Valid 1z0-1124-25 Dumps shared by ExamDiscuss.com for Helping Passing 1z0-1124-25 Exam! ExamDiscuss.com now offer the newest 1z0-1124-25 exam dumps, the ExamDiscuss.com 1z0-1124-25 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com 1z0-1124-25 dumps with Test Engine here:
For a multi-tier architecture with a strict compliance requirement to log all user access to private resources, which Bastion service configuration is most suitable?
Correct Answer: B
* Requirement Analysis: Strict compliance mandates logging all user access to private resources in a multi-tier setup. * Option A Assessment: Dynamic port forwarding with no logging fails compliance, as it provides no audit trail. * Option B Assessment: Managed Bastion sessions in OCI offer detailed logging (e.g., session start/end times, user IDs), integrated with OCI Logging. This meets compliance needs with a managed, scalable solution. * Option C Assessment: SSH port forwarding with minimal logs doesn't provide the detailed auditing required for strict compliance. * Option D Assessment: A jump server with manual logging is error-prone, lacks scalability, and isn't a managed OCI service, making it less suitable. * Conclusion: Option B provides the most robust, compliance-ready solution with detailed logging. From Oracle's Bastion documentation: * "OCI Bastion provides managed SSH sessions with detailed logging capabilities, capturing user access details for audit and compliance. Enable session logging to record all activities."This supports Option B as the best choice. Reference:Bastion Service Overview - Oracle Help Center(docs.oracle.com/en-us /iaas/Content/Bastion/Concepts/bastionoverview.htm).