top of page

Oracle Cloud Infrastructure 2025 Architect Associate Dumps & 1Z0-1072-25 Prep

  • CertiMaan
  • Oct 16
  • 13 min read

Prepare for the Oracle Cloud Infrastructure 2025 Architect Associate certification exam with the latest 1Z0-1072-25 dumps and expertly curated sample questions. Our comprehensive OCI 2025 Architect Associate dumps are designed to reflect the real exam format and cover essential topics like core cloud services, networking, storage, security, and identity management. Whether you're aiming to clear the exam on your first attempt or strengthen your foundational knowledge, these updated dumps and practice exams help bridge the gap. Gain confidence through scenario-based learning, real-world OCI questions, and hands-on prep material aligned with Oracle's current blueprint for 2025. Ideal for cloud architects, developers, and IT professionals seeking Oracle certification success.


Oracle Cloud Infrastructure 2025 Architect Associate Dumps - Sample Questions List :


1. Why are two subnets required to create a public load balancer when additional subnets are often used for back-end servers? (Choose two.)

  1. Routing is simpler when the load balancer is not in the same subnet as the back-end server.

  2. Performance is higher when more subnets are used.

  3. Additional subnets for back-end servers allow for separate route tables for these servers.

  4. Additional subnets for back-end servers allow for separate security lists for these servers.

2. Which two statements are true about Oracle Cloud Infrastructure Compute Service? (Choose two.)

  1. You can launch a virtual or bare metal instance by using the same LaunchInstance API.

  2. You cannot launch a bare metal server in Oracle Cloud Infrastructure Compute Service.

  3. You can attach a block volume in an Availability Domain other than your compute instance.

  4. You can share custom images across tenancies and regions.

3. You are responsible for setting up access for all the cloud users of a large enterprise. You log in to the Phoenix region and start creating users and policies. You then realize that some users might be creating resources in the Ashburn region. Which step should you perform to enable those users?

  1. You can assign a region to each of the users at the time of creation.

  2. IAM users are global and non-admin users can add resources to any region by default.

  3. You need to log in to each region separately to create users for that particular region.

  4. IAM users are global. As an administrator, make sure that you subscribe to the Ashburn region.

4. Which two options are true for Autonomous Transaction Processing (ATP) database? (Choose two.)

  1. You can add/remove Diskgroup in ATP

  2. You can scale storage up or down in ATP

  3. You can scale CPU up or down in ATP

  4. You can add more Pluggable Database for consolidating multiple databases in ATP

  5. You can add new ORACLE_HOME for bringing older versions of on-premises databases to ATP

5. You deployed a web server in Oracle Cloud Infrastructure using an ephemeral public IP. After a few changes in your web server configuration, you rebooted the server and a new public IP was associated to your instance. What should you do to prevent this from happening again?

  1. Create a reserved public IP and associate it with the security list that your complete instance is using

  2. Create a reserved public IP and associate it with the subnet of your compute instance

  3. Create a reserved public IP and associate it with the VNIC of your compute instance

  4. Create a reserved public IP and associate it with the hosts file of your web server

6. You have created a public subnet in a VCN, and your public subnet has a Route Table, a Security List, and an Internet Gateway. However, none of the compute instances can connect to the Internet. Which two are possible reasons for the connectivity issue? (Choose two.)

  1. There is no Dynamic Routing Gateway (DRG) associated with the VCN.

  2. The Route Table has no default route for routing traffic to the Internet Gateway.

  3. There is no stateful ingress rule in the Security List associated with the public subnet.

  4. There is no stateful egress rule in the Security List associated with the public subnet.

7. You currently manage an e-commerce application that utilizes 25 identical compute resources to handle customer traffic. The stakeholders have asked you to create another 25 identical compute resources in order to deploy and test a new version of the software? What is the most efficient process to create 25 additional compute resources that are identical to the first 25?

  1. Create a custom image from 1 of the 25 servers. Use this custom image to provision 25 more servers

  2. Create a manual backup of each boot volume belonging to the 25 servers. Restore each backup to create 25 new boot volumes, from which you will provision 25 more servers

  3. Provision a new server and configure it to be identical to the first 25. Create a custom image from the new server, then use the custom image to provision 24 more servers

  4. Clone the boot volume of 1 of the 25 servers. Use the boot volume clone to provision 25 more servers

8. Which two are true for achieving High Availability on Oracle Cloud Infrastructure? (Choose two.)

  1. Store your database across multiple regions so that half of the data resides in one region and the other half resides in another region.

  2. Attach your block volume form Availability Domain 1 to a compute instance in Availability Domain 2 (and vice versa) so that they are highly available.

