Question 1:

Skipped
Which components are required to establish a Site-to-Site VPN connection in Oracle Cloud Infrastructure?

Dynamic Routing Gateway (DRG), Customer Premises Equipment (CPE), and IPsec tunnel

(Correct)

Internet Gateway (IG), Network Address Translation (NAT) Gateway, and IPsec tunnel

Internet Gateway, Customer Premises Equipment (CPE), and IPsec tunnel

Dynamic Routing Gateway (DRG), NAT Gateway, and IPsec tunnel

Explanation
✅ The components required to establish a Site-to-Site VPN connection in Oracle Cloud Infrastructure are the
Dynamic Routing Gateway (DRG), Customer Premises Equipment (CPE), and IPsec tunnel. These components work
together to establish a secure and encrypted connection between the customer's on-premises network and the
virtual network in Oracle Cloud Infrastructure.

The DRG acts as a gateway for routing traffic, the CPE represents the customer's on-premises device, and the IPsec
tunnel ensures secure communication between the two networks.

Question 2:
Skipped
Which components are required to establish a cross-cloud connection between Microsoft Azure and Oracle Cloud
Infrastructure?

Azure ExpressRoute circuit and Oracle FastConnect virtual circuit

(Correct)

Azure Site-to-Site VPN and OCI Site-to-Site VPN

Azure Load Balancer and OCI Load Balancer

•
 Azure Virtual Network and OCI Virtual Cloud Network

Explanation
✅ The components required to establish a cross-cloud connection between Microsoft Azure and Oracle Cloud
Infrastructure (OCI) are:
1. Azure Virtual Network (VNet)
2. OCI Virtual Cloud Network (VCN)
3. Azure ExpressRoute circuit
4. Oracle FastConnect virtual circuit
Azure Virtual Network and OCI Virtual Cloud Network are used to define the network boundaries and subnets within
each cloud environment. The Azure ExpressRoute circuit and Oracle FastConnect virtual circuit provide the
dedicated, private connectivity between the two clouds, ensuring secure and high-performance communication
between the resources in Azure and OCI.
Question 3:
Skipped
Which is true regarding fully automated and guided onboarding for the OracleDB for Azure service?

Fully automated onboarding requires more permissions to be granted than guided onboarding.

(Correct)

An Azure user who completes fully automated onboarding can log in to the OracleDB for Azure portal, but cannot
deploy and provision databases.

An Azure user who completes guided onboarding cannot log in to the OracleDB for Azure portal.

Guided onboarding is simpler and faster than fully automated onboarding.

Explanation
✅ When it comes to onboarding for the OracleDB for Azure service, fully automated onboarding requires more
permissions to be granted compared to guided onboarding. Fully automated onboarding involves granting the
required permissions to the Azure user or service principal upfront, allowing them to have full access to the
OracleDB for Azure service, including the ability to deploy and provision databases.

In contrast, guided onboarding simplifies the process and may have certain limitations or restrictions compared to
fully automated onboarding.

Question 4:
Skipped
In the context of Oracle FastConnect, what are the two types of virtual circuits?

Private and Public

 (Correct)

Layer 3 and Layer 4

Intra-Region and Inter-Region

Standard and High-Performance

Explanation
✅ In the context of Oracle FastConnect, the two types of virtual circuits are Private and Public. Private virtual
circuits provide private network connectivity and are used to access resources within the customer's virtual cloud
network (VCN).

Public virtual circuits, on the other hand, provide public internet connectivity and are used to access public Oracle
Cloud Infrastructure services.

Question 5:
Skipped
What is the purpose of the SAML metadata file in the OCI Federation setup with Azure Active Directory (AD)?

It is used to configure attribute mapping between Azure AD and OCI.

It is used to exchange metadata information between Azure AD and OCI.

(Correct)

It is used to store user credentials for authentication.

It is used to establish trust between Azure AD and OCI.

Explanation
✅ The purpose of the SAML metadata file in the OCI Federation setup with Azure Active Directory (AD) is to
exchange metadata information between Azure AD and OCI. The SAML metadata file contains important
configuration details and metadata about the identity provider (Azure AD) and service provider (OCI) involved in the
federation.

This metadata file is exchanged between the two systems to establish trust, define the authentication protocols,
and exchange relevant information required for secure and seamless federation between Azure AD and OCI.
 Question 6:
Skipped
What does the term "multicloud" mean and how can it help organizations manage their IT infrastructure?

The use of cloud services from multiple providers to leverage the best features and services of each

(Correct)

The use of multiple cloud services from a single provider for redundancy and high availability

The deployment of a single cloud service across multiple regions and data centers for better performance

The integration of on-premises infrastructure with cloud services for a hybrid cloud approach

Explanation
✅ The term "multicloud" refers to the practice of utilizing cloud services from multiple providers to leverage the
best features and services of each. It allows organizations to avoid vendor lock-in, optimize costs, and gain access to
a wider range of capabilities. Multicloud can help organizations manage their IT infrastructure by providing
flexibility, scalability, and redundancy across different cloud platforms. It enables them to select the most suitable
services for their specific needs, distribute workloads strategically, and ensure high availability by avoiding
dependence on a single provider.

Additionally, multicloud allows organizations to mitigate risks by diversifying their cloud investments and
maintaining control over their data and applications.

Question 7:
Skipped
What is a key benefit of using Oracle Autonomous Database on Shared Exadata Infrastructure?

Dedicated hardware resources for each database

Seamless integration with third-party cloud providers

Unlimited storage capacity

•
 Automatic database tuning and patching

(Correct)

Explanation
✅ The key benefit of using Oracle Autonomous Database on Shared Exadata Infrastructure is automatic database
tuning and patching. Oracle Autonomous Database is a self-driving, self-securing, and self-repairing database service
that leverages machine learning and automation to optimize database performance and ensure security. With
Autonomous Database on Shared Exadata Infrastructure, the database automatically tunes itself, adapting to
changing workloads and optimizing performance without manual intervention.

Additionally, it automatically applies patches and updates to keep the database secure and up to date, relieving
administrators of the burden of managing these tasks manually.

