New Year Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Activedumpsnet Logo
  1. Home
  2. Oracle
  3. Oracle Cloud Infrastructure
  4. 1z0-1109-23 - Oracle Cloud Infrastructure 2023 DevOps Professional

Oracle 1z0-1109-23 Oracle Cloud Infrastructure 2023 DevOps Professional Exam Practice Test

Page: 1 / 10
Total 100 questions
Get 1z0-1109-23 Full Access Download 1z0-1109-23 PDF

Oracle Cloud Infrastructure 2023 DevOps Professional Questions and Answers

Question 1

A DevOps engineer is asked to access an Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE) cluster to deploy new applications and manage existing ones. Which three statements are true? (Setting Up Cluster Access). (Choose three.)

Options:

A.

When a cluster's Kubernetes API endpoint has a public IP address, you can access the cluster in Cloud Shell by setting up a kubeconfig file

B.

You cannot setup Cloud shell access to the cluster if the clusters Kubernetes API end-point has a private IP address.

C.

Generating an API signing key pair is a mandatory step while setting up cluster access using local machine if the public key is not already uploaded in the console.

D.

To access the cluster using kubectl you have to set up a Kubernetes configuration file for the cluster. The kubeconfig file by default is named config and stored in the $HOME/.kube directory.

E.

To access the cluster using kubectl you have to set up a Kubernetes manifest file for the cluster. The kubeconfig file by default is named config and stored in the $HOME/.manifest directory

Question 2

A developer is managing a collection of servers and wants to update to the newest version of Apache on all of the defined web servers. Which Ansible AdHoc command can you use to achieve this?

Options:

A.

$ ansible webservers -m yum -a "name=httpd state=new"

B.

$ ansible webservers -m service -a "name=httpd state=started"

C.

$ ansible webservers -m yum -a "name=httpd state=latest"

D.

$ ansible webservers -m service -a "name=httpd state=install"

Question 3

While adding variables to your build_spec.yaml file, you made a mistake that resulted in a failed build pipeline. What is the error you could have made?

Options:

A.

Used vaultVariable to hold the content of the vault secrets in OCID format

B.

Defined variables as exportedVariables to make them available in subsequent stages of the same pipeline

C.

Defined parameters such as the $ (VARIABLE_NAME) file and later assigned their values in the Parameters tab of the build pipeline

D.

Defined a field such as type: DOCKER IMAGE in the outputArtifacts: section to specify the docker image produced by the Build stage

Question 4

You're working with Docker images and containers, and you need to get rid of an image that's no longer needed. However, when you use the command to remove the image, you get the following error: # docker rmi d1230455e12 Error response from daemon: conflict: un-able to delete d1230455e12 must be forced image is being used by stopped container of1262bd1285 Which steps would you take to delete the specified image?

Options:

A.

To determine which container is using the image, use the “docker ps -a” command. Stop the running container with 'docker stop 0f1262bd1285', delete it with 'docker rm of1262bd1285', and delete the docker image with 'docker rmi d123f4e55e12'.

B.

To determine which container is using the image, use the “docker ps a” command Kill the running container with 'docker Kill of 1262bd1205, delete it with 'docker rmc 0r1262bd1285', and delete the docker image with 'docker mi d123f4e55e12'.

C.

To determine which container is using the image, use the “docker ps -a” command. Stop the running container with the command 'docker stop d123f4e55e12', delete it with 'docker rm Of1262bd1285', and delete the docker image with the command 'dock-er rmi 0f1262bd1285'.

D.

To determine which container is using the image, use the “docker ps -a” command. To delete the container, use the 'docker rm 011262bd1285' command and to delete the docker image, use the 'docker rmi d12314e55e12' command.

Question 5

As a DevOps engineer working on containerizing a microservices-based application to be hosted on OCI Cloud platforms, which step can help ensure that the container images have not been modified after being pushed to OCI Registry?

Options:

A.

Deploying a manifest to the Kubernetes cluster that references the container image and its unique hash

B.

Signing the image using the Container Registry CLI and creating an image signature that associates the image with the master encryption key and key version in the Vault service

C.

Scanning the image upon ingestion and comparing the image size for changes

D.

Enabling scanning of container images stored in OCI Registry

Question 6

You need to create a secret in Oracle Cloud Infrastructure in vault service. Which of the fol-lowing is a prerequisite? (Choose the best answer.)

Options:

A.

Vault managed key to encrypt the secret

B.