  3. Configure your database to have Data Guard in another Availability Domain in Sync mode within a region.

  4. Store your database files on Object Storage so that they are available in all Availability Domains in all regions.

  5. Distribute your application servers across all Availability Domains within a region.

9. You are deploying a highly available web application in Oracle Cloud Infrastructure and have decided to use a public load balancer. The back-end web servers will be distributed across all three availability domains (ADs). How many subnets should you create to deliver a secure highly available application?

  1. three subnets in total; one subnet in each AD

  2. five subnets in total; two subnets each in the first and second AD with a single subnet in the third AD

  3. six subnets in total; two subnets in each AD; one for the load balancer and one for the web servers

  4. four subnets in total; one subnet in each AD for the web servers and a single subnet in any one AD for the load balancer

10. You are in the process of setting up a highly available student registration website on Oracle Cloud Infrastructure (OCI). You use a load balancer and a database service on OCI. You launch two compute instances each in a different subnet and add them to the back end set of a public load balancer. The load balancer is configured correctly and working. You then deploy the student registration application on these two compute instances. The application can communicate with the database service. However, when you type the URL of this student registration application in your browser, no web page appears. What could be the cause?

  1. The security lists of the subnets on which the two instances are located do not have “allow” rules for port 80 and 443.

  2. The load balancer performed a health check on the application and found that compute instances were not in a healthy state and terminated the instances.

  3. The client requested https access to the application and the load balancer service does not support end-to-end SSL from the client to the listener to the back-end set.

  4. The Dynamic Routing Gateway is preventing the client traffic from your data center network from reaching the public IP of the load balancer.

11. Which statement is true about cloning a volume?

  1. You need to detach a volume before cloning from it.

  2. A cloned volume is the same as a snapshot that has a dependency on the source volume.

  3. You cannot change the block volume size when cloning a volume.

  4. You can create a clone for a volume across regions.

12. When terminating a compute instance, you want to preserve the boot volume and its data. Which step will you need to perform?

  1. You cannot preserve the boot volume; it will always be deleted when you terminate the instance.

  2. Reboot the instance first, and then terminate the instance.

  3. Disable the default option to delete the boot volume when terminating an instance.

  4. Before terminating the instance, you must detach the boot volume.

13. How can you provide users access to an existing compartment?

  1. by granting users access to a compartment when the compartment is created

  2. by adding users to a group and defining a policy to provide the group access to the compartment

  3. by adding users to a compartment. All users in the compartment will have access to the objects in the compartment.

  4. by granting access directly to the user when the user is created

14. You have been notified of an application failure indicating that one or more of the Oracle Cloud Infrastructure (OCI) resources have become unavailable. After scanning the Compute and Database consoles, you notice that one of the DB Systems is missing. What would you do to identify the reason for this missing resource?

  1. Navigate to the Audit console and search the previous 24 hours for all Delete actions to get a list of any resource that was deleted in the past 24 hours.

  2. Create a serial console connection to the DB System that does not appear in the management console. Connect to the serial console connection, and then review the system logs under /var/log/messages.

  3. View the service limits associated with your account to ensure that you have not exceeded the available number of DB system in your tenancy.

  4. Navigate to the Audit console and search the previous 24 hours for all List actions to get a list of every event that occurred in the past 24 hours.

15. Which two statements are true about policies?

  1. You can use read, write, manage, and inspect as verbs for defining a policy.

  2. A policy is a document that specifies who can access which Oracle Cloud Infrastructure resources that your company has, and how.

  3. Users need not do anything but still have to be added to a group with appropriate policies defined.

  4. You can deny access to a group via policies.

16. You have an application deployed in Oracle Cloud Infrastructure running only in the Phoenix region. You were asked to create a disaster recovery (DR) plan that will protect against the loss of critical data. The DR site must be at least 500 miles from your primary site and data transfer between the two sites must not traverse the public Internet. Which is the recommended disaster recovery plan?

  1. Create a new virtual cloud network (VCN) in the Phoenix region and create a subnet in one availability domain (AD) that is not currently being used by your production systems. Establish VCN peering between the production and DR sites.

  2. Create a DR environment in Ashburn. Associate a DRG with the VCN in each region and create a remote peering connection between the two VCNs.

  3. Create a DR environment in Ashburn and provision a FastConnect virtual circuit using DRG between the regions.

  4. Create a DR environment in Ashburn. Associate a dynamic routing gateway (DRG) with the VCN in each region and configure an IPsec VPN connection between the two regions.

