- Home
- Oracle
- Oracle Cloud Infrastructure 2022 Architect Professional
- Oracle.1Z0-997-22.v2022-10-17.q56
- Question 55
Valid 1z0-997-22 Dumps shared by ExamDiscuss.com for Helping Passing 1z0-997-22 Exam! ExamDiscuss.com now offer the newest 1z0-997-22 exam dumps, the ExamDiscuss.com 1z0-997-22 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com 1z0-997-22 dumps with Test Engine here:
Access 1z0-997-22 Dumps Premium Version
(167 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 55/56
You are the Solution Architect that designed this Oracle Cloud Infrastructure (OCI) compartment layout for your organization:
The development team has deployed quite a few instances under 'Compute' Compartment and the operations team needs to list the Instances under the same compartment for their testing. Both teams, development and operations are part of a group called 'Eng-group' You have been looking for an option to allow the operations team to list the instances without access any confidential information or metadata of resources.
Which IAM policy should you write based on these requirements?
The development team has deployed quite a few instances under 'Compute' Compartment and the operations team needs to list the Instances under the same compartment for their testing. Both teams, development and operations are part of a group called 'Eng-group' You have been looking for an option to allow the operations team to list the instances without access any confidential information or metadata of resources.
Which IAM policy should you write based on these requirements?
Correct Answer: A
Policy Attachment
When you create a policy you must attach it to a compartment (or the tenancy, which is the root compartment). Where you attach it controls who can then modify it or delete it. If you attach it to the tenancy (in other words, if the policy is in the root compartment), then anyone with access to manage policies in the tenancy can then change or delete it. Typically that's the Administrators group or any similar group you create and give broad access to. Anyone with access only to a child compartment cannot modify or delete that policy.
When you attach a policy to a compartment, you must be in that compartment and you must indicate directly in the statement which compartment it applies to. If you are not in the compartment, you'll get an error if you try to attach the policy to a different compartment. Notice that attachment occurs during policy creation, which means a policy can be attached to only one compartment.
Policies and Compartment Hierarchies
a policy statement must specify the compartment for which access is being granted (or the tenancy).
Where you create the policy determines who can update the policy. If you attach the policy to the compartment or its parent, you can simply specify the compartment name. If you attach the policy further up the hierarchy, you must specify the path. The format of the path is each compartment name (or OCID) in the path, separated by a colon:
<compartment_level_1>:<compartment_level_2>: . . . <compartment_level_n> to allow action to compartment Compute so you need to set the compartment PATH as per where you attach the policy as below examples if you attach it to Root compartment you need to specify the PATH as following Engineering:Dev-Team:Compute if you attach it to Engineering compartment you need to specify the PATH as following Dev-Team:Compute if you attach it to Dev-Team or Compute compartment you need to specify the PATH as following Compute Note : in the Policy inspect verb that give the Ability to list resources, without access to any confidential information or user-specified metadata that may be part of that resource.
When you create a policy you must attach it to a compartment (or the tenancy, which is the root compartment). Where you attach it controls who can then modify it or delete it. If you attach it to the tenancy (in other words, if the policy is in the root compartment), then anyone with access to manage policies in the tenancy can then change or delete it. Typically that's the Administrators group or any similar group you create and give broad access to. Anyone with access only to a child compartment cannot modify or delete that policy.
When you attach a policy to a compartment, you must be in that compartment and you must indicate directly in the statement which compartment it applies to. If you are not in the compartment, you'll get an error if you try to attach the policy to a different compartment. Notice that attachment occurs during policy creation, which means a policy can be attached to only one compartment.
Policies and Compartment Hierarchies
a policy statement must specify the compartment for which access is being granted (or the tenancy).