Question 8:
Skipped
Which is NOT an Azure resource that is created when you provision a database using Oracle Database Service for
Azure?

Application Insights workspace

Log Analytics workspace

Custom Dashboard workspace

Oracle Database Service

(Correct)

Explanation
✅ When you provision a database using Oracle Database Service for Azure, an Azure resource called "Oracle
Database Service" is not created.

However, resources such as a Log Analytics workspace, Application Insights workspace, and a Custom Dashboard
workspace can be created depending on the configuration and monitoring requirements of the database
deployment. These resources provide additional capabilities for monitoring, logging, and analytics related to the
database.

Question 9:
Skipped
What is the purpose of using Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) policies in
a cross-cloud connection between Microsoft Azure and OCI?

•
 To control who can manage OCI route tables, network security groups, and security lists

(Correct)

To control the type of traffic allowed between the Azure VNet and the OCI VCN

To control the bandwidth of the connection between the Azure VNet and the OCI VCN

To control the location of the cross-cloud connection

Explanation
✅ The purpose of using Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) policies in a
cross-cloud connection between Microsoft Azure and OCI is to control who can manage OCI route tables, network
security groups, and security lists. IAM policies allow administrators to define fine-grained access controls,
specifying which users or groups have permission to perform specific actions on network resources within the OCI
environment.

By configuring IAM policies, organizations can ensure that only authorized individuals can manage and modify the
network components involved in the cross-cloud connection, enhancing security and maintaining control over
network configurations.

Question 10:
Skipped
How do administrators and developers use OracleDB for Azure?

They use both the OracleDB for Azure portal and Azure portal

(Correct)

They use the Azure portal exclusively

They use the OracleDB for Azure portal exclusively

They use the OCI Console

Explanation
✅ The correct answer is:

They use both the OracleDB for Azure portal and Azure portal.
 Administrators and developers typically use both the OracleDB for Azure portal and the Azure portal when working
with Oracle Database for Azure.

The OracleDB for Azure portal provides specific tools and features designed for managing and operating Oracle
Database instances within the Azure environment. It offers functionalities like provisioning and managing database
instances, configuring high availability, monitoring performance, and managing backups and recovery.

On the other hand, the Azure portal serves as a centralized management interface for all Azure resources.
Administrators and developers use the Azure portal to manage the underlying Azure infrastructure, such as virtual
machines, networking, storage accounts, and security settings. They can also configure network connectivity
between Azure resources and Oracle Database instances, set up access control, and manage other Azure-related
services required for the overall application or solution architecture.

By utilizing both portals, administrators and developers have access to the specific tools and functionalities of
OracleDB for Azure portal as well as the broader Azure management capabilities provided by the Azure portal.

Question 11:
Skipped
An organization wants to deploy Oracle Database Service for Azure in the existing Oracle Cloud Infrastructure and
Azure tenancies that are in the supported regions.

However, they want to have full control over the Azure permissions that should be granted.

Which option should they choose during the sign-up process?

Guided account linking

(Correct)

Auto pilot linking

Fully scripted configuration

Fully automated configuration

Explanation
✅ During the Oracle Database Service for Azure sign-up process, organizations have the option to choose guided
account linking, which allows them to specify which Azure permissions are granted for the Oracle Database Service
for Azure service.

This provides more control and allows organizations to ensure that only the necessary permissions are granted to
the service.

Question 12:
Skipped
 Which type of routing does Oracle FastConnect use to exchange routing information between on-premises
networks and Oracle Cloud Infrastructure?

OSPF

RIP

Dynamic routing with BGP

(Correct)

Static routing

Explanation
✅ The type of routing used by Oracle FastConnect to exchange routing information between on-premises
networks and Oracle Cloud Infrastructure is dynamic routing with BGP (Border Gateway Protocol). BGP is a widely
used routing protocol that enables the exchange of routing information and routes between different networks. By
using BGP, Oracle FastConnect allows for dynamic and efficient routing between on-premises networks and OCI,
ensuring optimal connectivity and path selection.

Therefore, the correct option is: "Dynamic routing with BGP."

Question 13:
Skipped
Which database system is NOT available in Oracle Database Service for Azure?

Oracle Exadata Database

Autonomous Database on dedicated Exadata infrastructure

(Correct)

Base Database using Oracle Enterprise Edition or Oracle Standard Edition 2 databases

Autonomous Database on shared Exadata infrastructure

 Explanation
✅ The database system that is NOT available in Oracle Database Service for Azure is "Autonomous Database on
dedicated Exadata infrastructure." Autonomous Database on shared Exadata infrastructure and Base Database using
Oracle Enterprise Edition or Oracle Standard Edition 2 databases are available options within Oracle Database
Service for Azure.

Oracle Exadata Database, on the other hand, refers to the underlying infrastructure and is not a specific database
system provided by Oracle Database Service for Azure.

Question 14:
Skipped
What is guided onboarding in OracleDB for Azure?

A fully automated onboarding process that grants OracleDB for Azure all Azure permissions required for
onboarding

A partially automated onboarding process that allows users to complete discrete tasks in the onboarding process

(Correct)

A manual onboarding process that requires users to manually configure all necessary permissions

An onboarding process that allows users to onboard without needing any Azure permissions
Explanation
✅ The correct answer is:

A partially automated onboarding process that allows users to complete discrete tasks in the onboarding process.

Guided onboarding in Oracle Database for Azure refers to a partially automated process that assists users in
completing specific tasks during the onboarding process. It provides step-by-step guidance and instructions to help
users configure and set up their Oracle Database on the Azure platform.

While guided onboarding streamlines and simplifies the onboarding process by automating certain aspects and
providing assistance, it does not grant OracleDB for Azure all Azure permissions or eliminate the need for Azure
permissions altogether. Users still need to have the necessary Azure permissions to perform tasks such as creating
and configuring Azure resources, setting up network connectivity, and managing security.

Guided onboarding helps users navigate through the onboarding process efficiently and ensures that they complete
all required steps correctly, reducing the manual effort and potential errors associated with manual configuration.

