

Ansible supports lifecycle management: Terraform lacks lifecycle management support.

E.

Ansible automates software installation and application deployment: Terraform man-ages infrastructure as code.

Full Access