You need to unlock the vault using AES secret sharing.

C.

To create hash digest, secret value is required

D.

The user need to create OCI object storage to run secret service

Question 7

A fresher joined a company who made a mistake while ding yaria: to build_spec.yaml file. As a consequence, build pipelines started failing. What is the root cause for this error commited by the fresher? (Choose the best answer.)

Options:

A.

No errors. False alarm by OCI monitoring service

B.

Corrupt build_spec.yaml

C.

Multiple comment line in build_spec.yaml file

D.

Expected ion-exported variable of a build to be persistent throughout multiple pipeline

Question 8

You are a DevOps engineer who has recently joined a new department. You have created 10 Terraform stacks using Oracle Cloud Infrastructure (OCI) Resource Manager. Each stack creates a different set of resources in OCI for your development team. What determines the cost of these Terraform stacks?

Options:

A.

Resource Manager stacks are free but you are charged for the resources they create.

B.

The cost depends on the number of lines of text in your Terraform configuration files.

C.

The cost for each stack will be higher for a Pay As You Go subscription than for monthly flex billing.

D.

The cost depends on the length of time it takes to build each resource using these Terraform stacks.

Question 9

How can customers rotate their master encryption keys in the Oracle Cloud Infra-structure (OCI) Vault service?

Options:

A.

Customers can rotate their keys every 30 days. They may enter a service request (SR) to request a rotation sooner than 30 days since the last rotation.

B.

If you import your own key, you cannot rotate the key. You will have to import a new key to rotate.

C.

Customers can rotate their keys by creating a new Key Version.

D.

Customers can only have OCI rotate their keys once a year.

Question 10

Which two are prerequisites for creating a secret in Oracle Cloud Infrastructure Vault service?

Options:

A.

The user must create a compute instance to run the secret service.

B.

You must have a Vault managed key to encrypt the secret.

C.

You must have the required permissions to create and manage secrets in the Vault service.

D.

You must first create a hash digest of the secret value.

E.

You must have an auth token to encrypt the secret.

Question 11

As a DevOps engineer working on managing clusters on the OCI platform for your organization, which statement is true about managing cluster add-ons in OCI OKE Cluster?

Options:

A.

When you disable a cluster add-on using the console, the add-on is completely removed from the cluster

B.

When creating a new cluster, essential cluster add-ons cannot be disabled.

C.

When creating a new cluster, essential cluster add-ons are set to manually update.

D.

When enabling a cluster add-on, you cannot configure the add-on by specifying one or more key/value pairs to pass as arguments to the cluster add-on.

Question 12

Which is a proper rule to follow when creating container repositories inside the Oracle Cloud Infrastructure (OCI) Registry?

Options:

A.

When naming a container repository, you may use capital letters but not hyphens. For example, you may use BGdevops-storefront, but not bgdevops/storefront.

B.

When creating a container repository, check the Immutable Artifacts box, as it keeps other developers from altering the files.

C.

You must use a separate container repository for each image, but multiple versions of that image can be in a single repository.

D.

You must use the OCI DevOps Managed Build stage to define artifacts in the artifact and container repositories and map the build pipeline outputs to them.

Question 13

You are a DevOps engineer responsible for managing the deployment pipeline of your organization's application hosted on Oracle Cloud Infrastructure (OCI). The pipeline is failing, and you need to troubleshoot the issue to identify the potential cause and fix it. You need the following information to investigate further: - Time spent for each deployment. - Number of times a deployment has failed. Which OCI service can provide you with the necessary information to identify the potential issue and help in debugging the same?

Options:

A.

OCI Monitoring service

B.

OCI DevOps Agent

C.

OCI Logging service

D.

OCI Event service

Question 14

You have been asked to provision a new production environment on Oracle Cloud Infra-structure (OCI). After working with the solution architect you decide that you are going to automate this process. Which OCI service can help automate the provisioning of this new environment?

Options:

A.

OCI Streaming Service

B.

Oracle Functions

C.

OCI Resource Manager

D.

Oracle Container Engine for Kubernetes

Question 15

Your organization needs to design and develop a containerized application that requires a connection to an Oracle Autonomous Transaction Processing (ATP) Database. As a DevOps engineer, you have decided to use Oracle Container Engine for Kubernetes (OKE) for the container app deployment and you need to consider options for connecting to ATP. Which connection option is NOT valid?

Options:

A.

Enable Oracle REST Data Services for the required schemas and connect via HTTPS.

B.

