Free Oracle 1Z0-1104-25 Exam Questions

Become Oracle Certified with updated 1Z0-1104-25 exam questions and correct answers

Page: 1 / 36

Total 177 Questions | Updated On: May 01, 2025

Add To Cart

Question 1

A company plans to use Oracle Cloud services for their production and development environments, but they have different security requirements. Their security policy forbids development environment users from having access to the production environment and requires separate administrators to manage each environment. The company has only one tenancy in Oracle Cloud. How can they ensure that their security requirements are met in Oracle Cloud? (Choose the best Answer.)

A : Create multiple identity domains, one for the production environment and another for the development environment.

B : Use a single identity domain for both production and development environments to simplify administration.

C : Assign the same identity domain administrator to both the production and development environments.

D : Create a separate tenancy for the production environment to isolate administrative control.

Answer: A

Question 2

your company has hired a consulting firm to audit your oracle cloud infrastructure activity and configuration

you have created a set of users who will be performing the audit, you assigned these user to the orgauditgrp

group. the auditor required the ability to see the configuration of all resources within tenant and you have

agreed to exempt the dev compartment from the audit.

which IAM policy should be created to grant the orgauditgrp the ability to look at configuration for all

resources except for those resources inside the dev compartment?

A : allow group orgauditgrp to read all-resources in tenancy where target.compartment.name !=dev

B : allow group orgauditgrp to read all-resources in compartment !=dev

C : allow group orgauditgrp to inspect all-resources in tenancy where target compartment.name !=dev

D : allow group orgauditgrp to inspect all-resources in compartment !=dev

Answer: C

Question 3

You subscribe to a PaaS service that follows the Shared Responsibility model.

Which type of security is your responsibility?

A : Network

B : Infrastructure

C : Data

D : Guest OS

Answer: C

Question 4

Which IAM policy should be created to give XYZ the ability to list contents of a resource excluding the f needs to authenticate in prod compartment ? Principle of least priviledge should be used.

A : Allow group XYZ to manage all resources in compartment != prod

B : Allow group XYZ to use all resources in compartment != prod

C : Allow group XYZ to inspect all resources in tenancy where target.compartment.name != prod

D : Allow group XYZ to read all resources in tenancy where target.compartment.name != prod

Answer: C

Question 5

which three resources are required to encrypt a block volume with the customer managed key?

A : MAXIMUM SECURITY ZONE

B : SYMMETRIC MASTER KEY ENCRYPTlON KEY

C : BLOCK KEY

D : OCI VAIRT

E : IAM Policy Allowing Block Storage to Use Keys

F : Secrets

Answer: D,E,F

Page: 1 / 36

Total 177 Questions | Updated On: May 01, 2025

Add To Cart