Where you create the policy determines who can update the policy. If you attach the policy to the compartment or its parent, you can simply specify the compartment name. If you attach the policy further up the hierarchy, you must specify the path. The format of the path is each compartment name (or OCID) in the path, separated by a colon:
<compartment_level_1>:<compartment_level_2>: . . . <compartment_level_n> to allow action to compartment Compute so you need to set the compartment PATH as per where you attach the policy as below examples if you attach it to Root compartment you need to specify the PATH as following Engineering:Dev-Team:Compute if you attach it to Engineering compartment you need to specify the PATH as following Dev-Team:Compute if you attach it to Dev-Team or Compute compartment you need to specify the PATH as following Compute Note : in the Policy inspect verb that give the Ability to list resources, without access to any confidential information or user-specified metadata that may be part of that resource.
- Question List (56q)
- Question 1: You are working as a security consultant with a global insur...
- Question 2: A company has an application that processes confidential dat...
- Question 3: You are responsible for migrating your on-premises legacy da...
- Question 4: You have created compartment called Dev for developers. Ther...
- Question 5: An automobile company wants to deploy their CRM application ...
- Question 6: A retail company has recently adopted a hybrid architecture....
- Question 7: You have designed and deployed your Autonomous Data Warehous...
- Question 8: A retailer bank is currently hosting their mission critical ...
- Question 9: A civil engineering company is running an online portal In w...
- Question 10: You work for a large bank where your main application is a p...
- Question 11: A global media organization is working on a project which le...
- Question 12: You work for a bank as the lead Oracle Cloud Infrastructure ...
- 1 commentQuestion 13: You are tasked with migrating an online shopping website to ...
- Question 14: You have to migrate your application to Oracle Cloud Infrast...
- Question 15: You have provisioned a new VM.DenseIO2.24 compute instance w...
- Question 16: Your security team has informed you that there are a number ...
- Question 17: A large London based eCommerce company is running Oracle DB ...
- Question 18: As a part of migration exercise for an existing on premises ...
- Question 19: The Finance department of your company has reached out to yo...
- Question 20: A developer is using Oracle Functions to deploy her code as ...
- Question 21: An online Stock trading application is deployed to multiple ...
- Question 22: A large financial services company has used 2 types of Oracl...
- Question 23: After performing maintenance on an Oracle Linux compute inst...
- Question 24: An organization has its mission critical application consist...
- Question 25: You are working as a cloud consultant for a major media comp...
- Question 26: A data analytics company has been building Its now generatio...
- Question 27: By copying block volume backups to another region at regular...
- Question 28: You are trying to troubleshoot the configuration of your Ora...
- Question 29: Which three scenarios are suitable for the Oracle Infrastruc...
- Question 30: An upcoming e-commerce company has deployed their online sho...
- Question 31: You have deployed a web application targeting a global audie...
- Question 32: Give this compartment structure: (Exhibit) You want to move ...
- Question 33: A company has an urgent requirement to migrate 300 TB of dat...
- Question 34: You work for a large bank where security and compliance are ...
- Question 35: Your Oracle database is deployed on-premises and has produce...
- Question 36: You are creating a compute instance using Oracle Cloud Infra...
- Question 37: You are tasked with building a highly available, fault toler...
- Question 38: A startup company is looking for a solution for processing o...
- Question 39: A fast growing E-commerce company has deployed their online ...
- Question 40: An online gaming application is deployed to multiple Availab...
- Question 41: You are working for a Travel company and your travel portal ...
- Question 42: You want to automate the processing of new image files to ge...
- Question 43: Which of the below options is true regarding Oracle Cloud In...
- Question 44: You are currently working for a public health care company b...
- Question 45: Your company needs to migrate a business critical applicatio...
- Question 46: You have been asked to review some network proposals by a ma...
- Question 47: You are responsible for migrating your on premises legacy da...
- Question 48: Your customer has gone through a recent departmental re stru...
- Question 49: Which of the following features is NOT supported by Oracle C...
- Question 50: You are running a legacy application in a compute instance o...
- Question 51: You are helping a customer troubleshoot a problem. The custo...
- Question 52: You notice that a majority of your Oracle Cloud Infrastructu...
- Question 53: Which of the following is NOT a good use case for the volume...
- Question 54: Your customer recently ordered for a 1-Gbps Fast Connect con...
- Question 55: You are the Solution Architect that designed this Oracle Clo...
- Question 56: You are trying to delete a compartment. The delete operation...