Create a Kubernetes secret with contents from the ATP instance Wallet files. Use this secret to create a volume mounted to the appropriate path in the application deployment manifest.

C.

Install the OCI Service Broker on the Kubernetes cluster and deploy serviceinstance and ServiceBinding resources for ATP. Then use the specified binding name as a volume in the application deployment manifest.

D.

Use Kubernetes secrets to configure environment variables on the container with ATP instance OCID and OCI API credentials. Then use the CreateConnection API endpoint from the service runtime.

Question 16

You are processing business transactions within applications deployed to Oracle Container Engine for Kubernetes (OKE). As each batch of 1000 transactions are processed, a status file is created and uploaded to an Oracle Cloud Infrastructure (OCI) Object Storage buck-et. Each time a new file is created, you need to send an email to the customer to indicate final processing status. The solution should require the least amount of development effort, while still providing for a best effort guaranteed delivery. Which approach should be used to trigger these emails?

Options:

A.

Define and schedule a Cron job that monies the bucket, then sends an email when a new file is found.

B.

Deploy an Oracle Function that checks the bucket every 60 seconds, then sends an email when a new file is found.

C.

Create a rule in the OCI Events service that sends the bucket event to an OCI Notifications service topic configured with an email subscriber.

D.

Create an alert in the OCI Monitoring service that triggers an email when the monitored bucket is updated.

Question 17

How do OCI DevOps deployment pipelines reduce risk and complexity of production applications?

Options:

A.

By eliminating downtime of production applications

B.

By reducing change-driven errors introduced by manual deployments

C.

By working with existing Git repositories and Cl systems

D.

By scaling builds with service-managed build runners

Question 18

A company uses OCI logging service to collect logs. You need to move the archive log data to OCI Object storage. Which OCI feature should you use to achieve the goal? (Choose two.)

Options:

A.

Oracle Digital Assistant

B.

Service connector hub

C.

Compartments

D.

IAM policy

Question 19

Your company is working on a high-profile project and any code push to production requires approvals. Your company is using Oracle Cloud Infrastructure (OCI) DevOps service for automating this process. You want to push an artifact to production and would like to add ap-provers to the approval workflow in the Deployment Pipeline. How can you add approvers?

Options:

A.

Manually add approvers names and email addresses in the Deployment Pipeline page.

B.

Add approvers to the buildspec file before pushing the code to the OCI Code Repository.

C.

Email approvers before you run the Deployment Pipeline.

D.

Add approvers to the Deployment Pipeline and give them access via OCI IAM policy.

Question 20

Your application development team has an existing GitHub repository for their code. Your application development team has an existing GitHub repository for their code. You would like to mirror it on Oracle Cloud Infrastructure (OCI) in order to deploy an application to an Oracle Container Engine for Kubernetes (OKE) environment using the OCI DevOps service. Which action can be done AFTER you trigger a Build Pipeline?

Options:

A.

Configure an OCI compartment for storing DevOps resources

B.

Create a reference to a secret in the OCI Vault

C.

Configure the SSH file so that their SSH key is used when connecting to OCI Code Repositories

D.

Set up a Kubernetes cluster as an environment for deployment

Question 21

You are a DevOps project administrator. You are creating Oracle Cloud Infrastruc-ture (OCI) Identity and Access Management (IAM) policies that will be used in a DevOps CI/CD pipeline for deployment to an Oracle Container Engine for Kubernetes (OKE) environment. Which OCI IAM policy can be used?

Options:

A.

Allow group to manage devops-family in compartment

B.

Allow group to manage all-resources in compartment

C.

Allow dynamic-group to manage devops-family in compartment

D.

Allow dynamic-group

Question 22

As a DevOps engineer, you are tasked with patching a server application running on 100 web Servers. How can Ansible help you accomplish this task and which Ansible element should you leverage?

Options:

A.

A playbook could be leveraged to perform ad hoc commands per server. Then, Ansible will automatically communicate with the servers and execute the ad hoc commands in the order defined.

B.

A playbook could be leveraged to explain the series of plays and tasks that need to be run per server. Then, Ansible would connect with and configure each server's infra-structure automatically using YAML.

C.

A playbook could be leveraged and executed against the group of web servers, as de-fined in the task list. Then, Ansible would connect to each server and apply the same set of commands.

D.

A playbook could be leveraged and executed against the group of web servers, as de-fined in the inventory. Then, Ansible would connect to each soever and apply the same set of configurations.