Question 15:
Skipped
(CHK) Which is NOT a security capability available with OracleDB for Azure?

•
 Automatic security updates for the database

Security features such as network isolation and access controls

Encryption of data at rest and in transit

IPsec tunnel

(Correct)

Explanation
✅ IPsec tunnel is not a security capability specifically associated with Oracle Database Service for Azure. However,
OracleDB for Azure does provide several security capabilities such as encryption of data at rest and in transit,
automatic security updates for the database, and security features like network isolation and access controls.

These features help to ensure the security and protection of data stored and processed in the database.

Question 16:
Skipped
Which database system does NOT require an Azure Virtual Network during provisioning?

Autonomous Database on shared Exadata infrastructure

(Correct)

Oracle Exadata Database

MySQL Database with HeatWave

Base Database with Oracle Enterprise Edition or Oracle Standard Edition 2

Explanation
✅ The database system that does not require an Azure Virtual Network during provisioning is the Autonomous
Database on shared Exadata infrastructure.
 This is because the Autonomous Database on shared Exadata infrastructure is a fully managed service provided by
Oracle Cloud Infrastructure (OCI), and it does not require the setup and configuration of a specific Azure Virtual
Network.

Question 17:
Skipped
What is the primary difference between using Oracle FastConnect with an Oracle partner and using FastConnect
with colocation with Oracle?

The geographical locations available for connections.

The type of virtual circuits supported.

The number of available redundancy models

The method of establishing the physical connection to Oracle Cloud Infrastructure.

(Correct)

Explanation
✅ The primary difference between using Oracle FastConnect with an Oracle partner and using FastConnect with
colocation with Oracle is the method of establishing the physical connection to Oracle Cloud Infrastructure.

When using an Oracle partner, the physical connection is established through the partner's network, while with
colocation, the physical connection is established through the customer's colocation facility.

Question 18:
Skipped
What is the primary Oracle Cloud Infrastructure region associated with an OCI account during OracleDB for Azure
setup?

The home region of the OCI account

The region specified during OracleDB for Azure onboarding

(Correct)

The region with the most available resources for OracleDB for Azure
•

The region with the lowest latency for Azure communication

Explanation
✅ The primary Oracle Cloud Infrastructure (OCI) region associated with an OCI account during OracleDB for Azure
setup is the region specified during the OracleDB for Azure onboarding process. The user can select the desired OCI
region to deploy their Oracle Database Service in Azure.

This region will be associated with their OCI account and will be used for provisioning and managing the database
resources in OCI.

Question 19:
Skipped
What is the role of BGP dynamic routing in the connection between an Azure VNet and OCI VCN?

It is used to automatically select the best route between the VNet and VCN

(Correct)

It is used to manage the security rules for the VNet and VCN

It is used to create a static routing configuration for the VNet and VCN

It is used to establish a direct connection between the VNet and VCN without a virtual circuit
Explanation
✅ The correct answer is:

It is used to automatically select the best route between the VNet and VCN.

BGP (Border Gateway Protocol) dynamic routing is used to facilitate the exchange of routing information between
different networks. In the context of connecting an Azure Virtual Network (VNet) and an Oracle Cloud Infrastructure
(OCI) Virtual Cloud Network (VCN), BGP dynamic routing is used to automatically select the best route for network
traffic between the two networks.

By configuring BGP dynamic routing, the networks can exchange information about the available routes and the
associated metrics, such as path length or network congestion. This enables the networks to dynamically adapt and
select the most optimal path for sending traffic between the Azure VNet and OCI VCN. BGP ensures efficient and
reliable connectivity by dynamically adjusting the routing paths based on network conditions.

Creating a static routing configuration, establishing a direct connection without a virtual circuit, or managing
security rules are not specific functions of BGP dynamic routing in this context.

Question 20:
 Skipped
What is the purpose of federating the Azure tenant's Azure Active Directory (AAD) with an OCI identity domain?

To specify an Azure Virtual Network (VNet) in Azure during provisioning.

To enable bi-directional communication between Azure and OCI.

To create and manage resources in the subscription (for example, the custom dashboard, Azure App Insights, and
Azure Log Analytics workspaces OracleDB for Azure creates for each provisioned database)

To allow Azure users to log into the OCI Console using the same Azure credentials used for Azure and the
OracleDB for Azure portal.

(Correct)

Explanation
✅ The correct answer is:

To allow Azure users to log into the OCI Console using the same Azure credentials used for Azure and the OracleDB
for Azure portal.

The purpose of federating the Azure tenant's Azure Active Directory (AAD) with an OCI identity domain is to enable
Azure users to log into the OCI (Oracle Cloud Infrastructure) Console using the same Azure credentials they use for
Azure and the OracleDB for Azure portal.

Federating the Azure AAD with an OCI identity domain establishes a trust relationship between the two identity
providers. This allows the Azure AD users to authenticate and access resources in the OCI environment using their
existing Azure credentials, eliminating the need for separate user accounts and credentials management.

By federating the Azure tenant's AAD with OCI, users gain the convenience of using a single set of credentials to
access resources in both Azure and OCI. This streamlines the user experience, simplifies identity management, and
enhances security by centralizing access control and authentication processes.

Question 21:
Skipped
What is the role of the Oracle Database Service enterprise application in OracleDB for Azure?

It provides a distributed, scalable, shared-nothing, in-memory, hybrid columnar, query processing engine
designed for extreme performance.

•
 It allows you to add database compute servers and storage servers to your system at any time after provisioning.

It allows users to log in to the OCI Console with the same Azure credentials for Azure and the OracleDB for Azure
portal.

It creates and manages resources in the Azure subscription, streams OCI Database metrics to Azure App Insights
and events to Azure Log Analytics, and configures network settings in Azure so that Azure resources can access
database resources in OCI.

(Correct)

Explanation
✅ The role of the Oracle Database Service enterprise application in OracleDB for Azure is to create and manage
resources in the Azure subscription, stream OCI Database metrics to Azure App Insights and events to Azure Log
Analytics, and configure network settings in Azure so that Azure resources can access database resources in OCI.

