You notice that a majority of your Oracle Cloud Infrastructure (OCI) resources like compute instances, block volumes, and load balancers are not tagged. You have received a mandate from your CIO to add a predefined set of tags to identify owners for respective OCI resources. E.g. if Chris and Larry each create compute instances in a compartment, the instances that Chris creates include tags that contain his name as the value, while the instances that Larry creates have his name.
Which option is the simplest way to implement this new tagging requirement?

• A.Create tag variables to automatically tag a resource with the user name.
• B.Create an OCI Identity and Access Management policy to automatically tag a resource with the user name.
• C.Create an OCI Identity and Access Management policy requiring users to tag resources with their user name.
• D.Create a default tag for each compartment, which ensure that appropriate tags are applied at the time of resource creation.

Comment: *

Name: *

Email: *

Verification: *

A cloud consultant is working on a implementation project on Oracle Cloud Infrastructure (OCI). As part of the compliance requirements, the objects placed in OCI Object Storage should be automatically archived first and then deleted. He is testing a lifecycle policy on Object Storage and created a policy as below:

What will happen after this policy is applied?

• A.All the objects having file extension "doc" will be archived for 5 days and will be deleted 10 days after object creation.
• B.All the objects having file extension "doc" will be archived 5 days after object creation.
• C.All objects with names starting with "doc" will be deleted after 5 days of object creation.
• D.All the objects with names starting with "doc" will be archived 5 days after object creation and will be deleted 5 days after archival.

Comment: *

Name: *

Email: *

Verification: *

You are working as a security consultant with a global insurance organization which is using Microsoft Azure Active Directory (AD) as identity provided to manager user login/passwords. When a user logs in to Oracle Cloud infrastructure (OCI) console, it should get authenticated by Azure AD.
Which set of steps are required to configure at OCI side in order to get it enabled

• A.Setup Azure AD as an Enterprise Application, map Azure AD users and groups and policies to OCI groups and users
• B.Setup Azure AD as an Identity Provider, Import users and groups from Azure AD to OCI, set up IAM policies to govern access to Azure AD groups
• C.Setup Azure AD as an Enterprise Application, configure OCI for single sign-on, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups
• D.Setup Azure AD as an Identity Provider, map Azure AD groups to OCI groups, set up the IAM policies to govern access to Azure AD groups

Comment: *

Name: *

Email: *

Verification: *

You are designing the network infrastructure for two application servers: appserver-1 and appserver-2 running in two different subnets inside the same Virtual Cloud Network (VCN) Oracle Cloud Infrastructure (OCI). You have a requirement where your end users will access appserver-1 from the internet and appserver-2 from the on-premises network. The on-premises network is connected to your VCN over a FastConnect virtual circuit.
How should you design your routing configuration to meet these requirements?

• A.Configure a single routing table (Route Table-1) that has two set of rules. One that has route to internet via the internet Gateway and another that propagate specific routes for the on-premise network via the Dynamic Routing Gateway. Associate the routing table with all the VCN subnets.
• B.Configure a single routing table (Routing Table-1) that has two set of rules: one that has route to internet via the Internet Gateway and another that propagates specific routes for the on-premises network via Dynamic Routing Gateway (DRG). Associate the routing table with the VCN.
• C.Configure two routing tables: Route Table-1 that has a route to internet via the Internet gateway. Associate this route table to the subnet containing appserver-1. Route Table-2 that propagate specific routes for the on-premises network via the Dynamic Routing Gateway (DRG) Associate this route table to subnet containing appserver-2.
• D.Configure two routing table (Route table-1 Route Table-2) that have rule to route all traffic via the Dynamic Routing Gateway (DRG) Associate the two routing tables with all the VCN subnets.

Comment: *

Name: *

Email: *

Verification: *

Your security team has informed you that there are a number of malicious requests for your web application coming from a set of IP addresses originating from a country in Europe.
Which of the following methods can be used to mitigate these type of unauthorized requests?

• A.Delete Internet Gateway from Virtual Cloud Network.
• B.Deny rules in Virtual Cloud Network Security Lists for the specific set of IP addresses.
• C.Deny rules in Virtual Cloud Network Security Group for the specific set of IP addresses.
• D.Web Application Firewall policy using access control rules

Comment: *

Name: *

Email: *

Verification: *