Question 23

Which TWO components are optional while creating Monitoring Query Language (MQL) expressions in Oracle Cloud Infrastructure Monitoring service? (Choose two.)

Options:

A.

Dimensions

B.

Metric

C.

Grouping Function

D.

Statistic

E.

Interval

Question 24

What is the correct approach to upgrade an Oracle Container Engine for Kubernetes (OKE) Cluster to a newer version of Kubernetes?

Options:

A.

Initiate the automated upgrade process using the OCI Console. CLI, or API.

B.

Upgrade the node pools one at a time, then once all node pools are upgraded, upgrade the control plane.

C.

Initiate the control plane and node pool upgrades simultaneously.

D.

Upgrade the control plane, then upgrade the node pools.

Question 25

You host your application on a stack in Oracle Cloud Infrastructure (OCI) Resource Manager. Due to recent growth in your user base, you decide to add a CIDR block to your VCN, add a subnet, and provision a compute instance in it. Which statement is true?

Options:

A.

You need to provision a new stack because Terraform uses immutable infrastructure.

B.

You can provision the new resources in the OCI console and add them to the stack with Drift Detection.

C.

You cannot provision the new resources in the OCI console first, then later add them to the Terraform configuration and state.

D.

You can make the changes to the Terraform code, run an Apply job, and Resource Manager will provision the new resources.

Question 26

How does the Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE) Cluster Autoscaler determine when to create new nodes for an OKE cluster?

Options:

A.

When the resource requests from pods exceed a configured threshold.

B.

When the rate of requests to the application crosses a configured threshold.

C.

When the custom metrics from the services exceed a configured threshold.

D.

When the CPU or memory utilization crosses a configured threshold.

Question 27

A developer is using the Oracle Cloud Infrastructure (OCI) DevOps service to build an application. They are currently in the process of setting up the required infrastructure using the available tools. In which two ways can you explain the difference between Ansible and Terraform? (Choose two.)

Options:

A.

Ansible uses declarative approach: Terraform is procedural in nature.

B.

Ansible is an OCI provided service for CM; Terraform is a third-party tool for infra-structure as code.

C.

Ansible focuses on infrastructure configuration: Terraform specializes in infrastructure provisioning

D.

Ansible supports lifecycle management: Terraform lacks lifecycle management support.

E.

Ansible automates software installation and application deployment: Terraform man-ages infrastructure as code.

Question 28

Your customer has deployed their microservices based application on Oracle Container Engine for Kubernetes (OKE) and they are using Oracle Cloud Infrastructure Registry (OCIR) service as their Docker image repository. They have deployed the OKE cluster using the 'custom create' option, and their Virtual Cloud Network (VCN) has three public subnets with associated route tables, security lists, and an internet gateway. They are facing an issue where their application containers are falling to deploy. Upon investigation, they learn that the images are not getting pulled from the designated OCIR repository. The YAML configuration has the correct path to the images. What is a valid concern that needs to be further investigated?

Options:

A.

The OKE cluster needs to have a secret with credentials of their OCIR repository and use that secret in the Kubernetes deployment manifest.

B.

They need to add IAM credentials for each user that deploys applications to the OKE cluster.

C.

The VCN hosting the OKE cluster worker nodes needs to have a NAT gateway to access OCIR repositories.

D.

They need to add a security list rule for TCP port 22 to connect to the OCIR service.

Question 29

What is the DevOps lifecycle, and how does it help businesses succeed?

Options:

A.

It is a system of software coding and automation that involves multiple phases and re-leases to aid in release management and issue resolution.

B.

It is a non-cyclical development process that involves heightened collaboration, culture, and communication to ensure on-time delivery.

C.

It is a multi-phased development cycle that focuses on rapid-release and continuous de-livery to unity team infrastructure and maximize the quality of software.

D.

It is an agile process for software development that implements staggered-release and human intervention to improve release and deployment frequency.

Question 30

A software development team is working on a prototype using Node.js and MongoDB as their programming language and database, respectively. They need to develop and test isolated web applications or RESTful APIs. They are looking for a simple, quick, and secure way to run containers without managing any servers. Which OCI service is best suited for this use case?

Options:

A.

Compute Instances

B.

OCI DevOps Project

C.

Container Engine for Kubernetes

D.

Container Instances

E.

OCI Functions

Load More 1z0-1109-23 Questions 
Page: 1 / 10
Total 100 questions
Get 1z0-1109-23 Full Access Download 1z0-1109-23 PDF