50 Oracle Cloud Infrastructure 2025 Developer Professional Practice Questions: Question Bank 2025

A development team is deploying a containerized microservice to OCI and wants automatic scaling based on HTTP request load without managing Kubernetes worker nodes. Which OCI service is the best fit?

A team wants to run a serverless function that is triggered whenever a new object is uploaded to an Object Storage bucket. What is the recommended OCI approach?

An application publishes messages that must be delivered to exactly one of several workers for processing (competing consumers). Ordering is desirable, and workers should acknowledge successful processing. Which OCI service best matches this pattern?

You need a secure way for an OCI Function to read a secret value (for example, an API key) at runtime without hardcoding it in code or environment variables. What should you use?

A microservice running on OKE needs to call an OCI REST API. The team wants to avoid distributing long-lived user credentials or API keys inside pods. Which is the recommended authentication approach?

An integration requires invoking an external HTTPS endpoint, transforming the payload, and then writing the result to Object Storage. The solution should be low-code and support error handling and retries. Which OCI service is the best choice?

A serverless application uses API Gateway in front of OCI Functions. Users are intermittently receiving HTTP 504 errors. You suspect the function execution time is exceeding the gateway’s upstream timeout. What is the best first troubleshooting step in OCI?

A team wants centralized, consistent application logs from multiple OKE namespaces and OCI Functions, with the ability to search across services and set alarms on error patterns. Which combination is most appropriate?

A consumer service reads messages from OCI Streaming and writes results to a database. During a deployment, a crash causes some messages to be processed twice. The team needs to minimize duplicates without losing messages. Which approach is most appropriate?

You are designing a multi-step workflow: validate request, enrich data, call two downstream services in parallel, then aggregate results and store them. You need built-in state management, retries, and the ability to resume on failure. Which OCI service is the best architectural fit?

A development team deploys a new revision of an OCI Functions application. Some invocations still execute the previous revision for several minutes after deployment. Which explanation and best-practice action is MOST accurate?

You need a serverless, low-latency way to expose multiple backend services and apply request authentication, rate limiting, and header transformations at the edge. Which OCI service is the BEST fit?

A microservice publishes events that must be processed by multiple independent consumers, each at its own pace. Consumers should not interfere with each other’s offsets. Which messaging pattern on OCI Streaming is MOST appropriate?

A team uses OCI DevOps Build Pipelines. They want to inject a database password into the build without storing it in source code or build spec files, and they want auditability and rotation. What is the BEST approach?

An application writes structured logs using JSON. The operations team wants to query fields (for example, requestId, tenantId, latencyMs) in OCI Logging without custom parsing on the client side. What should the developers do?

You built an event-driven workflow where Object Storage object creation should trigger a downstream process. The trigger sometimes fails due to transient downstream errors, and you need automatic retries with controlled backoff without writing custom retry code in every consumer. Which OCI service is BEST suited to orchestrate this?

A containerized service runs on OKE and must call an OCI service API (for example, Object Storage) without embedding API keys. The security team requires short-lived credentials and least privilege tied to the workload. What is the RECOMMENDED approach?

A developer calls an OCI service endpoint from a private subnet and receives timeouts. The subnet has no public IPs and no NAT Gateway. Which change is MOST likely to fix access to OCI public services without exposing the subnet to the internet?

You are troubleshooting intermittent latency spikes in a distributed application spanning API Gateway, Functions, and a backend service on OKE. You need to follow a single request end-to-end across services. What is the BEST observability approach on OCI?

A team uses OCI Streaming. They observe that some partitions are lagging significantly while others are nearly idle. The producer keying strategy uses a constant key for all messages. What is the MOST effective fix to improve parallelism and reduce lag?

You are deploying a stateless microservice on OCI Container Instances. The service must access an Object Storage bucket without storing long-lived credentials in the container image. What is the recommended approach?

A Function written for OCI Functions needs a configuration value that differs by environment (dev/test/prod). You want to avoid hardcoding and keep changes outside the code package. Which OCI capability best fits?

An API publishes events to OCI Streaming. A consumer application must be able to replay messages from a point in time during troubleshooting without requiring the producer to resend data. Which Streaming feature enables this behavior?

A team wants to design an event-driven workflow where an Object Storage 'ObjectCreated' event triggers an Integration flow that validates the file and then calls an external SaaS API. They want minimal code and managed orchestration. Which architecture best meets the requirement?

You are building a CI/CD pipeline that deploys to an OCI Kubernetes Engine (OKE) cluster. You need the pipeline to authenticate to OCI without storing user API keys and you want to follow least privilege. What is the best approach?

