1z0-1104-23無料問題集「Oracle Cloud Infrastructure 2023 Security Professional」

質問 1

For how long are API calls audited and available?

（A）30days

（B）365 days

（C）90 days

（D）60 days

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

Your company will transfer a fleet of 12 servers from on-premises to Oracle Cloud Infra-structure (OCI). The fleet will include two webservers. All 12 servers will be in the same sub-net, and share the exact same security permissions, with the only exception being the two web servers. In addition to the same permissions of the other 10 servers, they will have ports 80 and 443 enabled. The security policy must be hardened to ensure that only those two servers have those ports open. What should your configuration actions be for this scenario? (Choose the best Answer.)

（A）Configure a Network Security Group that includes all necessary permissions for all 12 servers Then configure the Security List that grants access to ports 80 and 443. Assign the Security List to the VNICS of the web servers.

（B）Configure a Security List that includes all necessary permissions for all 12 servers. Then configure a Network Security Group that grants access to ports 80 and 443. As-sign the. Network Security Group to the VNICs of the two web servers.

（C）Configure an OCI Load Balancer that has the two web servers as the backend servers with a health check policy that constantly monitors port 80 and port 443.

（D）In the OCI Web Application Firewall, configure a traffic steering policy that grants access to ports 80 and 443 to the two web servers.

正解：B 解答を投票する

質問 3

With regard to WAF in OCI, which of the following statements are NOT customer's responsibility? Select TWO answers.

（A）Import latest OWASP Core Rule Sets

（B）WAF edge nodes with High Availability

（C）Configure Bot Managementstrategies for a website traffic

（D）Configure WAF policies for websites

正解：A、B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Which solution enables you to privately connect two Virtual Cloud Networks (VCNS) across different Oracle Cloud Infrastructure (OCI) regions without routing traffic over the public Internet? (Choose the best Answer.)

（A）Internet Gateway

（B）Service Gateway

（C）Local Peering Gateway

（D）Remote Peering Connection

正解：D 解答を投票する

質問 5

You subscribe to a PaaS service that follows the Shared Responsibility model.
Which type of security is your responsibility?

（A）Infrastructure

（B）Guest OS

（C）Data

（D）Network

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Which securityissues can be identified by Oracle Vulnerability Scanning Service? Select TWO correct answers

（A）SQL Injection

（B）CISpublished Industry-standard benchmarks

（C）Ports that are unintentionally left open can be a potential attack vector for cloud resources

（D）Distributed Denial of Service (DDoS)

正解：B、C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Which of these protects customer data at rest and in transit in a way that allows customers to meet their security and compliance requirements forcryptographic algorithms and key management?

（A）Customer isolation

（B）Security controls

（C）Data encryption

（D）Identity Federation

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Your web application is protected by the Web Application Firewall (WAF) service in Oracle Cloud Infrastructure (OCT). You want to block traffic originating from a country where your company is not allowed to do business. Where would you create a WAF rule to block traffic from a specific country? (Choose the best Answer.)

（A）Bet Management

（B）Cache Rules

（C）Protection Rules

（D）Access Control Rules

（E）Origin Management

正解：D 解答を投票する

質問 9

When creating an OCI Vault, which factors may lead to select the Virtual Private Vault? Select TWO correct answers

（A）Ability to back up the vault

（B）To mask Pll data for non-production environment

（C）Need for more than 9211 key versions

（D）Greater degree of isolation

正解：A、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

How can you restrict access to OCI console from unknown IP addresses?

（A）Make OCI resources private instead of public

（B）Create tenancy's authentication policy and create WAF rules

（C）Create PAR to restrict access the access

（D）Create tenancy's authentication policy and add a network source

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

1z0-1104-23 無料問題集「Oracle Cloud Infrastructure 2023 Security Professional」

弊社を連絡する

関連リンク

トップ試験