Oracle Exam 1Z0-1109-23 Topic 7 Question 7 Discussion

Actual exam question for Oracle's 1Z0-1109-23 exam

Question #: 7
Topic #: 7

You are a DevOps project administrator. You are creating Oracle Cloud Infrastruc-ture (OCI) Identity and Access Management (IAM) policies that will be used in a DevOps CI/CD pipeline for deployment to an Oracle Container Engine for Kubernetes (OKE) environment. Which OCI IAM policy can be used?

AAllow group <deployment pipeline> to manage devops-family in compartment <com-partment name>

BAllow group <build pipeline> to manage all-resources in compartment <compartment name>

CAllow dynamic-group <code repository> to manage devops-family in compartment <compartment name>

DAllow dynamic-group <deployment pipeline to manage all-resources in compartment <compartment name>

Show Suggested Answer

Suggested Answer: D

To create an OCI IAM policy that will be used in a DevOps CI/CD pipeline for deployment to an OKE environment, you need to use a dynamic group and grant it the permission to manage all-resources in the target compartment. A dynamic group is a group of OCI resources that match a set of rules defined by the administrator. You can use a dynamic group to assign IAM policies to resources such as build pipelines and deployment pipelines. By granting the dynamic group the permission to manage all-resources, you allow it to perform any action on any resource type in the compartment, including OKE clusters, node pools, and Kubernetes resources. Verified Reference: [Dynamic Groups - Oracle Cloud Infrastructure Identity and Access Management], [Creating Dynamic Groups - Oracle Cloud Infrastructure Identity and Access Management]

by Valentine at Sep 03, 2023, 09:10 AM

Limited Time Offer

25%

Off

Get Premium 1Z0-1109-23 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!