Curious about Actual Oracle Cloud (1Z0-1109-24) Exam Questions?

Correct : A

Choosen policy specifies an IAM policy allowing the group (in this case, the deployment pipeline) to manage devops-family resources within a specific compartment. The devops-family is a group of services that includes the OCI DevOps service, which is suitable for managing CI/CD pipelines, deployments, and related operations for an OKE environment.

Correct : B, E

Application Dependency Management (ADM) is a tool used to identify security weaknesses in software applications by analyzing their dependencies. Dependencies can often introduce vulnerabilities, and managing them properly is a critical part of ensuring application security.

Third-party tools like Sonatype and SonarQube can be used to analyze code for security defects or bugs in code quality. These tools help in identifying vulnerabilities, code smells, and other issues, which can improve the overall security and reliability of the code during the build process.

Correct : C

Step 1: Understanding the Requirement

The objective is to store the resulting build output from a Build Pipeline in a container repository. In OCI DevOps, the build output is stored as an artifact, which can include Docker images or other build-generated files. To store these artifacts in a container repository, you need to explicitly deliver artifacts in the pipeline.

Step 2: Explanation of the Options

A . Trigger deployment

This stage is used to trigger a deployment pipeline, which comes after the artifacts are already stored and prepared for deployment.

Not applicable: This stage is downstream of storing artifacts and is used for deploying software, not for saving the build output to a repository.

B . Managed build

The managed build stage is where you compile, test, and package the application. This has already been completed successfully according to the question.

Not applicable: The question specifies that the build has been completed, so this stage is not relevant at this point.

C . Deliver artifacts

The Deliver Artifacts stage in OCI DevOps pipelines is designed to store the output of the build process in an artifact repository, such as:

OCI Container Registry (OCIR) for Docker images.

Artifact Registry for build artifacts like binaries or JAR files.

Applicable and Correct Answer: This is the correct next step for storing the resulting

D . Export packages

This is not a standard OCI DevOps pipeline stage. It may be relevant in other contexts but is not related to OCI DevOps for storing build artifacts.

Step 3: Key Concepts of 'Deliver Artifacts' in OCI DevOps

Purpose: Save build outputs (artifacts) to an artifact repository.

Artifact Types: Includes Docker container images, binaries, JAR files, or other build outputs.

Repositories Supported:

OCI Container Registry (OCIR)

OCI Artifact Registry

Configuration:

Specify the artifact source (build stage output).

Define the destination repository (e.g., OCIR).

Step 4: References and OCI Resources

OCI DevOps Build Pipelines:

Build Pipeline Documentation

Deliver Artifacts Stage

OCI Container Registry (OCIR):

OCI Container Registry Overview

OCI Artifact Registry:

OCI Artifact Registry Overview

Correct : D

Image verification policies are used to ensure that only trusted and signed images are deployed to an Oracle Kubernetes Engine (OKE) cluster. By configuring such policies, administrators can enforce that images must be signed and come from trusted sources, such as the Oracle Cloud Infrastructure Registry.

Correct : A

In Kubernetes clusters created by Oracle Container Engine for Kubernetes (OKE), data in etcd (the key-value store that holds cluster state and configuration data) is encrypted at rest by default using encryption keys managed by Oracle. Oracle manages the encryption using a master encryption key to protect sensitive data.