A microservice uses OCI Vault secrets. The application runs in OKE and should retrieve secrets at runtime. Which design is most secure and operationally sound?

A Functions-based API is intermittently timing out. You enabled Logging for the function and can see invocation logs, but you need to identify whether the timeout is due to upstream latency, cold starts, or downstream dependency failures. Which observability approach is most appropriate?

Your application processes messages from OCI Queue. During a peak, you observe messages being processed multiple times, causing duplicate updates in a database. You need to reduce the impact without sacrificing throughput. What is the best solution?

A team is rolling out a new version of a microservice on OKE. They want a deployment strategy that gradually shifts traffic, supports quick rollback, and integrates with service mesh traffic management. Which approach best fits?

A production service in OKE emits structured JSON logs. You need to quickly troubleshoot a specific customer request end-to-end by correlating application logs with an APM trace ID, and you want to search logs efficiently. Which setup is most appropriate?

Your team is building a containerized microservice on OCI Container Engine for Kubernetes (OKE). A new requirement states that the pod must call an OCI service API (for example, Object Storage) without storing any user credentials or API keys in the image or Kubernetes Secret. What is the recommended approach?

You have deployed an API on OCI API Gateway. A backend function in OCI Functions should receive the caller's identity information so it can apply fine-grained authorization. Which mechanism should you configure on API Gateway to validate tokens and pass identity claims to the backend?

An event-driven pipeline needs to run when new objects are uploaded into an Object Storage bucket. The pipeline should decouple producers and consumers and allow multiple downstream services to subscribe independently. Which OCI service is best suited to fan out these events to multiple subscribers?

A serverless function intermittently fails. You need to quickly view recent invocations, errors, and execution details for the function without changing application code. Which OCI feature should you use first?

A microservice running on OKE must retrieve database credentials at runtime. Security requires: no secrets in images, automatic rotation support, and granular access control per workload. Which approach best meets these requirements on OCI?

A team uses OCI Streaming for ingestion. Consumers must be able to resume after a crash without losing messages, and the application should avoid reprocessing messages already handled. Which consumer strategy best satisfies this requirement?

Your organization uses OCI DevOps Build Pipelines. The build needs to push a container image to OCI Container Registry (OCIR) and must follow least privilege. Which IAM permission scope is most appropriate for the build pipeline to push images?

A REST API in API Gateway intermittently returns 504 errors. Backend services are healthy, but spikes in latency occur. You need to identify whether the latency is in API Gateway integration, network path, or backend processing, and you want end-to-end request correlation. What is the best first step?

You are designing a multi-tenant SaaS on OKE. Each tenant has a separate compartment and must have strict isolation for Kubernetes resources and OCI API permissions. Tenants deploy their own workloads into the shared cluster. Which design best enforces both Kubernetes-level and OCI IAM-level isolation?

A workflow uses OCI Functions triggered by events. During a regional service disruption, you must ensure that events are not lost and that processing resumes reliably after services recover. The solution should also support replay/backlog processing. Which architecture best fits this requirement?

A development team wants to run a containerized microservice without managing servers. The service must scale automatically based on incoming HTTP requests and support blue/green style traffic shifting between revisions. Which OCI service best fits this requirement?

A Function is triggered by an API Gateway deployment and intermittently returns HTTP 401 from a downstream OCI service call. The code uses an OCI SDK and assumes a dynamic group-based auth model. Which misconfiguration is the MOST likely cause?

You need to ingest events from multiple producers, retain them for replay, and allow multiple consumer groups to process the same events independently. Which OCI service is the best fit?

An Integration flow calls an external REST endpoint that sometimes responds slowly. You must prevent the flow from waiting indefinitely and also avoid repeatedly calling the endpoint when it is failing. Which approach is recommended?

A team uses Service Connector Hub to route Audit events to a Logging Analytics source. They notice duplicate records after a temporary outage of the target. What is the correct expectation and design response?

A serverless function processes messages from an OCI Queue and writes results to Autonomous Database. The team wants to ensure a poison message does not block processing of the entire queue. What is the best practice?

A microservice running on OKE must call the OCI Object Storage API without storing long-lived credentials in Kubernetes secrets. Which approach is recommended?

Your application uses OCI Streaming with multiple partitions. One consumer group reports out-of-order processing for certain keys after scaling consumers horizontally. What is the MOST likely cause?

A Function invoked through API Gateway is experiencing intermittent latency spikes. You need to quickly determine whether the delay is due to cold starts, downstream dependency latency, or API Gateway overhead. Which combination is the best observability approach?

A DevOps build pipeline fails during a Docker image push to OCI Container Registry with an authorization error. The build runs on a private worker. Which fix is MOST appropriate?