17. Which three actions need to be performed before attempting a data transfer service job?

  1. Obtain an available host machine which can run the dts utility on-premise with SATA or USB drives attached for the transfer job.

  2. Get access to a high-speed internet connection

  3. Data Transfer Service and Storage Service Limits should be checked and raised if required.

  4. Set up SSH access to a host on OCI to coordinate the transfer job.

  5. Create an object bucket to receive the job.

18. A customer has established an Oracle Cloud Infrastructure (OCI) FastConnect connection to OCI. The virtual circuit is up and routes are being advertised from the customer’s end, however the customer is unable to ping from compute instances inside the virtual cloud network (VCN) to servers residing in its on-premises data center. Which two options on OCI would remedy this situation? (Choose two.)

  1. Modify the route table associated with the VCN subnet in which the instance resides. Add a route to the customer’s on-premises network via the Dynamic Routing Gateway (DRG).

  2. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful egress rule to allow ICMP traffic to the customer’s on-premises network.

  3. Modify the security list associated with the VCN subnet in which the instance resides. Add a stateful ingress rule to allow ICMP traffic from anywhere.

  4. Modify the default VCN route table to add a route back to the customer’s on-premises network via the DRG.

19. You have five different company locations spread across the US. For a proof-of-concept (POC) you need to setup secure and encrypted connectivity to your workloads running in a single virtual cloud network (VCN) in the Oracle Cloud Infrastructure Ashburn region from all company locations. What would meet this requirement?

  1. Create five internet gateways in your VCN and have separate route table for each internet gateway.

  2. Create five virtual circuits using FastConnect for each company location and terminate those connections on a single dynamic routing gateway (DRG). Attach that DRG to your VCN.

  3. Create five IPsec connections with each company location and terminate those connections on a single DRG. Attach that DRG to your VCN.

  4. Create five IPsec VPN connections with each company location and terminate those connections on five separate DRGs. Attach those DRGs to your VCN.

20. Which statement is true about DB Systems?

  1. Data Guard as a Service is offered between regions.

  2. You cannot manage the database as sys/sysdba.

  3. You have full control over the automatic backup schedule and retention periods.

  4. You can manage Oracle database initialization parameters at a global level.

21. Your company has decided to move a few applications to Oracle Cloud Infrastructure and you have been asked to design it for Disaster Recovery (DR). One of the items of your design is to deploy the DR at least 300 miles from the home site and minimize the network latency as much as possible. Based on that, what will be the recommended deployment?

  1. Deploy applications in two separated VCNs in different Availability Domains and use VCN Remote Peering

  2. Deploy applications in different regions and have them connected using VCN Remote Peering

  3. Deploy applications in two separated VCNs in different regions and use VCN Local Peering

  4. Deploy applications on the same region splitting workloads across Availability Domains.

22. Your company is moving an Internet-facing, 2-tier web application into Oracle Cloud Infrastructure. The application must have a highly available architecture. Which two design options would you consider? (Choose two.)

  1. Configure a Dynamic Route Gateway in your VCN and make it highly available.

  2. Configure a NAT instance in your Virtual Cloud Network (VCN). Create a route rule by using the private IP of the NAT instance as a route target for all the private subnets in your VCN.

  3. Create an Internet Gateway and attach it to your VCN. Deploy public load balancer nodes into two Available Domains.

  4. Place all web servers behind a public load balancer.

23. You have created a virtual cloud network (VCN) with three private subnets. Two of the subnets contain application servers and the third subnet contains a DB System. The application requires a shared file system so you have provisioned one using the file storage service (FSS). You also created the corresponding mount target in one of the application subnets. The VCN security lists are properly configured so that both application servers and the DB System can access the file system. The security team determines that the DB System should have read-only access to the file system. What change would you make to satisfy this requirement?

  1. Create an NFS export option that allows READ_ONLY access where the source is the CIDR range of the DB System subnet.

  2. Connect via SSH to one of the application servers where the file system has been mounted. Use the Unix command chmod to change permissions on the file system directory, allowing the database user read only access.

  3. Modify the security list associated with the subnet where the mount target resides. Change the ingress rules corresponding to the DB System subnet to be stateless.

  4. Create an instance principal for the DB System. Write an Identity and Access Management (IAM) policy that allows the instance principal read-only access to the file storage service.

24. You are the Cloud Architect of a company, and are designing a solution on Oracle Cloud Infrastructure where you want to have all your compute instances resistant to hardware failure. Which two are recommended best practices to achieve the requirement on Oracle Cloud Infrastructure? (Choose two.)

  1. Create a custom image of your system drive each time you change the image.

  2. Attach block volumes from different Availability Domains to compute instances in different Availability Domains for high availability.

