Oracle Exam 1Z0-997-22 Topic 2 Question 34 Discussion

Actual exam question for Oracle's 1Z0-997-22 exam

Question #: 34
Topic #: 2

A digital marketing company is planning to host a website on Oracle Cloud Infrastructure (OCI) and leverage OCI Container Engine for Kubernetes (OKE). These web servers will make API calls to access OCI Object Storage to store all images uploaded by users.

For security purposes, you must ensure that the credentials used by the web server to allow access to OCI Object Storage are not stored in the compute instance.

What solution results in an implementation with the least-effort for this scenario?

AConfigure the credentials to use Transparent Data Encryption (TDE) to automatically allow the web server to make API calls to the OCI Object Storage.

BConfigure the credentials using OCI Registry (OCIR) to automatically connect with OKE allowing the web server to make API calls to the OCI Object Storage.

CConfigure the credentials using OCI Vault to allow an instance to make API calls and grant access to OCI Object Storage.

DConfigure the credentials using Instance Principals to allow the web server to make API calls to the OCI Object Storage.

Show Suggested Answer

Suggested Answer: D

by Lai at Mar 17, 2024, 07:12 PM

Limited Time Offer

25%

1 years ago

I think option D sounds like the best solution, using Instance Principals to allow API calls.

upvoted 0 times

...