It facilitates the integration between Azure and OCI, allowing for seamless management and communication
between the two environments.

Question 22:
Skipped
What should you do to prepare your Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) for potential
security risks when connected to a Microsoft Azure VNet?

Allow all traffic from the Azure VNet without restrictions.

Disable the connection between Azure VNet and OCI VCN.

Remove all OCI security rules.

Limit all inbound and outbound traffic from the Azure VNet to expected and well-defined traffic.

(Correct)

Explanation
✅ To prepare your Oracle Cloud Infrastructure (OCI) Virtual Cloud Network (VCN) for potential security risks when
connected to a Microsoft Azure VNet, you should limit all inbound and outbound traffic from the Azure VNet to
expected and well-defined traffic. This means implementing proper security rules and restrictions to ensure that
only necessary and authorized traffic is allowed between the two networks. By doing so, you can mitigate potential
security risks and maintain a more secure network environment.
 Therefore, the correct option is: "Limit all inbound and outbound traffic from the Azure VNet to expected and well-
defined traffic."

Question 23:
Skipped
What is the main advantage of using the fully-automated onboarding option for OracleDB for Azure?

It allows organizations to set their own security policies

It requires fewer steps to complete than the guided account linking

It is faster and more convenient than the guided account linking

(Correct)

It does not require any Azure admin roles to be assigned

Explanation
✅ The correct answer is:

It is faster and more convenient than the guided account linking.

The main advantage of using the fully-automated onboarding option for Oracle Database for Azure is that it offers a
faster and more convenient onboarding experience compared to the guided account linking process.

In the fully-automated onboarding option, the onboarding process is streamlined and automated, reducing the
manual effort required from users. It leverages automation capabilities to handle tasks such as provisioning and
configuring the necessary Azure resources, setting up networking, and managing security settings. This automated
process saves time and simplifies the overall onboarding experience, allowing organizations to quickly start using
Oracle Database on the Azure platform.

In contrast, the guided account linking process, while providing assistance and step-by-step guidance, may involve
more manual configuration and setup steps. Although it offers a level of guidance, it may require users to perform
more tasks manually, which can be time-consuming and potentially prone to errors.

The fully-automated onboarding option helps organizations onboard to OracleDB for Azure more efficiently,
reducing the time and effort required for the initial setup.

Question 24:
Skipped
What is NOT required for the OracleDB for Azure setup?

A preprovisioned Azure Virtual Network (VNet)

 (Correct)

An existing Azure account with the necessary ARM roles

An OCI tenancy with the necessary admin permissions for the OCI user

Specific roles for the Oracle Database Service (ODS) enterprise application in Azure

Explanation
✅ What is NOT required for the OracleDB for Azure setup is a preprovisioned Azure Virtual Network (VNet). While
an OCI tenancy with the necessary admin permissions for the OCI user, specific roles for the Oracle Database Service
(ODS) enterprise application in Azure, and an existing Azure account with the necessary ARM roles are essential for
the setup, the presence of a preprovisioned Azure Virtual Network is not a requirement.

The setup process will involve creating and configuring the necessary networking components in Azure as part of
the OracleDB for Azure deployment.

Question 25:
Skipped
Which type of traffic is NOT supported by the cross-cloud connection between OCI and Microsoft Azure?

Traffic from the Azure VNet to a peered OCI VCN in a different OCI region

Traffic between your on-premises network and the OCI VCN through the Azure Vnet

(Correct)

Traffic from the Azure VNet to a peered OCI VCN in the same OCI region

Traffic between the Azure VNet and OCI VCN using private IP addresses
Explanation
✅ The correct answer is:

Traffic between your on-premises network and the OCI VCN through the Azure VNet.

The cross-cloud connection between OCI and Microsoft Azure does not support traffic between your on-premises
network and the OCI VCN through the Azure VNet.
 The cross-cloud connection typically enables connectivity between the Azure VNet and OCI VCN, allowing traffic to
flow securely between the two environments. It supports traffic from the Azure VNet to a peered OCI VCN in the
same OCI region, traffic from the Azure VNet to a peered OCI VCN in a different OCI region, and traffic between the
Azure VNet and OCI VCN using private IP addresses.

However, the cross-cloud connection is not designed to provide connectivity between your on-premises network
and the OCI VCN through the Azure VNet. To establish connectivity between your on-premises network and the OCI
VCN, you would typically use other networking options such as VPN or dedicated connectivity services like Azure
ExpressRoute and Oracle FastConnect.

Question 26:
Skipped
An organization has decided to implement a multicloud solution by using Microsoft Azure for their frontend data
analytics applications and Oracle Cloud Infrastructure (OCI) for their backend Oracle Autonomous Data Warehouse.

In this scenario, how can the organization ensure secure and low latency data transfer between the frontend
applications and the backend data warehouse?

Establish a dedicated, private connection between Azure and OCI using Azure ExpressRoute and Oracle
FastConnect.

(Correct)

Implement a hybrid cloud approach by integrating on-premises infrastructure with both Azure and OCI.

Use public internet connections to transfer data between Azure and OCI, encrypting the data in transit.

Leverage a VPN Gateway to create an encrypted tunnel between Azure and OCI for secure data transfer.

Explanation
✅ The organization can ensure secure and low latency data transfer between the frontend applications in Azure
and the backend data warehouse in OCI by establishing a dedicated, private connection using Azure ExpressRoute
and Oracle FastConnect.

This allows for a secure and high-performance connection between the two cloud environments.

Question 27:
Skipped
What is the primary purpose of an Oracle Cloud Infrastructure Identity Domain?

Establish a secure, private connection between the tenancy and other Oracle Cloud services.
•

Create isolated networks for resources within the tenancy for enhanced security.

Provide a centralized location for storing and managing user credentials and access.

(Correct)

Define the roles and privileges assigned to a user or group of users within the tenancy.

