Exclusive Discount Offer for Limited Time | 50% OFF - Ends In 0d 00h 00m 00s Coupon code: SAVE50

Master Oracle 1Z0-1104-25 Exam with Reliable Practice Questions

Page: 1 out of Viewing questions 1-5 out of 36 questions
Last exam update: Sep 07,2025
Upgrade to Premium
Question 1

SIMULATION

Challenge 2 -Task 1

In deploying a new application, a cloud customer needs to reflect different security postures. If a security zone is enabled with the Maximum Security Zone recipe, the customer will be unable to create or update a resource in the security zone if the action violates the attached Maximum Security Zone policy.

As an application requirement, the customer requires a compute instance in the public subnet. You therefore, need to configure Custom Security Zones that allow the creation of compute instances in the public subnet.

Review the architecture diagram, which outlines the resoures you'll need to address the requirement:

Preconfigured

To complete this requirement, you are provided with the following:

Access to an OCI tenancy, an assigned compartment, and OCI credentials

Required IAM policies

Task3: Create and configure a Virtual Cloud Network and Private Subnet

Create and configure virtual cloud Network (VCN) named IAD SP-PBT-VCN-01, with an internet Gateway and configure appropriate route rules to allow external connectivity.

Enter the OCID of the created VCN in the text box below.


Correct : A

To create and configure a Virtual Cloud Network (VCN) named IAD-SP-PBT-VCN-01 with an Internet Gateway and appropriate route rules for external connectivity, follow these steps based on the Oracle Cloud Infrastructure (OCI) Networking documentation.

Step-by-Step Solution for Task 3: Create and Configure a VCN and Private Subnet

Log in to the OCI Console:

Use your OCI credentials to log in to the OCI Console (https://console.us-ashburn-1.oraclecloud.com).

Ensure you have access to the assigned compartment.

Navigate to Virtual Cloud Networks:

From the OCI Console, click the navigation menu (hamburger icon) on the top left.

Under Networking, select Virtual Cloud Networks.

Create a New VCN:

Click Start VCN Wizard and select Create VCN with Internet Connectivity.

VCN Name: Enter IAD-SP-PBT-VCN-01.

Compartment: Select the assigned compartment.

VCN CIDR Block: Enter 10.0.0.0/16 (matches the diagram's VCN CIDR).

Public Subnet CIDR Block: Enter 10.0.10.0/24 (matches the diagram's public subnet).

Accept the default settings for the public subnet and Internet Gateway creation.

Click Create to provision the VCN, Internet Gateway, and public subnet.

Verify the Internet Gateway:

After creation, go to the VCN details page for IAD-SP-PBT-VCN-01.

Under Resources, select Internet Gateways.

Ensure the Internet Gateway is attached and enabled.

Configure Route Rules:

In the VCN details page, under Resources, select Route Tables.

Select the default route table associated with the public subnet (10.0.10.0/24).

Click Add Route Rules.

Target Type: Select Internet Gateway.

Destination CIDR Block: Enter 0.0.0.0/0.

Target Internet Gateway: Select the Internet Gateway created with the VCN.

Click Add Route Rule to save.

Update Security List (if needed):

Under Resources, select Security Lists.

Edit the default security list for the public subnet.

Add an ingress rule:

Source CIDR: 0.0.0.0/0

IP Protocol: TCP

Source Port Range: All

Destination Port Range: 22 (for SSH) or as required by your application.

Add an egress rule:

Destination CIDR: 0.0.0.0/0

IP Protocol: All

Save the changes.

Note the VCN OCID:

Return to the VCN details page for IAD-SP-PBT-VCN-01.

Copy the OCID displayed (e.g., ocid1.vcn.oc1..<unique_string>).

OCID of the Created VCN

Enter the OCID of the created VCN (IAD-SP-PBT-VCN-01) into the text box. The exact OCID will be available after Step 3 (e.g., ocid1.vcn.oc1..<unique_string>).


Options Selected by Other Users:
Mark Question:

Start a Discussions

Submit Your Answer:
0 / 1500
Question 2

"You are designing a secure access strategy for compute instances deployed within a private subnet of an OCI Virtual Cloud Network (VCN). Your security policy requires that no compute instances in the private subnet should have direct Internet access, and administrative access should be controlled.

Which statement best describes the role of an OCI Bastion in securing access to these private compute instances?


Correct : D


Options Selected by Other Users:
Mark Question:

Start a Discussions

Submit Your Answer:
0 / 1500
Question 3

An E-commerce company running on Oracle Cloud Infrastructure (OCI) wants to prevent accidental misconfigurations that could expose sensitive data. They need an OCI service that can enforce predefined security rules when creating or modifying cloud resources.

Which OCI service should they use?


Correct : C


Options Selected by Other Users:
Mark Question:

Start a Discussions

Submit Your Answer:
0 / 1500
Question 4

You are the first responder of a security incident for ABC Org. You have identified several IP addresses and URLs in the logs that you suspect may be related to the incident. However, you need more information to confidently determine whether they are indeed malicious or not.

Which OCI service can you use to obtain a more refined information and confidence score for these identified indicators?


Correct : B


Options Selected by Other Users:
Mark Question:

Start a Discussions

Submit Your Answer:
0 / 1500
Question 5

"A programmer is developing a Node.js application which will run on a Linux server on their on-premises data center. This application will access various Oracle Cloud Infrastructure (OCI) services using OCI SDKs.

What is the secure way to access OCI services with OCI Identity and Access Management (IAM)?


Correct : B


Options Selected by Other Users:
Mark Question:

Start a Discussions

Submit Your Answer:
0 / 1500