  3. Design your system with redundant compute modes in different Availability Domains to support the failover capability.

  4. Create backups of your block volumes that are associated with compute instances in different regions.

25. Your organization has deployed a large, complex application across multiple compute instances in Oracle Cloud Infrastructure (OCI). These compute instances also have block volume storage attached to them. You want to create a time consistent backup of these block volume storage.\Which implementation strategy should be used?

  1. Create a manual backup of each volume

  2. Use scripts available in OCI to backup block volume storage

  3. Group volumes in a volume group first and then use available scripts in OCI

  4. Group volumes in a volume group and create a manual backup of the volume group



FAQs


1. What is the Oracle Cloud Infrastructure 2025 Architect Associate 1Z0-1072-25 certification?

It is an Oracle certification that validates knowledge of OCI core services, networking, storage, security, and architecting cloud solutions.

2. How do I become Oracle Cloud Infrastructure Architect Associate certified in 2025?

You must study OCI concepts, register for the 1Z0-1072-25 exam on Oracle’s certification portal, and pass it.

3. What are the prerequisites for the 1Z0-1072-25 OCI Architect Associate exam?

There are no formal prerequisites, but basic knowledge of cloud computing and prior OCI experience is recommended.

4. How much does the Oracle 1Z0-1072-25 certification exam cost?

The exam fee is $245 USD.

5. How many questions are on the Oracle OCI Architect Associate 1Z0-1072-25 exam?

The exam consists of 55–60 multiple-choice questions.

6. What is the passing score for the 1Z0-1072-25 certification exam?

The passing score is typically 65%.

7. How long is the Oracle Cloud Infrastructure Architect Associate exam?

The exam duration is 90 minutes.

8. What topics are covered in the Oracle 1Z0-1072-25 exam?

It covers OCI compute, networking, storage, identity, security, databases, and cloud architecture best practices.

9. How difficult is the Oracle OCI Architect Associate 2025 exam?

It is considered moderately difficult, requiring both theoretical knowledge and practical OCI experience.

10. How long does it take to prepare for the 1Z0-1072-25 exam?

Most candidates prepare in 6–8 weeks, depending on prior cloud knowledge.

11. Are there any Oracle 1Z0-1072-25 sample questions or practice tests available?

Yes, Oracle provides exam guides, and CertiMaan offers dumps and practice tests.

12. What is the validity period of the Oracle OCI Architect Associate 1Z0-1072-25 certification?

The certification is valid for 18 months, after which recertification may be required.

13. Can I retake the Oracle 1Z0-1072-25 exam if I fail?

Yes, you can retake it after paying the exam fee again.

14. What jobs can I get with an Oracle Cloud Infrastructure 2025 Architect Associate certification?

You can work as a Cloud Architect, Cloud Engineer, OCI Solutions Architect, or Cloud Consultant.

15. How much salary can I earn with the Oracle 1Z0-1072-25 certification?

OCI-certified professionals typically earn between $90,000–$130,000 annually, depending on location and role.

16. Is the Oracle OCI 1Z0-1072-25 certification worth it in 2025?

Yes, it is highly valued as Oracle Cloud continues to grow across industries.

17. What is the difference between Oracle 1Z0-1072-22 and 1Z0-1072-25 exams?

  • 1Z0-1072-22: Older version of the exam.

  • 1Z0-1072-25: Updated for 2025 with the latest OCI services and features.

18. What are the best study materials for the Oracle 1Z0-1072-25 certification exam?

Use Oracle’s official exam guide, OCI documentation, and CertiMaan practice resources.

19. Does Oracle provide official training for the OCI Architect Associate 2025 certification?

Yes, Oracle University provides official training and learning subscriptions.

20. Where can I register for the Oracle Cloud Infrastructure 2025 Architect Associate 1Z0-1072-25 exam?

You can register on the Oracle Certification Exam Portal.


Recent Posts

See All

Comments

Rated 0 out of 5 stars.
No ratings yet
Add a rating
CertiMaan Logo

​​

Terms Of Use     |      Privacy Policy     |      Refund Policy    

   

 Copyright © 2011 - 2025  Ira Solutions -   All Rights Reserved

Disclaimer:: 

The content provided on this website is for educational and informational purposes only. We do not claim any affiliation with official certification bodies, including but not limited to Pega, Microsoft, AWS, IBM, SAP , Oracle , PMI, or others.

All practice questions, study materials, and dumps are intended to help learners understand exam patterns and enhance their preparation. We do not guarantee certification results and discourage the misuse of these resources for unethical purposes.

PayU logo
Razorpay logo
bottom of page