Explanation
✅ The primary purpose of an Oracle Cloud Infrastructure Identity Domain is to provide a centralized location for
storing and managing user credentials and access. It serves as a container for users, groups, and policies, allowing
administrators to control and manage access to various resources within the tenancy.

By using the Identity Domain, organizations can efficiently manage user identities, authentication, and
authorization, ensuring that only authorized individuals have access to specific resources and services in the Oracle
Cloud Infrastructure.

Question 28:
Skipped
Which step is NOT valid while implementing an OCI-Azure Interconnect?

Select FastConnect Direct as the connection type.

(Correct)

Set up an Oracle FastConnect virtual circuit.

Create a Dynamic Routing Gateway and attach it to the OCI VCN.

Set up an Azure ExpressRoute circuit.

Explanation
✅ The correct answer is: Select FastConnect Direct as the connection type.

FastConnect Direct is not a valid option for OCI-Azure Interconnect. When implementing an OCI-Azure Interconnect,
you need to create a Dynamic Routing Gateway and attach it to the OCI VCN, set up an Oracle FastConnect virtual
circuit, and set up an Azure ExpressRoute circuit.
 Question 29:
Skipped
You plan to use OracleDB Service for Azure to easily provision, access, and operate enterprise-grade Oracle
Database services in Oracle Cloud Infrastructure (OCI) with a familiar Azure-like experience. What should you do
to sign up for the OracleDB for Azure service?

Contact Oracle support to request access to the service.

Visit the sign up website at URL https://signup.multicloud.oracle.com/azure

(Correct)

Visit the Azure portal and navigate to the Oracle Database Service page.

Visit the sign up website at URL https://signup.multicloud.azure.com/oracle

Explanation
✅ To sign up for the OracleDB for Azure service, you should visit the sign-up website at URL

https://signup.multicloud.oracle.com/azure

This website provides the necessary information and steps to sign up for the service and get started with
provisioning Oracle Database services in Oracle Cloud Infrastructure (OCI) through the Azure portal.

Question 30:
Skipped
A company has deployed a multi-tier application in Oracle Cloud Infrastructure (OCI), with web servers in a public
subnet and database servers in a private subnet.

The database servers need to access data from OCI Object Storage, and the company wants to ensure that this
communication is secure and not exposed to the public internet.

Which OCI feature should be used to achieve this objective?

Use a NAT Gateway to enable private access to Object Storage.

Use a VPN Gateway to create an encrypted tunnel to Object Storage.

•
 Use a Service Gateway to establish a secure connection to Object Storage.

(Correct)

Use a Local Peering Gateway to peer with the Object Storage subnet.

Explanation
✅ The OCI feature that should be used to achieve the objective of ensuring secure and non-exposed
communication between the database servers in a private subnet and OCI Object Storage is a Service Gateway.

Therefore, the correct option is: "Use a Service Gateway to establish a secure connection to Object Storage."

Question 31:
Skipped
What is the primary purpose of the MySQL Database Service HeatWave option in Oracle Cloud Infrastructure
(OCI)?

To enable seamless database migration from on-premises to OCI

To offer a serverless MySQL deployment

To ensure high availability and fault tolerance

To provide a distributed in-memory query accelerator

(Correct)

Explanation
✅ The primary purpose of the MySQL Database Service HeatWave option in Oracle Cloud Infrastructure (OCI) is to
provide a distributed in-memory query accelerator. HeatWave is designed to dramatically improve the performance
of analytical queries on MySQL databases by utilizing an in-memory, parallel architecture.

By offloading read-intensive queries to the in-memory accelerator, HeatWave enables fast, real-time analytics on
large datasets, making it ideal for data warehousing and business intelligence workloads.

Question 32:
Skipped
What is the role of Azure administrators in configuring OracleDB for Azure for production use?

•
 To assign the "Contributor" role to users in every Azure subscription in which they expect to provision database
resources

To create and configure the private link between Azure and OCI using Oracle Interconnect for Azure

To assign users the appropriate roles in the Azure ODS enterprise application based on their tasks in OracleDB for
Azure

(Correct)

To complete the onboarding process for each user or user group

Explanation
✅ The correct answer is:

To assign users the appropriate roles in the Azure ODS enterprise application based on their tasks in OracleDB for
Azure.

Azure administrators play a crucial role in configuring Oracle Database for Azure for production use by assigning
users the appropriate roles in the Azure ODS (Oracle Database Service) enterprise application. The Azure ODS
enterprise application is specifically designed to manage and govern Oracle Database resources within Azure.

By assigning users the appropriate roles in the Azure ODS enterprise application, administrators can control the level
of access and permissions granted to users based on their specific tasks and responsibilities related to Oracle
Database for Azure. This ensures that users have the necessary privileges to perform their designated functions
while maintaining security and governance.

Assigning roles in the Azure ODS enterprise application allows administrators to define and manage access control,
ensuring that users have the appropriate permissions to provision, manage, and operate Oracle Database resources
within the Azure environment. This role-based access control is critical for maintaining the security and integrity of
Oracle Database for Azure in a production environment.

Question 33:
Skipped
What encryption protocol is used to secure data transmission in an OCI Site-to-Site VPN connection?

Transport Layer Security (TLS)

Datagram Transport Layer Security (DTLS)

Secure Sockets Layer (SSL)

•

Internet Protocol Security (IPSec)

(Correct)

Explanation
✅ The encryption protocol used to secure data transmission in an OCI Site-to-Site VPN connection is Internet
Protocol Security (IPSec). IPSec provides secure communication by authenticating and encrypting each IP packet of a
communication session. It also provides data integrity, confidentiality, and protection against replay attacks.

TLS and SSL are used for securing data transmission in web-based applications, while DTLS is a variation of TLS that is
used for real-time communication.

Question 34:
Skipped
What components are required for setting up an Azure VNet to Oracle Cloud Infrastructure VCN connection as
part of the OCI-Azure Interconnect?

