Most Recent Oracle 1Z0-1104-23 Exam Questions & Answers

Prepare for the Oracle Cloud Infrastructure 2023 Security Professional exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Oracle 1Z0-1104-23 exam and achieve success.

The questions for 1Z0-1104-23 were last updated on Jan 20, 2025.

Viewing page 1 out of 34 pages.
Viewing questions 1-5 out of 169 questions

Get All 169 Questions & Answers

Question No. 1

Which components are a part of the OCI Identity and Access Management service?

APolicies

BRegional subnets

CCompute instances

DVCN

Show Answer

Correct Answer: A

https://docs.oracle.com/en-us/iaas/Content/Identity/Concepts/overview.htm

Question No. 2

Which Virtual Cloud Network (VCN) configuration within a region will allow successful local peering using a local peering gateway? (Choose the best Answer.)

AVCN with 10.0.0.0/16 and VCN2 with 192.168.0.0/16

BVICN1 with 10.0.0.0/16 and VCN2 with 10.0.0.0/24

CVCN1 with 192.168.0.0/16 and VCN2 with 192.168.0.0/24

DVCN1 with 192.168.0.0/24 and VCN2 with 192.168.0.0/24

EVCN1 with 10.0.0.0/16 and VCN2 with 192 168 0 0/14

Show Answer

Correct Answer: A

Question No. 3

Challenge 4 - Task 4 of 6

Configure Web Application Firewall to Protect Web Server Against XSS Attack

Scenario

You have to protect web applications hosted on OCI from cross-site scripting (XSS) attacks. You can use the OCI Web Application Firewall (WAF) capabilities to create rules that compare against incoming requests to determine if the request contains an XSS attack payload. If a request is determined to be an attack, WAF should return the HTTP Service Unavailable (503) error.

To ensure that the configured WAF blocks the XSS attack, run the following script:[http:///index.html?

/index.html?

)

To complete this deployment, you have to perform the following tasks in the environment provisioned for you:

Configure a Virtual Cloud Network (VCN)

Create a Compute Instance and install the Web Server

Create a Load Balancer and update Security List

Create a WAF policy

Configure Protection Rules against XSS attacks

Verify the created environment against XSS attacks

Note:You are provided with access to an OCI Tenancy, an assigned compartment, and OCI credentials. Throughout your exam, ensure to use the assigned Compartment 99233424-C01 and Region us-ashburn-1.

Complete the following task in the provisioned OCI environment:

Create a WAF policy with the nameIAD-SP-PBT-WAF-01_99233424-lab.user01

Eg: IAD-SP-PBT-WAF-01_99232403-lab.user02

ASee the solution below in Explanation

Show Answer

Correct Answer: A

SOLUTION:

From the navigation menu, select Identity & Security. Navigate to Web Application Firewall and click Policies under it.

From the left navigation pane, under List Scope, select <your working compartment> from the drop-down menu.

Click Create WAF Policy.

The Create WAF Policy dialogue box appears. Creating a WAF policy consists of the following sections accessible from the left-side navigation:

a) Basic information

b) Access control

c) Rate limiting

d) Protections

e) Select enforcement point

f) Review and create.

In the Basic Information section:

a) Name: IAD-SP-PBT-WAF-01_99233424-lab.user01

b) WAF Policy Compartment: Select your working compartment

c) Action: Keep the default preconfigured actions; do not edit.

d) Click the Select enforcement point section accessible from the left-side navigation.

Note: You will configure the other section later in this practice. You will directly configure the Enforcement point.

In the Select enforcement point section:a) Add Firewalls: Select a load balancer IAD-SP-PBT-LB-01 in your current compartment from the list. b) Click Next for Review and Create.

Under the Review and Create Section:a) Verify the enforcement point added in the previous step.

Click Create WAF Policy.

The Create WAF Policy dialogue box closes, and you are returned to the WAF Policy page. The WAF policy you created is listed.

Question No. 4

Which two services can leverage Vault symmetric encryption keys for data-at-rest? (Choose two.) OR Which OCI services can encrypt all data-at-rest? (Choose two.)

ALoad Balancer

BObject Storage

CBlock Volume

DWAF

EAPI Gateway

FCDN

Show Answer

Correct Answer: B, C

Question No. 5

Which of these protects customer data at rest and in transit in a way that allows customers to meet their security and compliance requirements forcryptographic algorithms and key management?

ASecurity controls

BCustomer isolation

CData encryption

DIdentity Federation

Show Answer

Correct Answer: C

DATA ENCRYPTION

Protect customer data at-rest and in-transit in a way that allows customers to meet their security and compliance requirements for cryptographic algorithms and key management.

https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_overview.htm

Unlock All Questions for Oracle 1Z0-1104-23 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 169 Questions & Answers