1Z0-1104-22 Online Practice Questions and Answers

What does the following identity policy do?

Allow group my-group to use fn-invocation in compartment ABC where target.function.id = `'

A. Enables users in a group to create, update, and delete ALL applications and functions in a compartment

B. Enables users to invoke all the functions in a specific application

C. Enables users to invoke just one specific function

D. Enables users to invoke all the functions in a compartment except for one specific function

Which type of software do you use to centrally distributeand monitor the patch level of systems throughout the enterprise?

A. Network Monitor software

B. Web Application Firewall

C. Patch Management software

D. Recovery Manager software

Operations team has made a mistake in updating the secret contents and immediately need to resume usingolder secret contents in OCI Secret Management within a Vault. As a Security Administrator, what step should you perform to rollback to last version? Select TWO correct answers.

A. Mark the secret version as 'deprecated'

B. Mark the secret version as'Previous'

C. Mark the secret version as 'Rewind'

D. Upload new secret and mark as 'Pending'. Promote this secret version as 'Current'

A company needs to have somebuckets as public in the compartment. You want Cloud Guard to ignore the problem associated with public bucket. Select TWO correct answers

A. Dismiss the issues associated with these resources

B. Make the bucket private so that Cloud Guard won't detectit

C. Configure Conditional groups for the detector to fix base line

D. First make the bucket private and after few days make the bucket public again

Which statement is true about origin management in WAF?

Statement A: Multiple origins can be defined.

Statement B: Only a single origin can be active fora WAF.

A. Only statement B is true.

B. Both the statements are false.

C. Both the statements are true.

D. Only statement A is true.

Which challenge is generally the first level of bot mitigation, but not sufficient with more advanced bot tools?

A. CAPTCHA challenge

B. JavaScript challenge

C. Device fingerprint challenge

D. Human interaction challenge

As a security administrator, you found out that there are users outside your co network who are accessing OCI Object Storage Bucket. How can you prevent these users from accessing OCI resources in corporate network?

A. Create an 1AM policy and create WAF rules

B. Create an 1AM policy and add a network source

C. Make OCI resources private instead of public

D. Create PAR to restrict access the access

What would you use to make Oracle Cloud Infrastructure Identity and Access Management govern resources in a tenancy?

A. Policies

B. Users

C. Dynamic groups

D. Groups

What is the use case for Oracle cloudinfrastructure logging analytics service?

A. monitors, aggregates, indexes and analyzes all log data from on-premises.

B. labels data packets that pass through the internet gateway

C. automatically create instances to collect logs analysis and send reports

D. automatically and manage any log based on a subscription model

How can you establish private connectivity over two VCN within same OCI region without traversing the traffic over public internet ?

A. NAT Gateway

B. Data Guard

C. Remote VCN Peering

D. Local VCN Peering