An Azure VNet with subnets and a virtual network gateway, and an OCI VCN with subnets and an attached
internet gateway

An Azure VNet with subnets and a virtual network gateway, and an OCI VCN with subnets and an attached NAT
gateway

An Azure VNet with subnets and a virtual network gateway, and an OCI VCN with subnets and an attached service
gateway

An Azure VNet with subnets and a virtual network gateway, and an OCI VCN with subnets and an attached
dynamic routing gateway

(Correct)

Explanation
✅ The correct components required for setting up an Azure VNet to Oracle Cloud Infrastructure VCN connection as
part of the OCI-Azure Interconnect are:
1. An Azure VNet with subnets and a virtual network gateway.
2. An OCI VCN with subnets and an attached dynamic routing gateway.
These components are essential for establishing the connectivity between Azure and OCI, allowing traffic to flow
securely between the two networks. The virtual network gateway in Azure acts as the gateway for the VNet, while
the dynamic routing gateway in OCI facilitates the routing of traffic between the VCN and the Azure VNet.
Question 35:
Skipped
What is the purpose of the Multicloudlink Administrator role in the Oracle Database Service (ODS) enterprise
application that OracleDB for Azure deploys in the Azure tenancy
•

To allow the Oracle Database Service enterprise application to create and manage resources in Azure

To configure network settings in Azure so Azure resources can access the database resources in OCI.

To link Azure subscriptions to OracleDB for Azure

(Correct)

To stream OCI Database metrics to Azure App Insights and events to Azure Log Analytics
Explanation
✅ The correct answer is:

To link Azure subscriptions to OracleDB for Azure.

The purpose of the Multicloudlink Administrator role in the Oracle Database Service (ODS) enterprise application
deployed in the Azure tenancy is to facilitate the linking of Azure subscriptions to OracleDB for Azure.

The Multicloudlink Administrator role enables the Oracle Database Service enterprise application to establish the
necessary connections and integrations between Azure and Oracle Cloud Infrastructure (OCI). This role allows
administrators to configure and manage the connectivity and communication between the Azure resources and the
Oracle Database resources deployed in OCI.

By linking Azure subscriptions to OracleDB for Azure, administrators can enable the seamless interaction and
exchange of data between Azure and OCI. This integration enables users to leverage the benefits of both platforms
and utilize Oracle Database services in Azure while maintaining connectivity and synchronization with the OCI
environment.

Question 36:
Skipped
How can you control the packet flow over the connection between an Azure VNet and an OCI VCN?

By using OCI IAM policies

By using route tables in OCI and Azure

(Correct)

By using network security groups in the Azure Vnet

•

By using firewall rules in OCI and Azure

Explanation
✅ To control the packet flow over the connection between an Azure Virtual Network (VNet) and an Oracle Cloud
Infrastructure (OCI) Virtual Cloud Network (VCN), you can utilize route tables in both OCI and Azure. Route tables
define the paths that network traffic takes within a VNet or VCN.

By configuring the route tables, you can control the routing of packets between the two networks. You can specify
specific routes and define the next hops for the traffic to reach its destination. This allows you to control the flow of
packets and determine which network resources can communicate with each other.

Firewall rules in OCI and Azure, network security groups in Azure VNet, and OCI IAM policies are not directly used to
control the packet flow between VNets and VCNs. They focus on managing access control and security policies for
network resources within their respective environments.

Question 37:
Skipped
How do Azure administrators and developers connect their applications to Oracle databases using Oracle
Database Service for Azure?

By learning OCI and working in the OCI Console

By connecting to the Oracle databases using connection strings

(Correct)

By manually creating complex cross-cloud deployments using the Interconnect

By connecting to the Oracle databases using database links

Explanation
✅ Azure administrators and developers can connect their applications to Oracle databases using Oracle Database
Service for Azure by connecting to the Oracle databases using connection strings. Connection strings contain the
necessary information, such as the database server name, credentials, and other connection parameters, to
establish a connection between the application and the Oracle database.

By providing the correct connection string in their application configuration, administrators and developers can
establish a connection and interact with the Oracle databases seamlessly.

Question 38:
Skipped
What are the Azure roles required to set up and use OracleDB for Azure?
•

Admin roles needed for Azure setup, and user roles needed by application and database developers

User roles needed for Azure setup, and admin roles needed by application and database developers

Admin roles needed for initial OracleDB for Azure setup, and user roles needed by application and database
developers

(Correct)

User roles needed for initial OracleDB for Azure setup, and admin roles needed by application and database
developers
Explanation
✅ The correct answer is:

User roles needed for initial OracleDB for Azure setup, and admin roles needed by application and database
developers

To set up and use Oracle Database for Azure, you would need the following roles:

1. User roles for initial OracleDB for Azure setup:

• Database Administrator (DBA) role: This role is responsible for setting up the initial configuration of the Oracle
Database in Azure, including creating and configuring the database instance, managing storage, and configuring
network connectivity.
2. Admin roles needed by application and database developers:
• Database Administrator (DBA) role: This role is responsible for ongoing administration and management of the
Oracle Database, including user management, security, performance tuning, and backup and recovery.
• Application Administrator role: This role is responsible for managing and administering the applications that interact
with the Oracle Database in Azure. They may need permissions to deploy, configure, and monitor the applications.

These roles ensure that the initial setup of the Oracle Database in Azure is performed by users with the necessary
permissions, while application and database developers have the admin roles to manage and maintain the database
and associated applications.

Question 39:
Skipped
Which workload type is NOT optimized for Oracle Autonomous Database on Shared Exadata Infrastructure?

Data warehousing

Transaction processing
•

Mixed workloads

High-performance computing

(Correct)

Explanation
✅ The workload type that is NOT optimized for Oracle Autonomous Database on Shared Exadata Infrastructure is
"High-performance computing". Autonomous Database on Shared Exadata Infrastructure is specifically designed and
optimized for mixed workloads, transaction processing, and data warehousing.

High-performance computing workloads have different requirements and characteristics that are not aligned with
the design and optimizations of the Autonomous Database on Shared Exadata Infrastructure.

Question 40:
Skipped
What is the purpose of identity federation in the context of OracleDB for Azure?

