OCI - Architect Associate Questions with well explained answers

Archive Storage Tier (Cold) - "Seldon or rarely accessed data but must be retained and preserved for long periods of time Minimum retention requirement for Archive Storage is 90 days Objects need to be restored before download Archive Bucket can't be upgraded to Standard storage tier Time to First Byte (TTFB) after Archive Storage restore request is made: 4 hours" Auth - API Signing Key - "API Signing Key is required when using the API in conjunction with the SDK The key is an RSA key pair in the PEM format (min 2048 bits required) In the interfaces, you can copy and paste the PEM public key" Auth - Username and Password - "Use the password to sign in to the web console Administrator will provide you with a one-time password when setting up your account At first login, you are prompted to reset the password Auth Policy Format - - "Written in human-readable format: Allow group group_name to verb resource-type in tenancy tenancy_name Allow group group_name to verb resource-type in comparrment compartment_name [where conditions] ex. Allow group ProjectA_Admins to manage all-resources in compartment ProjectA_compartment""" Authentication - - "2 ways IAM services authenticates a Principal - User name, password and API Signing Key" Authorization - - "Process of specifiying what actions an authenticated Principal can perform Auth in IAM service done by defining specific priveleges in policies and associating them with principalsSupports security principle of least privilege; by default, users are not allowed to perform any actions (policies cannot be attached to users, but only groups ) Policies are comprised of one or more statements which specifiy what groups can access what resources and what level of access users in that group have" Availability Domain - - "Multiple AD in each Region High Scale High Performance Network Virtual Network Services - Compute, Storage, DBMS, Network, Connectivity and Edge Governance" Availability Domain Components - - "Instances, Volumes, DB System, Subnets" Availability Domain/Zone - - "Fault tolerant High Availability Low latency to high bandwidth network — between availability domain. VCN — resides with in a single region but can cross multiple availability zone. You can have 10 VCN per Compartments (soft limit). You can have 300 Subnets per VCN (soft limit)." Backup/Archive - - "Durable , low cost" Bare Metal - - "No hypervisor involved - customers get the full bare metal server (single-tenant model) Gen 1 - Standard, High IO, Dense IO, up to 36 OCPU, 256 GB and 512GB RAM, 10 Gbps network bandwidth, Max 16 vNICs Gen 2 instances, Standard, DenseIO, GPU, (higher bandwidth, more cores, and more RAM ) 52 OCPU, 192 (GPU), 768 GB RAM, Block storage only (Stand, GPU), 2 x 25 Gbps Network Bandwidth, and 24 max vNICs - (Only available in IAD region)"""Bare Metal using boot volumes - - "Preserve boot disk content Highliy durable boot disks Compute Instance scaling" Benefits of DNS - - "• DNS Network operating for over 10+ years, leveraged by thousands of customers, large and small, Enterprise, Business and Web properties • Support for OCI, other Cloud provider endpoints (AWS, Azure) and private assets, including Cloud, CDNs and Data Centers • Consistently lowest query latency performance • Industry leading propagation time to ensure fast response to DNS changes • Support for both Primary and Secondary DNS services, unlike solutions from many Cloud Providers • Industry's most accurate geolocation data set, created specifically for steering internet traffic • DDoS protection built-in • Most standards-compliant DNS platform " Big Data - - "Highly Scalable, Optimized for high throughput" Block Volume - - "High-performance iSCSI LUNs that can be used to provide persistent and durable storage for instance. NVMe SSD, Expansive Data Storage using iSCSI Ethernet protocol Similar to on-premise Storage Area Network (SAN) Dynamically provision and manage block storage volumes Create-Attach-Move-Backup Block Volume can be created from 50G to 32 TB in 1GB increment. Default volumes are 1 TB 32 Volume can be created per instance. Data only available from within the tenant/compartment Users must be authenticated users with permission to access the data Attached - Default is Read/Write, other option Read OnlyMust be in the same Availability Domain as the Instance " Block Volume Backup - - "Complete point-in-time snapshot copy of the block volume Backups are encrypted and stored in the Object Storage Service and can be restored as new volumes to any AD within the same region. This capability provides you with a spare copy of a volume and gives you the ability to successfully complete recovery within the same region. Restoration of volume from backup takes less than a minute regardless of the volume size"