To allow users to log in to the OCI Console using the same Azure credentials

(Correct)

To enable bidirectional communication between applications in the Azure tenancy and the database resources in
OracleDB for Azure

To link Azure subscriptions to your OCI tenancy

To provide a way for customers to manage database resources in OracleDB for Azure without using the OCI
Console

Explanation
✅ The purpose of identity federation in the context of Oracle Database for Azure is to allow users to log in to the
OCI Console using the same Azure credentials. Identity federation enables a seamless and unified login experience
for users, allowing them to access both Azure and OCI resources using a single set of credentials.

This simplifies user management and provides a more streamlined approach to accessing and managing database
resources in Oracle Database for Azure without the need for separate authentication mechanisms.

Question 41:
Skipped
 A consulting company that employs Oracle Cloud Infrastructure (OCI) architects has successfully completed resource
migration from Microsoft Azure to OCI, and no longer requires the Oracle FastConnect circuit to Azure.

The project manager has asked you to delete all resources involved in this cross-cloud connectivity. From the Azure
side, you delete the Resource Group. After a while, you notice that all Azure resources have been deleted, except
for the Azure ExpressRoute circuit.

What could be a potential reason for this issue?

Your bill from the OCI side needs to be paid in full before you can remove the Azure ExpressRoute circuit.

You need to remove the Azure ExpressRoute Partner Service Key from the Oracle FastConnect circuit, and then
you can delete the ExpressRoute virtual circuit.

You need to first delete the Oracle FastConnect circuit for the ExpressRoute circuit to be decommissioned, and
then you can delete the ExpressRoute virtual circuit.

(Correct)

You need to remove all routes that point to the cross-cloud connection on both OCI and Azure before you can
delete the circuit.

Explanation
✅ The potential reason for the issue is:

"You need to first delete the Oracle FastConnect circuit for the ExpressRoute circuit to be decommissioned, and
then you can delete the ExpressRoute virtual circuit."

The Oracle FastConnect circuit and the Azure ExpressRoute circuit are interconnected and dependent on each other.
In order to remove the Azure ExpressRoute circuit, you need to first delete the corresponding Oracle FastConnect
circuit. Deleting the Resource Group in Azure alone will not automatically delete the ExpressRoute circuit. You
should follow the proper procedure to remove the Oracle FastConnect circuit, which will then allow you to delete
the ExpressRoute virtual circuit.

Question 42:
Skipped
A company wants to seamlessly build a private interconnection between their OCI and Microsoft Azure
environments with consistent performance and low latency.

They want to enable their cloud engineers to set up Single Sign-On (SSO) between Microsoft Azure and OCI for their
Oracle applications, such as PeopleSoft, JD Edwards EnterpriseOne, and E-Business Suite.

Which technology integration can the company use to achieve this goal?

•
 Cloud Interconnect and Virtual WAN

Oracle FastConnect and Azure ExpressRoute

(Correct)

Direct Connect and Azure VPN Gateway

OCI Site-to-Site VPN and Azure Site-to-Site VPN

Explanation
✅ The company can use Oracle FastConnect and Azure ExpressRoute to seamlessly build a private interconnection
between OCI and Microsoft Azure. This integration provides consistent performance and low latency for their cloud
environments.

Additionally, they can leverage this connectivity to set up Single Sign-On (SSO) between Azure and OCI for their
Oracle applications, ensuring a streamlined and secure authentication process.

Question 43:
Skipped
How does Oracle Database Service for Azure simplify cross-cloud deployments for customers?

By allowing customers to manually create cross-cloud deployments using the Interconnect

By using an automated service–based approach for cross-cloud deployment

(Correct)

By offering more database types than any other cloud service provider

By providing more storage and computing resources than any other cloud service provider

Explanation
✅ Oracle Database Service for Azure simplifies cross-cloud deployments for customers by using an automated
service-based approach. This means that customers can easily deploy and manage their Oracle databases in Azure
without the need for manual configurations or complex setup processes.
 The automated approach streamlines the deployment process and ensures consistent and efficient deployment of
Oracle databases in the Azure environment.

Question 44:
Skipped
Which type of traffic is NOT supported by the OCI-Azure Interconnect?

Traffic between an Azure VNet and an OCI VCN

Traffic between an on-premises network and Azure VNet through the OCI VCN

(Correct)

Traffic between an Azure VNet and peered OCI VCNs in different regions

Traffic between an Azure VNet and peered OCI VCNs in the same region

Explanation
✅ The correct answer is: Traffic between an on-premises network and Azure VNet through the OCI VCN.

While the OCI-Azure Interconnect supports traffic between an Azure VNet and an OCI VCN, traffic between an Azure
VNet and peered OCI VCNs in the same or different regions, it does not support traffic between an on-premises
network and Azure VNet through the OCI VCN. For traffic between on-premises networks and Azure VNet, a
separate connectivity option such as Azure ExpressRoute or VPN Gateway should be used.

Question 45:
Skipped
An enterprise has a workload running in a VNet in Microsoft Azure and a database running in a VCN in Oracle Cloud
Infrastructure. The enterprise wants to set up a private, secure, and isolated network connection between the two
clouds to enable traffic flow between the workload and the database.

Which option can be used to achieve this requirement?

Use Azure Private Link to create a private connection between the workload and the database.

Use Azure VPN and Oracle FastConnect to establish a private and secure tunnel between the Azure VNet and the
OCI VCN.

•
 Use public internet to establish connectivity between the Microsoft Azure VNet and the OCI VCN.

Use Azure ExpressRoute and Oracle FastConnect to create a private interconnection between the Azure VNet and
the OCI VCN.

(Correct)

Explanation
✅ To achieve a private, secure, and isolated network connection between the Microsoft Azure VNet and the OCI
VCN, the enterprise can use Azure ExpressRoute and Oracle FastConnect. These services allow for the creation of a
private interconnection, ensuring the traffic flow between the workload and the database remains within a
dedicated network connection and is not exposed to the public internet.

This setup provides the desired level of privacy, security, and isolation for the enterprise's workload and database
communication.

Question 46:
Skipped
Which is a database service that CANNOT be provisioned in the Oracle Public Cloud?

Exadata Database Service on Shared Infrastructure

(Correct)

Autonomous Database on Shared Infrastructure

Autonomous Database on Dedicated Infrastructure

Exadata Database Service on Dedicated Infrastructure

Explanation
✅ The database service that cannot be provisioned in the Oracle Public Cloud is the "Exadata Database Service on
Shared Infrastructure." The other options mentioned, including "Autonomous Database on Shared Infrastructure,"
"Exadata Database Service on Dedicated Infrastructure," and "Autonomous Database on Dedicated Infrastructure,"
can be provisioned in the Oracle Public Cloud.
Question 47:
Skipped
What Azure admin roles are required for an Azure user to use the fully-automated onboarding option for
OracleDB for Azure?

•
 Resource Group Contributor, Subscription Contributor, Backup Contributor, or Storage Account Contributor

Network Contributor, Security Reader, User Access Administrator, or Virtual Machine Contributor

Application Administrator, Cloud Application Administrator, Privileged Role Administrator, or Global

Administrator

(Correct)

Key Vault Administrator, Log Analytics Contributor, or Security Manager

Explanation
✅ To use the fully-automated onboarding option for OracleDB for Azure, an Azure user needs to have one of the
following Azure admin roles: Application Administrator, Cloud Application Administrator, Privileged Role
Administrator, or Global Administrator.

These roles provide the necessary permissions to create and manage Azure Active Directory (AD) objects and to
create and manage Azure resources.

Question 48:
Skipped
When setting up a connection between a VNet in Microsoft Azure and a VCN in Oracle Cloud Infrastructure for
Oracle Database Service for Azure, which two components are required to create the cross-cloud connection?

Azure Site-to-Site VPN and OCI IPSec VPN

Azure ExpressRoute circuit and Oracle FastConnect virtual circuit

(Correct)

Azure Network Watcher and OCI Network Insights

Azure Traffic Manager and OCI Load Balancer

Explanation
✅ The correct answer is:

Azure ExpressRoute circuit and Oracle FastConnect virtual circuit.

 When setting up a connection between a VNet in Microsoft Azure and a VCN (Virtual Cloud Network) in Oracle
Cloud Infrastructure (OCI) for Oracle Database Service for Azure, you need to create a cross-cloud connection using
Azure ExpressRoute and Oracle FastConnect.

Azure ExpressRoute is a dedicated private network connection that provides a secure and reliable connection
between Azure and on-premises networks or colocation facilities. It allows you to extend your on-premises network
into Azure and establish a private peering connection with Azure VNets.

Oracle FastConnect is a dedicated private network connection that provides high-bandwidth, low-latency
connectivity between on-premises networks and Oracle Cloud Infrastructure (OCI). It enables you to establish a
private peering connection between your on-premises network and the VCN in OCI.

By establishing an ExpressRoute circuit in Azure and a FastConnect virtual circuit in OCI, you can create a secure,
private, and high-performance connection between the Azure VNet and OCI VCN. This cross-cloud connection allows
traffic to flow between the two environments, facilitating communication for Oracle Database Service for Azure
deployments.

Question 49:
Skipped
How does Oracle Database Service for Azure enable bidirectional communication between applications in the
Azure tenancy and database resources in OracleDB for Azure?

By federating the Azure tenant’s Azure Active Directory (AAD) with an OCI identity domain

By granting the Oracle Database Service enterprise application specific roles in Azure

By creating a custom Azure dashboard for each database

By configuring DNS on both sides of the Interconnect

(Correct)

Explanation
✅ Oracle Database Service for Azure enables bidirectional communication between applications in the Azure
tenancy and database resources in OracleDB for Azure by configuring DNS on both sides of the Interconnect.

This allows applications in the Azure tenancy to access and interact with the database resources in OracleDB for
Azure securely and efficiently.

Question 50:
Skipped
A company has deployed an application in Oracle Cloud Infrastructure consisting of multiple web servers,
database servers, and application servers. The company wants to restrict communication between these
components, allowing only the necessary traffic between them. Which OCI feature would be most suitable to
achieve this objective?
•

Use Network Security Groups to apply specific firewall rules for each component.

(Correct)

Use Route Tables to define custom routing policies between each component.

Use Virtual Cloud Networks to create isolated networks for each component.

Use Security Lists to configure network access rules for the entire Virtual Cloud Network.

Explanation
The most suitable OCI feature to achieve this objective is Network Security Groups. Network Security Groups
provide granular control over inbound and outbound traffic to and from resources within a Virtual Cloud Network,
enabling the company to restrict communication between the different components of their application and
allowing only the necessary traffic between them. Route Tables define custom routing policies for resources within a
VCN. Security Lists configure network access rules for the entire VCN, not for individual components. Virtual Cloud
Networks create isolated networks for resources, but do not provide granular control over traffic flow between
them.
Question 51:
Skipped
Which feature is supported in all Oracle Database editions in Oracle Cloud Infrastructure?

Data Guard

In-Memory Database

Transparent Data Encryption

(Correct)

Diagnostic Packs

Explanation
✅ The feature that is supported in all Oracle Database editions in Oracle Cloud Infrastructure is "Transparent Data
Encryption."
 Transparent Data Encryption (TDE) is a data-at-rest encryption solution provided by Oracle Database. It helps
protect sensitive data stored in the database by automatically encrypting data files, tablespaces, and backups.

TDE ensures that data remains encrypted both at rest and during data movement, providing an additional layer of
security for organizations using Oracle Database in Oracle Cloud Infrastructure.

Question 52:
Skipped
To achieve high availability in a 2-node RAC DB System in Oracle Cloud Infrastructure, what would you use to
distribute your nodes to provide database instance fault isolation?

Fault Domains

(Correct)

Availability Domains

Remote region

Local region

Explanation
✅ To achieve high availability in a 2-node RAC DB System in Oracle Cloud Infrastructure and provide database
instance fault isolation, Fault Domains would be used to distribute the nodes.

Therefore, the correct answer is: "Fault Domains".